$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft File: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft (raw, json) Hash identifier: Gz4hDQG10nP3WDsJWo9s8cJDKgt6cocqd4QIZbD04r8= Subject key identifier: 0A:DC:F5:2C:77:31:74:06:A5:F2:4C:31:B9:A4:63:B7:0E:81:FE:2E Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft Manifest number: 10F3 Signing time: Mon 02 Mar 2026 00:33:12 +0000 Manifest this update: Mon 02 Mar 2026 00:33:11 +0000 Manifest next update: Mon 09 Mar 2026 00:33:11 +0000 Files and hashes: 1: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl (hash: 3y3+Bke8DJW8nNQnUocAil0j+45cpaCfn+uSqkREB9I=) 2: 324967826D8D11EE9883B985C4F9AE02.roa (hash: eNZGXS/zqJii4r7Dp4wSHUyscFNYWSRreo4HbBsG1r8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Mar 2 00:33:11 2026 GMT Not After : Mar 9 00:33:11 2026 GMT Subject: CN=69a4dac8-0f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:51:1b:3d:ed:31:02:96:49:13:2f:cd:33:85: d2:24:79:71:b9:ed:ce:67:c4:c4:0f:18:4a:5a:66: 3c:bc:54:6e:2c:00:9c:67:69:14:b6:6c:0e:88:b5: 29:d7:ef:e9:8a:44:d3:d6:1d:35:87:ee:f2:c3:1e: ea:ae:57:bd:2c:94:22:3b:5a:e5:32:fa:e6:54:d2: 9f:1d:30:39:61:78:5b:85:8d:53:10:4a:b6:fd:9a: 32:df:64:16:34:66:a6:de:f9:88:da:f2:00:8d:40: f6:5e:a4:39:68:49:a4:2c:ab:86:a8:ac:c4:09:c2: d3:2a:70:03:20:8f:8b:bd:39:aa:de:36:a4:9c:82: 5e:bc:96:e4:9e:df:68:33:e5:2b:a0:53:b5:83:e7: 30:ea:be:8c:c1:08:d4:80:77:cb:3a:0b:14:0c:80: c8:71:7a:2f:3f:e2:a9:80:5c:87:bc:44:f8:31:f1: 11:e7:2c:6c:75:8e:65:ed:6b:94:2d:1b:52:22:85: 69:91:10:2c:87:33:95:c4:81:d3:8c:81:87:08:78: d9:24:d4:69:89:0a:0c:04:e6:14:c6:63:bf:b8:1d: 48:84:ac:c3:cc:b0:b6:80:0e:8f:2a:30:10:15:b2: 07:ed:16:52:60:fb:35:db:d8:de:63:fc:9e:26:6d: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:DC:F5:2C:77:31:74:06:A5:F2:4C:31:B9:A4:63:B7:0E:81:FE:2E X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:8a:31:0d:b1:8c:85:48:97:e2:ea:98:77:6a:c4:70:15:a7: d0:de:8d:23:36:4d:5d:c8:7f:28:56:2e:d8:73:d5:07:12:68: f4:e9:6d:20:21:ec:24:c6:12:34:56:6b:5d:96:89:4e:84:61: 36:a2:50:fc:f1:ce:b4:9e:26:3d:54:03:ad:1c:f3:64:ef:a4: 17:e7:ed:28:ea:ff:04:9f:55:36:55:9a:d8:b2:87:ca:42:7f: 63:a3:70:3f:8a:06:d7:25:9a:ac:6b:dc:5d:84:f6:d1:66:6f: a1:d5:b5:75:50:7f:fd:02:04:b9:f5:9b:e1:0b:8d:6b:a4:09: 0d:d3:55:be:49:50:84:06:01:9e:62:7c:3a:73:61:81:37:8a: cd:79:3b:d4:c4:eb:9b:d6:e0:50:01:5a:d0:b8:6d:e1:74:16: a9:b3:76:4e:d3:da:8b:ae:bb:99:6e:00:6f:93:7f:20:52:26: 44:42:6c:44:fa:33:ca:22:02:97:66:22:3f:13:b9:94:16:22: 54:20:c2:a3:39:3e:33:f6:f0:46:2e:6f:84:59:7e:2b:15:64: c6:3d:40:34:fc:35:a4:0d:1d:ac:22:6f:c0:57:46:d1:1c:98: 7a:8f:63:69:9d:6e:c8:5e:15:a8:ab:27:15:f0:74:1a:f6:ba: 0e:76:3c:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjYwMzAyMDAzMzExWhcNMjYwMzA5MDAzMzExWjAYMRYwFAYD VQQDEw02OWE0ZGFjOC0wZjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlEbPe0xApZJEy/NM4XSJHlxue3OZ8TEDxhKWmY8vFRuLACcZ2kUtmwOiLUp 1+/pikTT1h01h+7ywx7qrle9LJQiO1rlMvrmVNKfHTA5YXhbhY1TEEq2/Zoy32QW NGam3vmI2vIAjUD2XqQ5aEmkLKuGqKzECcLTKnADII+LvTmq3jaknIJevJbknt9o M+UroFO1g+cw6r6MwQjUgHfLOgsUDIDIcXovP+KpgFyHvET4MfER5yxsdY5l7WuU LRtSIoVpkRAshzOVxIHTjIGHCHjZJNRpiQoMBOYUxmO/uB1IhKzDzLC2gA6PKjAQ FbIH7RZSYPs129jeY/yeJm2FFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFArc9Sx3 MXQGpfJMMbmkY7cOgf4uMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REQ4Mi8xOTdGOUQ5MjkxRTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhp UU9FNVE1V2x6TVRTOWlNYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ4oxDbGMhUiX4uqYd2rEcBWn0N6NIzZNXch/KFYu2HPVBxJo9OltICHsJMYS NFZrXZaJToRhNqJQ/PHOtJ4mPVQDrRzzZO+kF+ftKOr/BJ9VNlWa2LKHykJ/Y6Nw P4oG1yWarGvcXYT20WZvodW1dVB//QIEufWb4QuNa6QJDdNVvklQhAYBnmJ8OnNh gTeKzXk71MTrm9bgUAFa0Lht4XQWqbN2TtPai667mW4Ab5N/IFImREJsRPozyiIC l2YiPxO5lBYiVCDCozk+M/bwRi5vhFl+KxVkxj1ANPw1pA0drCJvwFdG0RyYeo9j aZ1uyF4VqKsnFfB0Gva6DnY8PQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:55:09 2026 by rpki-client