$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: b3QsB0aKKvoIZ7jHzfbPk2gmu+X1UrbcOh31vmPWARc= Subject key identifier: 37:ED:AC:2E:3A:AD:5C:BE:09:50:95:A7:A6:6A:09:EE:F5:4E:57:49 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 0ADE Signing time: Mon 02 Mar 2026 00:09:06 +0000 Manifest this update: Mon 02 Mar 2026 00:09:04 +0000 Manifest next update: Mon 09 Mar 2026 00:09:04 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: DqxQWfaK1tF5/CODgCXU6RrrMrAd2Litx02DuMu4IPQ=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: ohQ7dmr4wlhGIPSZo4SYR6kjahOfosEHSoyiv0ooBGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1, serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Mar 2 00:09:04 2026 GMT Not After : Mar 9 00:09:04 2026 GMT Subject: CN=69a4d522-96c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:28:32:4b:e3:c8:47:e7:69:c4:a8:67:e2:e5: b5:2e:e0:cb:80:70:aa:a5:ad:3a:3b:dc:6e:10:fe: 58:be:b9:3d:60:52:94:34:1e:12:8b:da:f5:9a:a8: ee:46:20:37:98:bc:40:29:78:3b:c6:c1:d9:89:57: 1c:6e:5e:2b:d4:8b:2a:c2:30:ac:d6:99:02:d7:4f: 46:08:d0:f9:cf:c9:e9:eb:49:f3:3f:9f:ef:dd:9d: 37:93:4d:43:ea:d4:b8:8a:e8:25:b9:12:00:f2:84: 24:52:b2:7f:a6:06:a2:d4:6b:71:2b:c6:68:b2:f6: 9d:74:21:d8:54:e8:27:44:b0:f4:96:17:59:82:a2: 82:df:9d:12:ff:d0:f8:45:d3:6e:2b:58:b7:1f:eb: fb:7b:86:88:91:a0:28:04:e0:1d:95:e4:e2:ad:4c: 46:3f:73:e4:9c:82:9b:ed:4d:fc:09:91:b9:c8:94: e3:c2:9c:ef:ae:2c:b1:5f:c3:ae:ad:58:1a:53:a4: bd:78:57:9f:dc:b2:78:53:de:6e:64:82:b0:89:10: cc:52:e8:a0:4d:7d:20:3d:4f:13:d9:27:e0:be:f9: db:e4:60:f5:7b:4f:bc:4d:7e:55:db:3f:e9:2f:56: 96:96:c6:c5:e4:86:ba:e1:b3:55:2f:dd:f8:66:88: 11:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:ED:AC:2E:3A:AD:5C:BE:09:50:95:A7:A6:6A:09:EE:F5:4E:57:49 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:fc:49:d4:e5:2b:bf:c5:cc:f7:58:a3:bf:26:96:25:88:b3: 81:46:2d:13:bb:00:70:31:20:98:d0:be:93:83:af:3e:ba:bc: fb:a5:fd:b3:c9:75:0d:b4:d0:4f:ef:a3:c2:ec:77:91:13:16: 34:34:b4:85:42:31:5b:4b:34:23:6a:69:3a:38:fe:ec:4f:75: 85:58:94:b7:a7:05:95:6c:06:c1:51:f8:09:89:d1:94:50:22: 56:eb:da:ef:9c:68:db:12:b1:37:4b:89:e3:cd:89:e4:48:9a: 53:5d:33:15:ce:56:96:af:52:7d:c5:cd:50:8e:13:0b:f4:b4: 2c:ef:d3:e2:02:9e:24:bd:ea:88:81:a5:7d:51:24:0b:69:ce: 44:dd:25:e8:0d:e3:bd:7b:e1:ee:53:0d:16:70:34:fb:69:63: b5:00:00:26:da:10:10:6d:e6:b0:5e:c4:44:02:78:72:35:f5: d8:16:87:05:d0:0f:d8:6c:ca:44:6f:78:5c:d5:39:14:87:83: cc:f5:ca:e9:05:74:f5:3e:bd:29:fc:6c:44:1b:3c:a4:b0:6e: 8b:67:0d:3e:63:bf:42:de:93:a3:b8:86:90:ea:9c:a1:36:6b: 57:54:b5:30:8a:8a:2f:55:ca:23:97:89:a6:8f:31:ec:cd:98: 7a:41:65:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjYwMzAyMDAwOTA0WhcNMjYwMzA5MDAwOTA0WjAYMRYwFAYD VQQDEw02OWE0ZDUyMi05NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSgyS+PIR+dpxKhn4uW1LuDLgHCqpa06O9xuEP5Yvrk9YFKUNB4Si9r1mqju RiA3mLxAKXg7xsHZiVccbl4r1IsqwjCs1pkC109GCND5z8np60nzP5/v3Z03k01D 6tS4iugluRIA8oQkUrJ/pgai1GtxK8ZosvaddCHYVOgnRLD0lhdZgqKC350S/9D4 RdNuK1i3H+v7e4aIkaAoBOAdleTirUxGP3PknIKb7U38CZG5yJTjwpzvriyxX8Ou rVgaU6S9eFef3LJ4U95uZIKwiRDMUuigTX0gPU8T2Sfgvvnb5GD1e0+8TX5V2z/p L1aWlsbF5Ia64bNVL934ZogREwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDftrC46 rVy+CVCVp6ZqCe71TldJMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAovxJ1OUrv8XM91ijvyaWJYizgUYtE7sAcDEgmNC+k4OvPrq8+6X9s8l1DbTQ T++jwux3kRMWNDS0hUIxW0s0I2ppOjj+7E91hViUt6cFlWwGwVH4CYnRlFAiVuva 75xo2xKxN0uJ482J5EiaU10zFc5Wlq9SfcXNUI4TC/S0LO/T4gKeJL3qiIGlfVEk C2nORN0l6A3jvXvh7lMNFnA0+2ljtQAAJtoQEG3msF7ERAJ4cjX12BaHBdAP2GzK RG94XNU5FIeDzPXK6QV09T69KfxsRBs8pLBui2cNPmO/Qt6To7iGkOqcoTZrV1S1 MIqKL1XKI5eJpo8x7M2YekFl1Q== -----END CERTIFICATE-----Generated at Mon Mar 2 15:53:30 2026 by rpki-client