$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft File: toNIsZBwY8BERWnOsijqUkbQLxk.mft (raw, json) Hash identifier: dEbDKb1E2kGLhtQWE2V9XHCHnZmVUdAVAo4SyCsMeAc= Subject key identifier: 6D:E2:48:60:42:36:BC:16:8E:B6:11:73:93:B5:C9:63:44:D3:E8:86 Authority key identifier: B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 Certificate issuer: /CN=A91B3CB5/serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft Manifest number: 3B Signing time: Sat 28 Feb 2026 18:25:13 +0000 Manifest this update: Sat 28 Feb 2026 18:25:13 +0000 Manifest next update: Sat 07 Mar 2026 18:25:13 +0000 Files and hashes: 1: toNIsZBwY8BERWnOsijqUkbQLxk.crl (hash: WUm+ePEWrSFth88gwOEjzAhogZL7mlkWDnCls8gQR7I=) 2: 3AF6CDE4CE7E11F0BDD3E452C4F9AE02.roa (hash: ubVdeZPf6OneoRvNqezniKDm+qaCd4tbWJlkLoTSud4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=B68348B1907063C0444569CEB228EA5246D02F19 Validity Not Before: Feb 28 18:25:13 2026 GMT Not After : Mar 7 18:25:13 2026 GMT Subject: CN=69a33309-98f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:28:0e:64:dd:3a:9d:94:37:3c:65:18:34:76: 20:3e:10:94:d5:43:dd:2c:70:c0:e7:e4:a1:1c:65: 37:df:fe:a2:83:43:5c:4a:92:d6:73:b6:4e:6b:8c: 85:7c:0f:fe:85:d0:89:a9:a4:df:f4:d8:1c:86:a9: 39:91:be:f9:e7:86:45:1f:99:ad:ea:4c:9a:21:70: 05:df:ba:b9:b9:82:e4:4a:b8:50:7c:5b:51:e4:0b: 3a:f4:c1:4d:73:ac:14:0e:90:53:b5:7d:e4:fd:56: a8:94:f8:d1:59:fe:bf:67:81:63:c9:65:fe:4f:b3: ce:34:5f:e3:c4:a3:00:01:2c:db:31:75:16:3c:ea: f2:85:71:16:bd:b1:7a:bf:f6:c2:e4:1a:86:fa:64: 7b:cb:e7:c1:a5:63:0f:26:f5:e9:6c:7c:3d:47:e2: 08:b1:f1:13:44:81:89:51:79:c8:7e:5e:5a:a9:b8: 97:16:f2:5e:2f:65:4d:37:71:d2:9e:fc:a3:6a:d2: 6b:c7:fb:ee:c0:0c:ff:bf:02:c7:91:47:60:6f:a1: d9:db:ec:02:73:24:af:95:24:cd:83:3e:4c:a1:47: 3b:2e:34:7d:88:d8:3e:24:bf:32:f9:3c:05:8a:e7: 5c:51:3d:5a:c0:ee:cf:8e:af:fc:bb:3a:1c:c2:b7: ae:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E2:48:60:42:36:BC:16:8E:B6:11:73:93:B5:C9:63:44:D3:E8:86 X509v3 Authority Key Identifier: keyid:B6:83:48:B1:90:70:63:C0:44:45:69:CE:B2:28:EA:52:46:D0:2F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/toNIsZBwY8BERWnOsijqUkbQLxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/ED225532C43411F0A827A57DC4F9AE02/toNIsZBwY8BERWnOsijqUkbQLxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4b:9e:2e:0f:eb:0f:b2:8e:6c:12:79:d8:00:78:10:21:8a: 