$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: hcfIYL29Ke8HwDiSltICkdJG67bVOm3I4GSrtQxUroE= Subject key identifier: 9F:37:08:EE:49:22:62:C7:C8:72:82:36:B1:73:E1:D9:C9:7D:67:54 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 026C Signing time: Sun 01 Mar 2026 23:55:17 +0000 Manifest this update: Sun 01 Mar 2026 23:55:17 +0000 Manifest next update: Sun 08 Mar 2026 23:55:17 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: TlMu2HAwB1uZ60lN1FHJYGurMTST51gWkohK4IIloT8=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: WcWgzJGh0m7kjX3X0vlH0++NcJ8zb8A6kxhRMuoMb8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Mar 1 23:55:17 2026 GMT Not After : Mar 8 23:55:17 2026 GMT Subject: CN=69a4d1e5-ef90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:43:cc:e8:3d:86:1c:ab:ba:3f:d5:d0:80:d6: 12:86:59:46:7c:16:5c:fe:2b:15:93:5f:7b:eb:e3: 42:97:24:e5:21:df:df:29:8e:ea:6d:41:b8:e4:38: bf:7b:f8:a5:06:3e:90:9f:cb:dc:b8:06:71:59:61: b3:05:0e:8c:13:71:df:cc:17:44:f2:57:1e:53:cf: 27:33:98:8d:f9:8f:02:10:69:06:ea:6a:98:54:e8: d5:c8:5b:c7:5e:02:e0:45:f9:d5:d0:71:b5:a9:df: 82:1c:66:02:cb:a3:a0:5d:7d:08:11:72:14:00:92: 5a:05:ab:75:8d:ec:7a:18:f9:98:cc:48:8d:89:60: c3:fe:19:b2:1c:f9:75:c7:2d:af:ac:b8:4e:83:ba: f3:07:ab:ed:f7:c4:ce:3c:2a:c2:c9:02:b6:89:9c: 05:7d:31:a2:c6:35:70:3d:94:95:8c:e2:fd:e7:6b: 5f:5e:5e:0d:e8:dc:b8:b4:c6:07:d8:b4:35:db:08: f4:57:19:91:7a:b9:87:d1:3d:36:00:19:5b:27:a8: ef:b2:b7:59:cf:ae:7f:ca:fe:a7:e9:93:81:23:69: 28:5d:35:98:62:24:f8:67:11:76:48:55:73:d3:9f: 27:3b:be:71:f2:c0:fb:da:97:ce:eb:ea:e2:06:1b: 57:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:37:08:EE:49:22:62:C7:C8:72:82:36:B1:73:E1:D9:C9:7D:67:54 X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:98:ae:60:18:5d:67:b9:28:73:dd:a1:c4:6e:94:8a:7d:48: 2b:4c:b3:c7:10:b6:de:89:99:d4:fb:90:9b:0e:69:88:76:fc: ca:6d:6b:70:ec:4f:74:2a:67:22:8f:aa:e9:f0:0a:b8:2a:fb: e2:28:89:0b:f9:98:ff:b6:70:aa:1a:99:c7:80:86:a9:cd:9a: f7:62:b9:50:eb:c5:66:66:65:e8:1f:dc:6c:35:e9:b9:b8:4d: d6:b2:49:25:72:6c:11:af:8e:4c:73:dd:5f:88:8b:5a:21:ca: 14:8e:b0:86:36:6a:b8:99:5f:84:6e:20:44:c9:a9:63:e1:57: 36:eb:d6:64:1c:42:87:38:c5:02:92:1a:f5:46:f4:99:9c:30: 82:15:5a:27:58:fb:9b:a9:0f:e0:a4:c5:dc:1f:ac:7d:1a:ba: 4b:c4:3e:0c:f6:22:59:26:b6:8c:d6:58:bd:5b:c8:bd:9e:6c: 39:f4:a2:85:ac:f0:fb:ca:bd:0d:7b:e3:d3:eb:49:5d:9b:f5: 87:5b:36:1a:47:52:9b:3e:b5:5b:44:58:4a:16:11:bf:c9:d0: 20:11:32:a1:c4:10:ee:10:c9:3e:23:f2:d9:ac:da:41:60:da: 46:7c:5b:d7:5a:44:49:c1:17:d4:cd:f3:e9:d2:45:83:ba:ef: 45:4d:54:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjYwMzAxMjM1NTE3WhcNMjYwMzA4MjM1NTE3WjAYMRYwFAYD VQQDEw02OWE0ZDFlNS1lZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUPM6D2GHKu6P9XQgNYShllGfBZc/isVk1976+NClyTlId/fKY7qbUG45Di/ e/ilBj6Qn8vcuAZxWWGzBQ6ME3HfzBdE8lceU88nM5iN+Y8CEGkG6mqYVOjVyFvH XgLgRfnV0HG1qd+CHGYCy6OgXX0IEXIUAJJaBat1jex6GPmYzEiNiWDD/hmyHPl1 xy2vrLhOg7rzB6vt98TOPCrCyQK2iZwFfTGixjVwPZSVjOL952tfXl4N6Ny4tMYH 2LQ12wj0VxmRermH0T02ABlbJ6jvsrdZz65/yv6n6ZOBI2koXTWYYiT4ZxF2SFVz 058nO75x8sD72pfO6+riBhtXTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ83CO5J ImLHyHKCNrFz4dnJfWdUMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvZiuYBhdZ7koc92hxG6Uin1IK0yzxxC23omZ1PuQmw5piHb8ym1rcOxPdCpn Io+q6fAKuCr74iiJC/mY/7ZwqhqZx4CGqc2a92K5UOvFZmZl6B/cbDXpubhN1rJJ JXJsEa+OTHPdX4iLWiHKFI6whjZquJlfhG4gRMmpY+FXNuvWZBxChzjFApIa9Ub0 mZwwghVaJ1j7m6kP4KTF3B+sfRq6S8Q+DPYiWSa2jNZYvVvIvZ5sOfSihazw+8q9 DXvj0+tJXZv1h1s2GkdSmz61W0RYShYRv8nQIBEyocQQ7hDJPiPy2azaQWDaRnxb 11pEScEX1M3z6dJFg7rvRU1Ubg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:58 2026 by rpki-client