$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: Gx2l0JvJMI7mMZ6MKIoe6EX7MupFmQN42B5eedKVPcQ= Subject key identifier: B4:C8:8E:5F:FF:79:7F:EA:AC:30:8D:61:7E:FA:47:24:3F:F3:2D:7A Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1C6A Signing time: Sat 28 Feb 2026 16:14:22 +0000 Manifest this update: Sat 28 Feb 2026 16:14:21 +0000 Manifest next update: Sat 07 Mar 2026 16:14:21 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: dCD8zm67mnIL0MQT0lWv2fzRk7lRtY22KGYvIS0EWjo=) 2: 65D82706BACE11F0AAEC4611C4F9AE02.roa (hash: jRKCXjvvxz21yV0w47MZxjLNIbg9HlLS7JMeNrcmv0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 16:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7289 (0x1c79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Feb 28 16:14:21 2026 GMT Not After : Mar 7 16:14:21 2026 GMT Subject: CN=69a3145e-5dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:03:19:44:8e:69:96:83:66:49:72:77:ed: 1c:6e:9d:32:c0:35:d8:b8:56:80:f0:c4:38:01:d9: 98:7b:16:d6:11:48:01:79:86:07:b1:04:16:16:b2: 51:4b:06:be:ec:01:29:7d:0e:2b:a5:fd:67:03:36: 92:4a:02:9a:54:a2:24:43:ae:34:82:56:82:0e:d7: 5c:2c:21:96:b6:dd:51:4c:6e:d7:c3:65:9a:c5:ca: d7:2b:2f:66:8e:11:5d:e7:0f:79:2c:f6:46:36:69: 11:8b:b8:12:2d:bd:c7:59:4c:a9:c0:e3:8e:96:a4: 69:d9:c1:5a:1f:08:48:03:2a:89:06:05:c0:1b:1d: ad:2c:3d:41:66:12:0f:03:15:ea:93:46:c5:26:60: f6:fc:e6:65:c7:5f:d7:3b:ab:6b:c9:b8:2f:86:c6: 40:f4:ff:39:3f:31:be:32:99:98:dc:40:e4:18:ba: ab:d1:b5:90:17:98:8e:81:ac:f5:ec:c0:a8:77:3c: ad:33:f5:fd:82:cb:36:8c:36:77:7c:79:98:8c:91: 5d:c8:c1:04:db:27:22:39:ef:e0:a2:88:1c:ce:7e: 76:43:d2:a7:ae:a5:2b:5e:07:c2:87:13:7f:c0:4b: b1:bb:90:44:fb:a0:1b:79:cc:4a:50:60:7d:2c:38: e5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C8:8E:5F:FF:79:7F:EA:AC:30:8D:61:7E:FA:47:24:3F:F3:2D:7A X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:40:e1:61:f4:f9:c5:98:7c:fb:24:cd:f4:c0:4f:69:3c:a6: fd:21:c5:28:41:2a:31:c5:e1:e3:59:c0:26:c7:59:6e:c2:17: c9:a9:84:46:f3:35:73:29:d0:f9:91:4c:28:ba:5d:d6:d4:11: b9:c8:62:b9:01:ab:c7:fe:b1:5f:d8:06:2a:ba:5d:05:64:a9: 6b:47:60:22:93:a1:1e:96:fa:b0:aa:7c:e8:3a:b9:c9:6d:7c: c2:f5:89:34:7b:f7:11:4f:14:a0:bc:d3:a4:78:b2:d3:de:17: f5:68:52:11:ba:ac:e0:7c:ea:40:aa:c5:28:58:a5:9d:2c:3f: 90:f8:2c:8a:ec:cf:3a:09:34:47:6b:e8:0e:93:86:b8:a7:5b: 12:10:0e:a5:1b:06:ab:19:59:2c:ff:89:70:ee:59:b5:bb:26: 93:72:fd:0e:b5:bc:a5:6a:99:9c:51:eb:b2:04:71:4c:27:32: af:55:4b:83:4b:c7:e4:28:da:dc:8a:94:cf:6b:f0:ab:61:49: d0:f3:3f:65:41:56:c9:af:4e:02:c9:ab:f7:3c:05:00:df:64: db:b9:c8:73:a0:f3:9e:63:54:2c:9e:c3:d5:02:f0:a7:2f:ef: c2:53:73:b7:65:eb:e1:f4:30:55:e0:bf:54:f5:01:d3:b3:03: 0d:ae:63:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjYwMjI4MTYxNDIxWhcNMjYwMzA3MTYxNDIxWjAYMRYwFAYD VQQDDA02OWEzMTQ1ZS01ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHUDGUSOaZaDZklyd+0cbp0ywDXYuFaA8MQ4AdmYexbWEUgBeYYHsQQWFrJR Swa+7AEpfQ4rpf1nAzaSSgKaVKIkQ640glaCDtdcLCGWtt1RTG7Xw2WaxcrXKy9m jhFd5w95LPZGNmkRi7gSLb3HWUypwOOOlqRp2cFaHwhIAyqJBgXAGx2tLD1BZhIP AxXqk0bFJmD2/OZlx1/XO6trybgvhsZA9P85PzG+MpmY3EDkGLqr0bWQF5iOgaz1 7MCodzytM/X9gss2jDZ3fHmYjJFdyMEE2yciOe/googczn52Q9KnrqUrXgfChxN/ wEuxu5BE+6AbecxKUGB9LDjlnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLTIjl// eX/qrDCNYX76RyQ/8y16MB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwEDhYfT5xZh8+yTN9MBPaTym/SHFKEEqMcXh41nAJsdZbsIXyamERvM1cynQ +ZFMKLpd1tQRuchiuQGrx/6xX9gGKrpdBWSpa0dgIpOhHpb6sKp86Dq5yW18wvWJ NHv3EU8UoLzTpHiy094X9WhSEbqs4HzqQKrFKFilnSw/kPgsiuzPOgk0R2voDpOG uKdbEhAOpRsGqxlZLP+JcO5Ztbsmk3L9DrW8pWqZnFHrsgRxTCcyr1VLg0vH5Cja 3IqUz2vwq2FJ0PM/ZUFWya9OAsmr9zwFAN9k27nIc6DznmNULJ7D1QLwpy/vwlNz t2Xr4fQwVeC/VPUB07MDDa5jUA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:50:20 2026 by rpki-client