$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft File: CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft (raw, json) Hash identifier: sOq2v3RHJhXvl8msUV/xGlXP/1BhuH/sFbYlya63x48= Subject key identifier: FB:23:73:90:CD:C3:70:AC:4D:47:A3:BF:DA:F3:7C:59:FB:E8:59:45 Authority key identifier: 08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F Certificate issuer: /CN=A91B8D33/serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft Manifest number: 01DD Signing time: Sun 01 Mar 2026 04:18:56 +0000 Manifest this update: Sun 01 Mar 2026 04:18:55 +0000 Manifest next update: Sun 08 Mar 2026 04:18:55 +0000 Files and hashes: 1: CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl (hash: aV12kbLq7f/BYhNH6m8kQWhXM4ull2Hfc0V4egQ1o2U=) 2: C698E13ED1BD11EF9C00D867C4F9AE02.roa (hash: HG1f/f+5SFm8izuIB1/hs3U0LoMscjbV7+BezDm08/8=) 3: 86D7DAE6D1C211EF9AA9410EC4F9AE02.roa (hash: 8qXcxCRSjyOP/oKs9vNyiIBs05KSJRouDgmhdgT6x8M=) 4: E62F8796D1BD11EFBCCC0B68C4F9AE02.roa (hash: v3dChgnA84SfDYgqRC2E+QVbu8keAWHj6W+tTQnPlbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D33, serialNumber=08D68CF4500745375FF2CC584BA5FBE577BEE33F Validity Not Before: Mar 1 04:18:55 2026 GMT Not After : Mar 8 04:18:55 2026 GMT Subject: CN=69a3be2f-5317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1d:6f:e5:86:5b:c0:8e:f0:90:c0:77:99:1d: 6a:f8:71:cf:13:39:d3:34:25:26:23:f2:ed:be:b7: 1d:fc:e4:bf:b8:d0:b6:df:a8:83:60:bf:3e:53:02: 91:ad:e9:29:02:2e:0e:2f:6a:2e:60:d2:bd:c3:66: d6:b7:c9:35:66:78:79:d9:82:76:fc:d9:1d:cb:52: a7:dd:e5:85:ca:8c:17:bf:f5:96:c5:f5:56:bb:d9: 3b:fb:80:97:5c:f5:27:84:12:2b:4a:d1:aa:88:96: 21:c7:b5:96:a9:a5:8b:7f:38:cd:dc:a7:b9:65:ab: e8:c5:59:70:cf:18:dc:cc:5e:3d:91:78:ee:0f:69: b4:d8:a8:0e:fa:0e:e9:43:d4:6a:2d:6f:0d:ff:ce: 08:80:69:94:65:cb:06:91:a0:78:eb:8b:86:10:71: 53:5c:34:a4:0a:6b:4c:6e:8f:9b:98:91:37:93:26: 9f:b4:25:c7:f5:be:f1:59:7e:37:9e:13:2a:e3:61: 89:53:fa:85:57:a8:31:40:83:96:f7:f8:05:d8:d0: 7a:4c:38:8d:12:dc:85:21:82:e5:00:d1:fb:f8:3c: 94:18:4c:f5:3a:f2:75:af:9d:8b:a9:a8:4d:56:1b: 49:4f:5c:49:63:cb:ce:a6:77:18:fe:53:55:fb:43: 68:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:23:73:90:CD:C3:70:AC:4D:47:A3:BF:DA:F3:7C:59:FB:E8:59:45 X509v3 Authority Key Identifier: keyid:08:D6:8C:F4:50:07:45:37:5F:F2:CC:58:4B:A5:FB:E5:77:BE:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNaM9FAHRTdf8sxYS6X75Xe-4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D33/59626710477711EEA6BD537EC4F9AE02/CNaM9FAHRTdf8sxYS6X75Xe-4z8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:42:bc:78:77:d1:56:93:d4:e3:c6:f9:1e:14:eb:1b:fb:0c: