$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: hzbFFUOVENhH7PK3XjwWmJ6u6KCvUBiyWpi+YWJeEGQ= Subject key identifier: D3:B5:0A:66:AB:57:B9:E9:FE:8F:D6:B2:CD:72:E2:B2:7F:86:4D:EA Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 031E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 0317 Signing time: Mon 02 Mar 2026 01:08:50 +0000 Manifest this update: Mon 02 Mar 2026 01:08:48 +0000 Manifest next update: Mon 09 Mar 2026 01:08:48 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: twNRfiy3mIN4nea6SaGMgDDJ/pKt9h6rsteUzj3F/8Y=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: q+aeOJgllUvaXxmahDweOCiCHQM4aB3x3nz/0WBTZiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: Mar 2 01:08:48 2026 GMT Not After : Mar 9 01:08:48 2026 GMT Subject: CN=69a4e321-2075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:77:53:9f:86:82:a7:e8:3b:52:13:2a:8c:5e: d9:3b:07:fd:4b:62:4c:13:00:00:eb:d1:59:40:68: 1d:93:1c:a0:04:e8:5d:c9:1e:c3:c6:c7:e3:c6:10: ce:75:b5:13:59:84:75:a9:3b:7b:81:52:2f:2c:ac: fc:42:47:14:b2:45:4d:0a:07:7b:3c:93:53:d3:cb: 99:61:b3:26:f5:82:64:d2:df:47:3e:a1:9d:e4:26: 94:a6:91:fb:51:d7:2e:27:78:df:fa:4f:6c:bf:da: db:fc:8b:1c:b6:f0:d2:7f:78:49:14:07:02:bc:8d: 14:53:ff:a6:c5:ee:1d:89:16:19:02:2e:97:3d:4a: 82:69:0c:43:ba:83:b9:dd:02:02:ae:eb:06:9e:d5: b8:02:5f:8b:13:0f:a3:6b:ff:19:5b:c9:5d:41:84: 90:79:f3:15:7c:48:db:6e:7b:79:af:0d:b7:eb:f7: 47:ca:23:23:26:26:8d:29:69:3f:8f:7a:8d:21:00: e4:06:12:82:ef:35:df:32:fa:03:0f:a1:79:c2:71: d6:7e:52:44:d0:09:f1:fe:de:4c:b2:b4:fc:91:bf: 62:84:20:34:27:89:4e:74:76:5c:0c:60:1e:a6:de: 9a:ca:d3:75:5f:ad:f2:e5:7e:8c:18:eb:ec:c4:df: c2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B5:0A:66:AB:57:B9:E9:FE:8F:D6:B2:CD:72:E2:B2:7F:86:4D:EA X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ce:dc:1f:40:36:9a:18:8e:d4:83:95:66:ab:2a:7d:58:38: 91:9c:22:fb:5f:e4:5f:ae:7b:f9:38:14:84:3a:04:f8:bb:08: 76:15:02:63:e0:36:e1:3d:d1:fe:36:33:e4:c6:c8:ba:a4:da: 84:64:0b:5a:0f:dd:33:bc:4e:8f:ef:54:e5:42:65:0e:42:e5: a8:87:f1:ea:55:cc:1c:be:04:fb:07:37:91:74:e0:fa:0c:e6: 35:61:b0:eb:ee:81:4c:64:64:00:0d:0d:65:f7:00:81:5e:24: 7e:eb:23:b6:e7:c8:f2:d0:d6:b4:e4:2b:25:68:cb:41:07:60: 54:92:d4:79:de:50:fb:fd:26:fb:d7:38:61:5e:12:36:7d:ec: 74:0f:c1:5f:b7:06:64:ba:18:eb:3b:5e:1f:8f:6c:d1:cc:c9: ad:a1:63:90:63:ed:dc:59:c6:29:74:4f:2d:ed:2b:f4:7f:af: f3:d7:d2:19:76:e9:11:cf:33:b4:a2:83:e7:0e:88:47:e2:fb: f0:db:70:d4:12:dd:28:26:e7:99:ef:d2:9a:5a:75:d0:2c:25: 32:8e:d6:ac:84:6f:53:3d:92:e3:6d:bd:ea:5e:88:18:b0:5b: 6b:8f:16:c7:28:f5:b7:5d:46:ab:38:1d:6b:c8:2d:6e:79:f6: 60:6f:ef:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjYwMzAyMDEwODQ4WhcNMjYwMzA5MDEwODQ4WjAYMRYwFAYD VQQDEw02OWE0ZTMyMS0yMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3dTn4aCp+g7UhMqjF7ZOwf9S2JMEwAA69FZQGgdkxygBOhdyR7DxsfjxhDO dbUTWYR1qTt7gVIvLKz8QkcUskVNCgd7PJNT08uZYbMm9YJk0t9HPqGd5CaUppH7 UdcuJ3jf+k9sv9rb/IsctvDSf3hJFAcCvI0UU/+mxe4diRYZAi6XPUqCaQxDuoO5 3QICrusGntW4Al+LEw+ja/8ZW8ldQYSQefMVfEjbbnt5rw236/dHyiMjJiaNKWk/ j3qNIQDkBhKC7zXfMvoDD6F5wnHWflJE0Anx/t5MsrT8kb9ihCA0J4lOdHZcDGAe pt6aytN1X63y5X6MGOvsxN/C1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNO1Cmar V7np/o/Wss1y4rJ/hk3qMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ87cH0A2mhiO1IOVZqsqfVg4kZwi+1/kX657+TgUhDoE+LsIdhUCY+A24T3R /jYz5MbIuqTahGQLWg/dM7xOj+9U5UJlDkLlqIfx6lXMHL4E+wc3kXTg+gzmNWGw 6+6BTGRkAA0NZfcAgV4kfusjtufI8tDWtOQrJWjLQQdgVJLUed5Q+/0m+9c4YV4S Nn3sdA/BX7cGZLoY6zteH49s0czJraFjkGPt3FnGKXRPLe0r9H+v89fSGXbpEc8z tKKD5w6IR+L78Ntw1BLdKCbnme/Smlp10CwlMo7WrIRvUz2S42296l6IGLBba48W xyj1t11Gqzgda8gtbnn2YG/vIw== -----END CERTIFICATE-----Generated at Mon Mar 2 14:08:00 2026 by rpki-client