$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: Bf8HfEWoqDIXIWiqb+gARTJp5qBeTLSLl07hm28oRw0= Subject key identifier: 1D:19:A3:57:03:E3:30:05:28:41:4D:C9:6F:B3:63:94:89:8F:88:5A Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0A44 Signing time: Mon 02 Mar 2026 01:49:00 +0000 Manifest this update: Mon 02 Mar 2026 01:48:58 +0000 Manifest next update: Mon 09 Mar 2026 01:48:58 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: ZUAIe7XGw8S2xfbMX9EK+4ILjoiq//LKE5QKbdHBB8I=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: bp4o6x+4WVat+L6fBmKbMiI+z6fNEDUgFZSzD/cLCUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Mar 2 01:48:58 2026 GMT Not After : Mar 9 01:48:58 2026 GMT Subject: CN=69a4ec8c-ff24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c0:13:76:d6:df:0d:37:9c:19:c9:16:20:52: 88:0a:63:a1:a9:a0:7f:8e:f6:30:18:b6:19:e0:42: 2e:e0:32:9b:ca:03:be:de:5d:97:8c:c6:36:fb:eb: ca:98:57:b1:88:a8:de:20:ae:66:a5:5e:d0:64:74: a0:6c:67:e1:6a:8b:eb:a3:a3:58:7d:59:d0:00:a2: 2d:f5:4c:1f:44:e9:b9:20:c0:d7:71:27:f2:d8:9b: a9:9a:83:36:38:06:3d:c2:88:c3:3c:e0:15:5e:71: 82:f1:5e:bd:c7:c8:87:2f:28:81:53:6a:c6:28:ea: db:0d:76:e5:6f:e3:a5:7e:69:67:34:b0:b2:5c:7d: cb:09:78:2a:85:ac:e7:24:9f:c9:0d:67:13:49:39: b8:0c:9d:6a:02:6f:04:ca:63:15:8c:6c:70:39:0e: 04:ba:43:ee:99:87:38:c8:77:3e:05:cf:0e:41:cb: e1:ca:13:ed:77:1f:e1:68:de:6c:1f:01:94:6e:2a: 3c:fc:be:0b:10:ee:f6:d5:6f:13:fc:93:c4:a0:df: 26:00:e5:1a:d9:9c:15:8e:9c:e0:d4:65:46:f0:36: 70:84:7c:d9:db:9d:81:17:4d:78:19:89:2f:4b:e6: e4:28:75:4e:42:f7:cc:12:40:81:c7:40:9a:71:60: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:19:A3:57:03:E3:30:05:28:41:4D:C9:6F:B3:63:94:89:8F:88:5A X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:c1:59:6a:37:34:6f:93:5e:7f:1a:b6:42:5d:5b:3a:03: 26:49:86:3c:b4:9b:a9:e0:6c:80:bb:64:59:31:aa:e5:0f:95: e5:6f:45:54:4b:14:bb:38:99:46:76:59:18:20:4a:1d:72:f2: 55:6d:00:a2:72:19:dc:b3:bb:9d:d7:0f:7c:cd:58:f5:bb:11: 3f:58:c1:58:48:b9:95:45:73:cc:95:7e:b8:90:97:23:8f:12: e5:23:d6:9b:36:3e:63:cb:a2:2c:36:f5:f8:b9:1b:20:ac:87: 65:22:93:f2:03:ce:f3:ca:87:be:08:63:8c:c6:a6:6f:c7:03: 21:83:8b:05:c8:1e:b8:7a:10:10:25:8e:1f:12:a5:da:59:4c: 03:fe:a4:5c:5e:a7:48:42:e3:1c:25:f1:21:fd:4f:ce:61:20: 70:d9:f1:83:1b:49:ef:01:51:d0:a4:0c:08:86:bf:ae:37:13: 93:36:45:d0:c3:8f:c9:4e:01:61:b6:56:9f:df:f8:9a:a3:38: c1:20:c2:bc:1d:20:ce:8c:f9:06:7b:8f:ea:be:5f:4a:d7:52: c6:89:d3:d8:dd:2b:82:f0:23:53:83:60:64:ef:a6:e1:f9:35: 14:e4:0f:ab:38:ae:00:3d:37:a7:d2:e5:de:37:b2:1d:2b:97: f2:c5:0b:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjYwMzAyMDE0ODU4WhcNMjYwMzA5MDE0ODU4WjAYMRYwFAYD VQQDEw02OWE0ZWM4Yy1mZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMATdtbfDTecGckWIFKICmOhqaB/jvYwGLYZ4EIu4DKbygO+3l2XjMY2++vK mFexiKjeIK5mpV7QZHSgbGfhaovro6NYfVnQAKIt9UwfROm5IMDXcSfy2JupmoM2 OAY9wojDPOAVXnGC8V69x8iHLyiBU2rGKOrbDXblb+OlfmlnNLCyXH3LCXgqhazn JJ/JDWcTSTm4DJ1qAm8EymMVjGxwOQ4EukPumYc4yHc+Bc8OQcvhyhPtdx/haN5s HwGUbio8/L4LEO721W8T/JPEoN8mAOUa2ZwVjpzg1GVG8DZwhHzZ252BF014GYkv S+bkKHVOQvfMEkCBx0CacWBxNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0Zo1cD 4zAFKEFNyW+zY5SJj4haMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN5fBWWo3NG+TXn8atkJdWzoDJkmGPLSbqeBsgLtkWTGq5Q+V5W9FVEsUuziZ RnZZGCBKHXLyVW0AonIZ3LO7ndcPfM1Y9bsRP1jBWEi5lUVzzJV+uJCXI48S5SPW mzY+Y8uiLDb1+LkbIKyHZSKT8gPO88qHvghjjMamb8cDIYOLBcgeuHoQECWOHxKl 2llMA/6kXF6nSELjHCXxIf1PzmEgcNnxgxtJ7wFR0KQMCIa/rjcTkzZF0MOPyU4B YbZWn9/4mqM4wSDCvB0gzoz5BnuP6r5fStdSxonT2N0rgvAjU4NgZO+m4fk1FOQP qziuAD03p9Ll3jeyHSuX8sUL9w== -----END CERTIFICATE-----Generated at Mon Mar 2 13:24:48 2026 by rpki-client