$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: XQYnylkhDN2usan5fpmiGRaLjS0oUwbz98d3cYiu/2o= Subject key identifier: 48:45:70:2E:66:EC:B5:98:18:6F:4E:35:A3:1B:53:EC:47:45:35:3D Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2DD6 Signing time: Mon 02 Mar 2026 15:35:48 +0000 Manifest this update: Mon 02 Mar 2026 15:35:47 +0000 Manifest next update: Mon 09 Mar 2026 15:35:47 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: 1RXj/5AOMR+T19Mqf26jS6VG7FLmRiubmOSpsz3+Dsg=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: 2iAA5Sdwm5Oc9oXy7BNKf4hVQshNT/PV2nUfVZIXmzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11772 (0x2dfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Mar 2 15:35:47 2026 GMT Not After : Mar 9 15:35:47 2026 GMT Subject: CN=69a5ae53-ebb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9e:56:3c:ff:5c:d0:58:81:9e:2c:08:6b:ab: 60:31:a7:30:2c:41:7d:ab:4a:62:28:4f:38:4f:f2: d4:fe:43:c4:68:18:21:d3:1a:65:15:0b:41:82:ad: d1:21:9b:37:19:f8:45:5d:40:03:c7:e5:fd:a7:02: f6:f5:43:97:4d:eb:ff:b3:6f:c6:09:c4:74:fb:ee: 63:a9:1a:64:b5:79:2d:7e:f2:7b:c8:fa:c3:1d:39: 8d:20:3e:e0:d5:35:fc:07:e8:fe:bb:5e:ab:b5:73: 03:80:d8:69:3b:1f:ac:48:0e:f6:c3:84:7b:9e:af: 2e:18:81:8a:0c:46:1b:5f:8a:b8:f9:5c:a7:a5:f8: a2:b4:c4:e7:c4:23:e9:0c:8f:ce:ff:91:06:b1:f4: 58:17:9a:8d:f2:d9:92:68:64:71:46:d2:73:bb:a3: fb:ad:98:d5:89:cb:09:4b:18:61:fc:04:3d:86:f4: 12:88:c8:78:7a:9b:ae:f6:79:c3:7b:d9:68:c7:fa: f0:bf:88:fc:22:a4:b1:2b:f7:b4:ed:ea:94:ff:f5: 80:10:46:d8:7b:36:49:61:ea:9d:ad:5d:b7:91:86: b1:87:c1:73:d7:05:bd:f5:0a:c6:3d:be:97:8e:66: c9:49:80:7e:76:9f:cb:49:b5:c1:fe:2f:12:10:31: 3d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:45:70:2E:66:EC:B5:98:18:6F:4E:35:A3:1B:53:EC:47:45:35:3D X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:bf:e4:ba:07:38:2b:d6:f0:ca:c5:71:3d:61:c9:6e:3a:72: b7:b8:ac:68:87:fd:ba:45:fe:7c:de:ac:51:cd:bc:d6:3a:6f: 85:43:79:39:7e:ad:9f:ee:1d:8e:de:7d:ba:a3:43:a5:ff:e5: 5c:fb:7c:59:93:3b:eb:e9:21:74:15:83:f3:3b:62:71:d8:d7: 38:03:69:26:6f:94:9f:1c:c5:ae:5c:1f:8f:1c:d3:6c:ef:57: 19:af:35:f1:5d:c2:c5:83:7d:4c:6d:3a:04:76:74:69:6d:ee: fd:cb:5b:5a:09:ec:3e:c4:6a:79:6a:47:b6:d8:72:fb:d5:f2: 15:37:73:89:3b:92:81:2a:8c:28:15:ac:fe:6d:63:82:46:45: d6:5a:f7:46:92:68:2f:67:48:61:a4:be:8a:da:f4:53:ee:78: fd:82:58:f8:f1:5a:c1:cc:cd:ac:3d:dd:21:f6:45:08:99:c4: a0:f0:03:58:9a:a2:6d:db:1f:b6:2d:c6:15:99:73:78:38:11: ab:e8:78:44:03:92:f1:b5:de:c9:b2:d2:5f:2a:72:50:12:79: 0f:57:67:f8:e7:42:07:40:5a:0d:f5:0c:e7:26:5a:f8:b8:f9: 6f:83:c3:9f:f6:3e:12:ee:aa:47:6c:bb:01:4b:d7:93:f0:55: cc:16:a1:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjYwMzAyMTUzNTQ3WhcNMjYwMzA5MTUzNTQ3WjAYMRYwFAYD VQQDEw02OWE1YWU1My1lYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ5WPP9c0FiBniwIa6tgMacwLEF9q0piKE84T/LU/kPEaBgh0xplFQtBgq3R IZs3GfhFXUADx+X9pwL29UOXTev/s2/GCcR0++5jqRpktXktfvJ7yPrDHTmNID7g 1TX8B+j+u16rtXMDgNhpOx+sSA72w4R7nq8uGIGKDEYbX4q4+VynpfiitMTnxCPp DI/O/5EGsfRYF5qN8tmSaGRxRtJzu6P7rZjVicsJSxhh/AQ9hvQSiMh4epuu9nnD e9lox/rwv4j8IqSxK/e07eqU//WAEEbYezZJYeqdrV23kYaxh8Fz1wW99QrGPb6X jmbJSYB+dp/LSbXB/i8SEDE9rwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEhFcC5m 7LWYGG9ONaMbU+xHRTU9MB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACL/kugc4K9bwysVxPWHJbjpyt7isaIf9ukX+fN6sUc281jpvhUN5OX6tn+4d jt59uqNDpf/lXPt8WZM76+khdBWD8zticdjXOANpJm+UnxzFrlwfjxzTbO9XGa81 8V3CxYN9TG06BHZ0aW3u/ctbWgnsPsRqeWpHtthy+9XyFTdziTuSgSqMKBWs/m1j gkZF1lr3RpJoL2dIYaS+itr0U+54/YJY+PFawczNrD3dIfZFCJnEoPADWJqibdsf ti3GFZlzeDgRq+h4RAOS8bXeybLSXypyUBJ5D1dn+OdCB0BaDfUM5yZa+Lj5b4PD n/Y+Eu6qR2y7AUvXk/BVzBah5A== -----END CERTIFICATE-----Generated at Mon Mar 2 18:33:49 2026 by rpki-client