dc:e7:77:48:dd:a8:a5:54:f0:33:dd:60:08:63:dc:6e:7e:2e: 8a:91:d7:8c:02:c4:4f:78:1e:25:d6:a4:8a:a4:c5:5f:26:43: 70:c1:01:86:23:83:96:2f:29:24:f6:b2:1e:a9:12:fd:75:8c: 34:aa:51:51:23:41:0d:19:07:ce:38:b7:89:d3:16:ae:34:07: 9e:db:79:2e:38:32:b3:b3:92:89:ff:69:0b:ec:88:93:39:2e: 9b:ae:82:b0:09:e5:2e:bc:b3:36:b9:89:12:f1:e4:5c:31:19: ce:b7:61:c8:1c:3d:1f:19:35:89:b7:8c:3b:c8:f6:88:a2:74: 45:d7:ba:f0:5c:9a:86:9c:30:a8:52:d9:a9:49:3d:f4:0f:5c: 9e:58:08:8d:6c:cc:1e:db:3e:60:46:04:d2:95:86:fa:00:90: 7d:cb:dc:74:ed:01:9e:86:0a:0d:ef:d0:56:30:02:bf:0b:ab: 88:7c:c4:ef:ec:8f:35:6c:2c:63:61:94:9c:11:bd:89:aa:d3: dd:31:d2:5d:86:47:77:c0:55:1f:1b:a5:99:5c:df:9f:96:fe: 6f:61:ec:cf:00:ba:9c:b5:d3:d4:01:33:05:38:ec:7e:38:ff: 3a:8a:18:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhEMzMxMTAvBgNVBAUTKDA4RDY4Q0Y0NTAwNzQ1Mzc1RkYyQ0M1ODRCQTVGQkU1 NzdCRUUzM0YwHhcNMjYwMzAxMDQxODU1WhcNMjYwMzA4MDQxODU1WjAYMRYwFAYD VQQDDA02OWEzYmUyZi01MzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4B1v5YZbwI7wkMB3mR1q+HHPEznTNCUmI/Ltvrcd/OS/uNC236iDYL8+UwKR rekpAi4OL2ouYNK9w2bWt8k1Znh52YJ2/Nkdy1Kn3eWFyowXv/WWxfVWu9k7+4CX XPUnhBIrStGqiJYhx7WWqaWLfzjN3Ke5ZavoxVlwzxjczF49kXjuD2m02KgO+g7p Q9RqLW8N/84IgGmUZcsGkaB464uGEHFTXDSkCmtMbo+bmJE3kyaftCXH9b7xWX43 nhMq42GJU/qFV6gxQIOW9/gF2NB6TDiNEtyFIYLlANH7+DyUGEz1OvJ1r52LqahN VhtJT1xJY8vOpncY/lNV+0NoVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPsjc5DN w3CsTUejv9rzfFn76FlFMB8GA1UdIwQYMBaAFAjWjPRQB0U3X/LMWEul++V3vuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQzMy81OTYyNjcxMDQ3 NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJUZGY4c3hZUzZYNzVYZS00 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOYU05RkFIUlRkZjhzeFlTNlg3NVhlLTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQzMy81OTYyNjcxMDQ3NzcxMUVFQTZCRDUzN0VDNEY5QUUwMi9DTmFNOUZBSFJU ZGY4c3hZUzZYNzVYZS00ejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtUK8eHfRVpPU48b5HhTrG/sM3Od3SN2opVTwM91gCGPcbn4uipHXjALET3ge JdakiqTFXyZDcMEBhiODli8pJPayHqkS/XWMNKpRUSNBDRkHzji3idMWrjQHntt5 Ljgys7OSif9pC+yIkzkum66CsAnlLryzNrmJEvHkXDEZzrdhyBw9Hxk1ibeMO8j2 iKJ0Rde68FyahpwwqFLZqUk99A9cnlgIjWzMHts+YEYE0pWG+gCQfcvcdO0BnoYK De/QVjACvwuriHzE7+yPNWwsY2GUnBG9iarT3THSXYZHd8BVHxulmVzfn5b+b2Hs zwC6nLXT1AEzBTjsfjj/OooYWQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:38:54 2026 by rpki-client