$ rpki-client -vvf rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft File: IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft (raw, json) Hash identifier: AkA0YtNqXPU49QLz3x+azbdYsptrrStlYjGWO3IFwpI= Subject key identifier: 32:36:D5:99:69:AB:68:9B:F1:59:84:05:7E:F1:9C:13:5A:96:21:A1 Authority key identifier: 20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 Certificate issuer: /CN=A91B40B2/serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft Manifest number: 29 Signing time: Sun 01 Mar 2026 10:12:09 +0000 Manifest this update: Sun 01 Mar 2026 10:12:08 +0000 Manifest next update: Sun 08 Mar 2026 10:12:08 +0000 Files and hashes: 1: IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl (hash: cRyjdZ5zboTEIaCJLo4q0l7NnrAKGBD/XLGrdHEtokE=) 2: 78211876DA3811F080F82F148DD3641D.roa (hash: iQuCstGoIK1MPnU6/cDDIt+974fe7iZAlTkSxssvjXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B40B2, serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Validity Not Before: Mar 1 10:12:08 2026 GMT Not After : Mar 8 10:12:08 2026 GMT Subject: CN=69a410f9-5b59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c6:d1:2a:34:f8:4e:ca:ef:fe:28:da:4e:6a: 7d:71:e0:f1:43:c9:ea:15:34:f4:98:68:c7:90:30: 6b:ed:c9:42:4d:8a:78:a2:1f:88:8d:cf:48:c4:fe: 40:bf:5e:71:11:03:94:b9:ac:5b:d9:4e:4a:01:1b: 41:d3:e4:80:c8:8d:ad:a1:a4:0e:1e:d7:25:4a:9b: d1:a2:a0:cb:1b:bd:05:9b:ea:12:66:4c:2e:60:bc: 18:6e:be:03:8b:ff:ee:85:ce:5c:5d:15:50:1d:8d: 8b:46:89:2d:7e:b4:96:84:8e:5a:2a:ef:23:e3:b8: 4a:b7:99:d1:de:e0:42:a2:62:97:ae:19:30:75:6c: 49:b1:3c:b1:22:8d:6c:a0:d2:c5:76:95:14:23:12: 59:1c:ee:d5:8f:ab:78:56:5a:e8:d5:44:4e:48:cd: 40:2d:fe:e6:1f:ac:fc:c8:d7:aa:9a:06:8e:ed:c5: 2a:98:35:6d:18:7c:75:09:75:2e:c7:c7:be:cf:e8: 5c:b8:b0:8b:ec:5f:fb:8e:84:99:81:4a:72:75:20: 2d:66:eb:73:8a:45:fe:28:29:52:98:ad:60:6f:f0: 4e:84:17:96:8e:7b:bf:a0:59:83:a9:e6:62:21:45: d8:b4:72:2c:2c:ed:bb:93:72:2a:98:e8:f9:81:c8: 2a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:36:D5:99:69:AB:68:9B:F1:59:84:05:7E:F1:9C:13:5A:96:21:A1 X509v3 Authority Key Identifier: keyid:20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:15:3b:70:54:a5:ef:37:9b:95:c7:a5:ab:62:75:52:1a:db: 0a:b7:2b:e3:42:ed:45:0c:df:3c:91:a0:ed:2d:f0:ca:a8:86: f9:d5:93:ac:6f:b6:1a:5b:8d:d5:9f:79:a8:76:f7:cd:23:2a: 21:d4:a4:d1:40:de:07:68:fc:8a:75:82:9a:b8:d7:56:44:99: 24:7a:24:66:e0:ca:04:62:29:46:e6:87:78:5c:ac:7a:d9:41: 8e:a4:2d:c4:6a:84:ba:13:9a:5b:44:2f:e2:15:a7:3c:c4:53: b2:cb:d1:1a:9c:ff:61:b8:e5:b4:66:29:67:86:0a:a0:d0:e2: ea:97:06:af:4f:03:a9:30:12:a7:44:50:74:50:f0:3e:54:2a: a3:c9:bc:48:96:42:da:22:cb:10:59:a0:90:91:10:63:92:f5: ce:b3:c3:9b:c7:e9:6e:cd:eb:5d:ce:78:fc:bc:61:28:fc:b3: fa:6a:d6:81:75:ef:2e:ca:df:72:d0:7f:62:8b:39:56:4a:b5: 4a:9e:25:59:d4:67:6c:1e:bb:f7:bb:87:0f:d5:4e:30:a2:a9: 19:fb:d1:ab:33:d2:c8:8e:8d:08:da:49:ea:4f:9f:b1:24:7a: a8:21:45:a5:dc:41:dd:ac:3a:af:a8:e7:76:13:a1:50:1e:1d: 83:ec:ac:06 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDBCMjExMC8GA1UEBRMoMjBGM0JCRDQ5OEY0M0M5NzkxM0VFMUI5OTQyOURCODkw QjQ3NjJCMDAeFw0yNjAzMDExMDEyMDhaFw0yNjAzMDgxMDEyMDhaMBgxFjAUBgNV BAMTDTY5YTQxMGY5LTViNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8xtEqNPhOyu/+KNpOan1x4PFDyeoVNPSYaMeQMGvtyUJNiniiH4iNz0jE/kC/ XnERA5S5rFvZTkoBG0HT5IDIja2hpA4e1yVKm9GioMsbvQWb6hJmTC5gvBhuvgOL /+6FzlxdFVAdjYtGiS1+tJaEjloq7yPjuEq3mdHe4EKiYpeuGTB1bEmxPLEijWyg 0sV2lRQjElkc7tWPq3hWWujVRE5IzUAt/uYfrPzI16qaBo7txSqYNW0YfHUJdS7H x77P6Fy4sIvsX/uOhJmBSnJ1IC1m63OKRf4oKVKYrWBv8E6EF5aOe7+gWYOp5mIh Rdi0ciws7buTciqY6PmByCqJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUMjbVmWmr aJvxWYQFfvGcE1qWIaEwHwYDVR0jBBgwFoAUIPO71Jj0PJeRPuG5lCnbiQtHYrAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MEIyL0QxNDZFNEYwREEz NjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEplUlB1RzVsQ25iaVF0SFly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVBPNzFKajBQSmVSUHVHNWxDbmJpUXRIWXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MEIyL0QxNDZFNEYwREEzNjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEpl UlB1RzVsQ25iaVF0SFlyQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB7FTtwVKXvN5uVx6WrYnVSGtsKtyvjQu1FDN88kaDtLfDKqIb51ZOsb7YaW43V n3modvfNIyoh1KTRQN4HaPyKdYKauNdWRJkkeiRm4MoEYilG5od4XKx62UGOpC3E aoS6E5pbRC/iFac8xFOyy9EanP9huOW0Zilnhgqg0OLqlwavTwOpMBKnRFB0UPA+ VCqjybxIlkLaIssQWaCQkRBjkvXOs8Obx+luzetdznj8vGEo/LP6ataBde8uyt9y 0H9iizlWSrVKniVZ1GdsHrv3u4cP1U4woqkZ+9GrM9LIjo0I2knqT5+xJHqoIUWl 3EHdrDqvqOd2E6FQHh2D7KwG -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:03 2026 by rpki-client