$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: sm99jGLu25WxfR0kZlso4k4OrzPedxfFH+rf8DejKbg= Subject key identifier: A7:8A:53:63:36:00:7D:D5:96:A0:CC:94:3F:1B:10:22:AF:20:70:0E Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 04BB Signing time: Sun 01 Mar 2026 00:35:45 +0000 Manifest this update: Sun 01 Mar 2026 00:35:44 +0000 Manifest next update: Sun 08 Mar 2026 00:35:44 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: +rdiTzF/qqomcMSXL2ohRHVcu4zObdUkB4PPuTgFGu0=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: d0J88SK5w417X1yK7QAViqe9ZfM9K8T6FnLHWkQvyP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Mar 1 00:35:44 2026 GMT Not After : Mar 8 00:35:44 2026 GMT Subject: CN=69a389e1-e27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:e4:36:60:6f:eb:c4:b3:76:d1:ca:a9:c8: 4f:c7:ed:13:ae:91:67:d2:50:47:7c:2e:e8:78:0b: 55:16:f4:03:51:74:05:dd:18:e5:f5:b0:1b:91:87: 45:f7:5b:d3:4c:c4:f3:4e:f2:11:7e:ca:fa:63:93: a9:12:0e:37:8a:86:61:8d:48:c0:bc:f8:b9:59:d5: 91:12:5a:92:c0:dd:cb:14:25:48:f5:91:d2:9d:38: e7:6f:0b:ba:65:f8:ce:ed:9f:31:0b:61:2a:9f:bc: 00:07:70:82:86:54:af:0e:b6:82:97:8f:ee:99:71: 37:4c:b1:43:8f:6a:e4:84:a0:96:02:dc:a4:87:2b: d3:ef:a9:d3:8b:2c:d3:80:f8:7a:29:82:03:6f:75: d8:a0:e5:97:08:d4:59:75:e2:f2:b9:36:e6:76:f3: e2:b6:e6:71:a1:a3:c7:1f:92:c5:44:95:ec:72:0a: 54:2e:ce:46:f7:5a:1d:b1:f5:e6:91:c4:a9:91:64: 12:62:26:2c:c2:3e:a0:fe:aa:ef:07:bc:7f:e8:98: 79:07:8f:8e:1d:70:30:64:0f:65:8b:dd:d6:ec:3a: 5c:f3:ed:dc:df:56:68:13:a5:fb:96:79:b0:35:c8: c6:e5:80:24:ec:6a:5d:28:e1:07:33:b6:64:ac:c4: 28:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8A:53:63:36:00:7D:D5:96:A0:CC:94:3F:1B:10:22:AF:20:70:0E X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:51:bb:1d:ed:b5:30:d5:43:dc:62:5f:83:71:80:ce:0b:45: 76:2c:57:93:52:7f:4a:5f:8a:02:11:39:7d:68:0b:68:d2:c8: 5e:21:c7:7c:3e:bc:9e:09:c0:f9:01:41:27:ea:8f:c5:ff:19: 0e:82:ad:60:99:24:4d:b7:31:6a:e3:b6:69:b6:61:f5:e5:ac: 61:9b:ba:48:9f:06:51:d9:1b:53:94:0a:79:eb:67:e9:e9:e9: ff:23:c4:40:5d:cb:c6:31:78:cb:a9:dd:38:dd:ab:f3:ea:09: 82:92:c4:e4:8b:0e:71:c2:55:f0:16:c2:4b:4c:21:3e:85:79: 0a:80:b9:c6:95:3d:93:22:6c:b5:18:08:b5:bb:4b:90:1a:26: 90:1a:d4:f7:84:e6:fc:c7:7b:76:21:65:d7:67:9d:6c:d2:66: 11:b9:70:20:4e:82:0f:c0:8e:67:43:85:3a:cf:37:20:96:02: 0f:8e:01:06:be:8a:b8:4d:28:8e:dd:2f:6f:78:44:56:6f:9a: 33:ac:ab:01:c9:38:02:0f:5e:10:f0:dc:e1:45:e9:dc:7a:ff: 50:50:85:58:c3:b9:de:81:5c:a5:d1:28:30:87:cd:81:ce:95: 5f:cc:a9:6b:a3:a2:b3:da:6f:91:f9:6b:96:01:d7:c0:7f:30: 76:e2:41:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjYwMzAxMDAzNTQ0WhcNMjYwMzA4MDAzNTQ0WjAYMRYwFAYD VQQDDA02OWEzODllMS1lMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqnkNmBv68SzdtHKqchPx+0TrpFn0lBHfC7oeAtVFvQDUXQF3Rjl9bAbkYdF 91vTTMTzTvIRfsr6Y5OpEg43ioZhjUjAvPi5WdWRElqSwN3LFCVI9ZHSnTjnbwu6 ZfjO7Z8xC2Eqn7wAB3CChlSvDraCl4/umXE3TLFDj2rkhKCWAtykhyvT76nTiyzT gPh6KYIDb3XYoOWXCNRZdeLyuTbmdvPituZxoaPHH5LFRJXscgpULs5G91odsfXm kcSpkWQSYiYswj6g/qrvB7x/6Jh5B4+OHXAwZA9li93W7Dpc8+3c31ZoE6X7lnmw NcjG5YAk7GpdKOEHM7ZkrMQoKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKeKU2M2 AH3VlqDMlD8bECKvIHAOMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALlG7He21MNVD3GJfg3GAzgtFdixXk1J/Sl+KAhE5fWgLaNLIXiHHfD68ngnA +QFBJ+qPxf8ZDoKtYJkkTbcxauO2abZh9eWsYZu6SJ8GUdkbU5QKeetn6enp/yPE QF3LxjF4y6ndON2r8+oJgpLE5IsOccJV8BbCS0whPoV5CoC5xpU9kyJstRgItbtL kBomkBrU94Tm/Md7diFl12edbNJmEblwIE6CD8COZ0OFOs83IJYCD44BBr6KuE0o jt0vb3hEVm+aM6yrAck4Ag9eEPDc4UXp3Hr/UFCFWMO53oFcpdEoMIfNgc6VX8yp a6Ois9pvkflrlgHXwH8wduJB2A== -----END CERTIFICATE-----Generated at Sun Mar 1 20:35:21 2026 by rpki-client