$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: 2Pqgmwg89ZBqWhRuEAe3RhIySSKp6qTsZLY3V8ZsgYo= Subject key identifier: 1A:1E:BC:42:B2:45:F0:46:1A:1C:BF:2B:06:74:D5:1E:99:19:C2:A1 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 0133 Signing time: Sun 01 Mar 2026 23:24:03 +0000 Manifest this update: Sun 01 Mar 2026 23:24:02 +0000 Manifest next update: Sun 08 Mar 2026 23:24:02 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: MSmoaF7CvYO3lrAeNdoF4U88tsFRS3g8jl48eLAIH14=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: 92+MCvev4Dufdf+wuDOQcin6Fkp7+RWjlESgBq/RGGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Mar 1 23:24:02 2026 GMT Not After : Mar 8 23:24:02 2026 GMT Subject: CN=69a4ca93-0c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ea:d2:9d:6d:52:44:2c:d9:04:c6:d6:50:b5: c2:6f:61:98:9e:97:6e:41:8a:b6:52:0c:14:82:8b: db:21:c5:47:7b:f4:cf:b3:53:01:08:b1:61:f8:50: b1:5a:bb:11:0f:b6:7e:55:b2:d1:7c:9d:5a:4a:68: d9:87:7a:a1:5c:a3:6d:b3:fb:3e:02:fb:50:57:4f: 0f:bc:84:dc:f6:78:9a:56:63:a0:73:e5:d3:86:7b: 55:77:f2:3c:35:0a:76:a8:43:5e:c6:10:cc:45:9a: 00:9b:6f:c9:81:fe:f9:b6:13:86:3c:42:cb:10:74: 0f:da:57:63:49:10:a5:60:f2:a6:eb:b5:aa:51:ff: da:ce:d2:f3:97:04:57:48:c1:86:a6:58:ed:ae:09: d8:ae:3b:65:dc:f7:c3:a4:b9:b1:51:84:b2:d4:a4: e5:68:42:06:4c:16:e4:d8:2a:8e:20:f9:f2:cc:95: 38:72:34:69:32:60:e5:32:ee:d0:cb:e5:7e:20:9d: 85:32:c2:72:57:f1:cf:da:59:15:fe:c8:b5:8a:7d: b1:71:83:4f:7c:67:f8:dc:12:f4:d4:df:01:f1:1d: b3:39:ec:b7:85:eb:ef:1b:8c:34:d1:4b:e8:4c:81: f9:e9:8a:49:27:25:b6:37:3f:38:7c:d0:55:89:10: b4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1E:BC:42:B2:45:F0:46:1A:1C:BF:2B:06:74:D5:1E:99:19:C2:A1 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e1:55:a7:6f:79:0e:61:b2:23:a5:4a:7b:ac:31:e8:05:ea: 37:2c:67:a9:c8:cf:51:fd:f1:2e:8f:1d:ad:6d:5f:54:de:f2: b3:30:51:52:b0:54:e1:16:1e:d5:1e:08:73:36:56:13:68:c9: 9f:04:15:fc:ed:c9:40:82:ca:f0:3e:1c:cc:07:bd:0b:c3:f2: c4:54:03:63:00:63:6d:41:a7:02:ed:fc:05:e4:b1:a4:8e:7e: e2:4c:92:6e:fd:1c:73:df:6d:b7:1d:17:b8:df:f1:23:48:de: 7a:49:13:3c:0a:45:9e:70:16:09:43:56:95:42:24:6b:09:53: b9:69:d0:a7:9f:8f:f5:54:15:43:4f:c1:6d:a1:6d:d7:96:c6: 44:59:9b:cf:d6:05:af:37:08:d2:34:35:ef:f9:fb:c0:8d:ef: df:fe:c1:2b:df:0c:22:80:97:a2:47:8d:b9:fa:b5:bc:56:02: 4b:ab:1e:6b:73:99:a0:66:89:af:bb:c9:92:8b:76:2e:46:91: 41:bc:34:76:68:fb:11:ce:af:dc:d6:d6:26:7f:3c:4b:2f:3e: fb:10:d8:8c:98:42:81:74:65:f4:bf:ea:e0:92:7a:6d:cd:bf: 47:e0:64:91:59:07:fa:cb:f8:52:da:a6:16:0d:3f:39:b8:31: 28:44:15:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjYwMzAxMjMyNDAyWhcNMjYwMzA4MjMyNDAyWjAYMRYwFAYD VQQDEw02OWE0Y2E5My0wYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkerSnW1SRCzZBMbWULXCb2GYnpduQYq2UgwUgovbIcVHe/TPs1MBCLFh+FCx WrsRD7Z+VbLRfJ1aSmjZh3qhXKNts/s+AvtQV08PvITc9niaVmOgc+XThntVd/I8 NQp2qENexhDMRZoAm2/Jgf75thOGPELLEHQP2ldjSRClYPKm67WqUf/aztLzlwRX SMGGpljtrgnYrjtl3PfDpLmxUYSy1KTlaEIGTBbk2CqOIPnyzJU4cjRpMmDlMu7Q y+V+IJ2FMsJyV/HP2lkV/si1in2xcYNPfGf43BL01N8B8R2zOey3hevvG4w00Uvo TIH56YpJJyW2Nz84fNBViRC0mQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBoevEKy RfBGGhy/KwZ01R6ZGcKhMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqeFVp295DmGyI6VKe6wx6AXqNyxnqcjPUf3xLo8drW1fVN7yszBRUrBU4RYe 1R4IczZWE2jJnwQV/O3JQILK8D4czAe9C8PyxFQDYwBjbUGnAu38BeSxpI5+4kyS bv0cc99ttx0XuN/xI0jeekkTPApFnnAWCUNWlUIkawlTuWnQp5+P9VQVQ0/BbaFt 15bGRFmbz9YFrzcI0jQ17/n7wI3v3/7BK98MIoCXokeNufq1vFYCS6sea3OZoGaJ r7vJkot2LkaRQbw0dmj7Ec6v3NbWJn88Sy8++xDYjJhCgXRl9L/q4JJ6bc2/R+Bk kVkH+sv4UtqmFg0/ObgxKEQVpg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:16:21 2026 by rpki-client