$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft File: FF-_nuMXN-kcPNSE7AFq48jzgDw.mft (raw, json) Hash identifier: c8I76cDQMh8pFCGCbVe07PTiOEP5re2rh0Bk3QsCfkY= Subject key identifier: F5:94:CC:4E:F7:4A:76:3D:4F:40:2B:27:35:5C:A1:2F:8A:55:B7:DE Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft Manifest number: 0337 Signing time: Mon 02 Mar 2026 02:49:22 +0000 Manifest this update: Mon 02 Mar 2026 02:49:19 +0000 Manifest next update: Mon 09 Mar 2026 02:49:19 +0000 Files and hashes: 1: FF-_nuMXN-kcPNSE7AFq48jzgDw.crl (hash: sFrBhuj7r10h+S21oDYwv6GKO7iABnC/jHNzrJNM01c=) 2: D5D64BB0FB6811EC863B8150C4F9AE02.roa (hash: Uh7RounuLjLEs7PZV85Xjp+xSucg2VsyDoPk68Nkps8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Mar 2 02:49:19 2026 GMT Not After : Mar 9 02:49:19 2026 GMT Subject: CN=69a4fab1-3c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:40:4d:20:1e:0c:c8:34:ad:61:01:1b:bc:5f: c1:c7:05:28:6a:c4:ed:03:86:7c:93:27:96:c4:04: c1:b6:d8:ff:41:b0:e2:b1:8b:03:57:b1:d3:14:41: 20:1a:22:e6:a6:9e:12:15:62:67:a2:20:11:56:e6: bb:bc:63:cb:19:a9:f4:43:91:3b:47:16:f5:65:da: 9d:17:7f:99:bf:8b:07:95:bf:18:b6:d3:18:63:6f: 26:9c:8b:83:6a:e9:42:86:bc:dc:db:73:dc:99:b8: 9e:4c:6b:73:07:c4:d8:e1:03:79:50:7c:e5:cb:31: 97:8b:1d:56:f7:96:44:df:98:d2:3f:3f:6c:dc:af: 6d:35:03:6c:9d:6f:1c:e7:c7:68:14:c4:b0:6e:b4: 1d:e6:23:d5:2d:32:31:0b:be:3e:8a:bf:62:db:22: 97:d8:fd:69:51:e0:35:72:c2:b7:0f:81:b1:9d:4c: 0a:9b:74:98:52:ab:86:e4:5e:f6:eb:1d:72:f5:33: 7b:d2:62:63:e7:62:46:f7:4c:72:ac:4e:85:8d:2a: 10:4a:9e:44:ce:10:04:8d:a2:ef:7a:b5:92:b4:1f: c4:a1:ed:40:00:9c:84:00:a1:82:84:2c:e3:9b:65: 7c:4c:69:48:c0:04:7b:d7:3a:21:4e:c3:6a:a5:7d: ef:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:94:CC:4E:F7:4A:76:3D:4F:40:2B:27:35:5C:A1:2F:8A:55:B7:DE X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a7:a6:75:8e:1d:ac:67:cf:9b:46:66:cc:14:7b:b2:d1:23: a0:df:b2:b5:4e:e3:13:1d:de:62:a2:cb:8f:c9:05:9a:dd:73: c9:2b:ed:f2:ba:3a:ee:ce:bf:79:e6:1f:8c:ba:f4:a1:14:8d: c4:df:b8:a5:0e:df:a7:d0:f7:be:bd:48:9a:d2:48:23:6d:36: b7:82:40:0a:a1:11:df:bf:3b:5a:b4:fc:80:0c:4e:48:8a:28: f9:a5:04:95:08:29:32:54:21:f5:04:63:ca:82:04:3a:40:e5: 01:b2:3f:80:20:f5:46:e2:e8:9f:a9:dc:29:c7:b6:86:f0:14: 62:45:57:86:54:fe:25:68:3b:8a:e3:d7:12:1b:67:f9:55:bd: fc:d9:cf:c1:61:bc:bb:8b:2a:4f:91:4f:d5:2e:79:52:93:98: d8:fe:33:34:14:73:bf:71:5b:40:8e:40:a5:5d:a6:29:4d:a1: 1c:79:a8:87:f6:ef:ff:74:8f:49:b7:0c:fb:4c:87:5a:93:a0: 5a:36:e8:72:99:f2:c4:3a:c2:da:51:2f:3e:df:a7:43:49:1f: 3e:54:e7:60:91:e2:67:46:b7:a2:41:35:39:d9:e0:6e:bc:e9: ad:18:d2:0b:83:32:68:c4:73:32:e4:5f:df:be:07:5f:99:c4: 28:61:d4:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjYwMzAyMDI0OTE5WhcNMjYwMzA5MDI0OTE5WjAYMRYwFAYD VQQDEw02OWE0ZmFiMS0zYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkBNIB4MyDStYQEbvF/BxwUoasTtA4Z8kyeWxATBttj/QbDisYsDV7HTFEEg GiLmpp4SFWJnoiARVua7vGPLGan0Q5E7Rxb1ZdqdF3+Zv4sHlb8YttMYY28mnIuD aulChrzc23PcmbieTGtzB8TY4QN5UHzlyzGXix1W95ZE35jSPz9s3K9tNQNsnW8c 58doFMSwbrQd5iPVLTIxC74+ir9i2yKX2P1pUeA1csK3D4GxnUwKm3SYUquG5F72 6x1y9TN70mJj52JG90xyrE6FjSoQSp5EzhAEjaLverWStB/Eoe1AAJyEAKGChCzj m2V8TGlIwAR71zohTsNqpX3vKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPWUzE73 SnY9T0ArJzVcoS+KVbfeMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc4RC82N0I0NDgyOEZCNjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4t a2NQTlNFN0FGcTQ4anpnRHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN6emdY4drGfPm0ZmzBR7stEjoN+ytU7jEx3eYqLLj8kFmt1zySvt8ro67s6/ eeYfjLr0oRSNxN+4pQ7fp9D3vr1ImtJII202t4JACqER3787WrT8gAxOSIoo+aUE lQgpMlQh9QRjyoIEOkDlAbI/gCD1RuLon6ncKce2hvAUYkVXhlT+JWg7iuPXEhtn +VW9/NnPwWG8u4sqT5FP1S55UpOY2P4zNBRzv3FbQI5ApV2mKU2hHHmoh/bv/3SP SbcM+0yHWpOgWjbocpnyxDrC2lEvPt+nQ0kfPlTnYJHiZ0a3okE1OdngbrzprRjS C4MyaMRzMuRf374HX5nEKGHUYA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:46 2026 by rpki-client