91:fa:9a:a4:57:46:07:6b:fe:24:0e:db:b8:0b:2c:f6:2e:e0: 25:7e:13:3c:0f:ca:19:cd:66:64:54:29:52:72:69:be:9c:7a: 81:1b:f7:dd:3a:68:bb:c7:2a:61:5d:aa:10:f7:b7:16:a8:bc: 57:27:98:2b:88:31:41:a3:ab:e1:41:02:74:89:d2:a5:d6:e4: 4a:72:b1:13:0e:20:35:57:4c:4d:6a:7f:b9:45:85:79:cc:4e: 9d:23:57:51:a2:0d:be:15:ee:16:90:e3:05:0c:69:0b:59:ce: 17:53:55:3c:08:77:94:c6:20:81:42:92:3b:16:6a:5c:6f:d7: 3f:d2:ce:e6:00:e4:41:79:a8:32:f8:44:ea:e4:2d:c9:1e:1e: 32:af:ab:bf:ef:eb:cd:8a:d5:c7:77:d2:c5:a5:79:9f:92:63: 39:ed:c9:e8:0f:30:2b:c9:f4:4f:16:a9:cc:4d:1a:39:9e:5e: 3b:52:98:63:b5:a2:5a:ef:3f:7f:08:6e:52:09:2b:94:a3:e0: df:74:0f:ac:88:e0:88:85:5a:83:62:52:cb:2c:67:71:35:cf: 07:c9:4d:69:c4:70:7b:35:3b:b9:9c:c9:d2:4e:6e:54:dd:4d: c0:5e:2f:60 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0NCNTExMC8GA1UEBRMoQjY4MzQ4QjE5MDcwNjNDMDQ0NDU2OUNFQjIyOEVBNTI0 NkQwMkYxOTAeFw0yNjAyMjgxODI1MTNaFw0yNjAzMDcxODI1MTNaMBgxFjAUBgNV BAMMDTY5YTMzMzA5LTk4ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhKA5k3TqdlDc8ZRg0diA+EJTVQ90scMDn5KEcZTff/qKDQ1xKktZztk5rjIV8 D/6F0ImppN/02ByGqTmRvvnnhkUfma3qTJohcAXfurm5guRKuFB8W1HkCzr0wU1z rBQOkFO1feT9VqiU+NFZ/r9ngWPJZf5Ps840X+PEowABLNsxdRY86vKFcRa9sXq/ 9sLkGob6ZHvL58GlYw8m9elsfD1H4gix8RNEgYlRech+XlqpuJcW8l4vZU03cdKe /KNq0mvH++7ADP+/AseRR2Bvodnb7AJzJK+VJM2DPkyhRzsuNH2I2D4kvzL5PAWK 51xRPVrA7s+Or/y7OhzCt67rAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUbeJIYEI2 vBaOthFzk7XJY0TT6IYwHwYDVR0jBBgwFoAUtoNIsZBwY8BERWnOsijqUkbQLxkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzQ0I1L0VEMjI1NTMyQzQz NDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThCRVJXbk9zaWpxVWtiUUx4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdG9OSXNaQndZOEJFUlduT3NpanFVa2JRTHhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz Q0I1L0VEMjI1NTMyQzQzNDExRjBBODI3QTU3REM0RjlBRTAyL3RvTklzWkJ3WThC RVJXbk9zaWpxVWtiUUx4ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA+S54uD+sPso5sEnnYAHgQIYqR+pqkV0YHa/4kDtu4Cyz2LuAlfhM8D8oZzWZk VClScmm+nHqBG/fdOmi7xyphXaoQ97cWqLxXJ5griDFBo6vhQQJ0idKl1uRKcrET DiA1V0xNan+5RYV5zE6dI1dRog2+Fe4WkOMFDGkLWc4XU1U8CHeUxiCBQpI7Fmpc b9c/0s7mAORBeagy+ETq5C3JHh4yr6u/7+vNitXHd9LFpXmfkmM57cnoDzAryfRP FqnMTRo5nl47UphjtaJa7z9/CG5SCSuUo+DfdA+siOCIhVqDYlLLLGdxNc8HyU1p xHB7NTu5nMnSTm5U3U3AXi9g -----END CERTIFICATE-----Generated at Mon Mar 2 02:25:56 2026 by rpki-client