$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: gi1AUNqQFNUjqDoNKTx3LYuvCfdbLJRxVYYCZK62NyY= Subject key identifier: 49:6B:08:D5:05:82:5E:61:C6:12:82:AE:C7:8B:F2:D8:C1:74:C5:55 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 021D Signing time: Sun 01 Mar 2026 03:35:13 +0000 Manifest this update: Sun 01 Mar 2026 03:35:12 +0000 Manifest next update: Sun 08 Mar 2026 03:35:12 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: i+I7T1hZ+73DXXk8VTdYyKv468DTe8hz6mTfGSv9vtA=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: 3MNDiBeknSHzY93vsrPzAAHGYu/SDVnN9ctSXpKt+Ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677, serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Mar 1 03:35:12 2026 GMT Not After : Mar 8 03:35:12 2026 GMT Subject: CN=69a3b3f1-d6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:65:7a:6f:5d:50:49:c0:f4:91:88:ed:ab: 76:ec:0c:5a:ef:d7:ed:08:81:6c:d2:da:88:69:a2: 1f:e7:b5:61:c6:1d:99:93:49:eb:00:3b:61:06:39: 02:03:9e:ff:c1:9f:56:f3:fb:e1:ca:fc:4d:4b:e9: db:6a:4c:52:6b:6c:92:0e:90:05:a4:71:10:ac:4f: f6:35:10:f3:99:ad:5b:46:35:54:27:71:34:cc:38: 63:90:58:8c:00:88:24:5b:cf:11:15:49:39:5c:9a: 91:14:51:c7:ce:6b:f2:4b:c0:29:35:bc:51:5e:ca: 9c:7a:d2:15:11:27:ae:97:0c:c0:a9:43:a2:15:82: 2b:58:3f:ec:18:a0:72:3c:83:5c:39:3d:05:61:e1: 4e:a0:bb:e7:52:bf:eb:dc:c8:ba:c9:80:51:00:37: d8:44:92:76:6c:68:47:47:ef:1e:4f:96:31:98:cf: c6:1f:f4:81:51:20:70:be:71:86:2e:ec:e7:2b:b6: fd:07:c4:3b:37:7e:5b:81:51:9b:ba:86:04:da:5e: 12:f6:69:c1:f7:c0:94:a2:59:e0:14:de:f3:73:4e: d6:ea:d9:2c:c9:11:64:84:9b:98:4c:2b:4b:d3:ae: f1:67:22:91:44:52:ed:49:2c:8c:24:b7:6a:96:b2: 04:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6B:08:D5:05:82:5E:61:C6:12:82:AE:C7:8B:F2:D8:C1:74:C5:55 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e1:56:40:be:87:4d:78:0f:d2:de:1b:eb:da:bd:be:7a:a5: f1:85:74:07:d4:e5:89:aa:f5:8c:16:2f:13:3d:b7:7d:32:03: 9c:bb:17:33:0e:7e:79:2b:2c:13:86:de:b9:32:d0:20:16:8f: 02:1e:4e:7d:70:d7:97:9d:9e:c9:53:e0:ce:3c:2a:a4:d0:f6: 9d:1e:3f:3e:95:2e:63:b9:3b:07:1b:84:a3:3f:d5:52:33:04: 5c:ab:09:54:15:58:54:4d:01:81:a0:87:f8:06:ce:75:2b:b8: 19:21:87:fe:47:62:60:b8:a4:35:15:7d:a4:c2:06:67:8d:75: 4d:db:49:4d:3d:41:36:bb:44:91:0b:d1:fd:78:ad:e0:07:0c: 53:09:80:9b:0b:a8:f5:67:1b:14:86:da:cc:b5:04:b7:dc:70: 60:ba:d6:aa:d0:d0:38:52:34:42:d9:a0:f7:e4:bf:95:7c:de: 2b:20:55:48:95:49:43:71:bd:77:2f:2f:e7:8c:f3:28:55:ba: 47:e1:9e:2c:0b:07:90:cb:70:ff:9e:c1:75:43:45:2a:80:35: f2:c3:bb:8a:31:33:e1:3e:8b:d1:65:34:ce:e0:de:83:f6:a8: f6:9e:57:d0:18:33:d6:d0:0e:d6:de:1d:af:53:06:4d:50:68: cb:0e:ff:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjYwMzAxMDMzNTEyWhcNMjYwMzA4MDMzNTEyWjAYMRYwFAYD VQQDDA02OWEzYjNmMS1kNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVJlem9dUEnA9JGI7at27Axa79ftCIFs0tqIaaIf57Vhxh2Zk0nrADthBjkC A57/wZ9W8/vhyvxNS+nbakxSa2ySDpAFpHEQrE/2NRDzma1bRjVUJ3E0zDhjkFiM AIgkW88RFUk5XJqRFFHHzmvyS8ApNbxRXsqcetIVESeulwzAqUOiFYIrWD/sGKBy PINcOT0FYeFOoLvnUr/r3Mi6yYBRADfYRJJ2bGhHR+8eT5YxmM/GH/SBUSBwvnGG LuznK7b9B8Q7N35bgVGbuoYE2l4S9mnB98CUolngFN7zc07W6tksyRFkhJuYTCtL 067xZyKRRFLtSSyMJLdqlrIEQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFElrCNUF gl5hxhKCrseL8tjBdMVVMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI+FWQL6HTXgP0t4b69q9vnql8YV0B9Tliar1jBYvEz23fTIDnLsXMw5+eSss E4beuTLQIBaPAh5OfXDXl52eyVPgzjwqpND2nR4/PpUuY7k7BxuEoz/VUjMEXKsJ VBVYVE0BgaCH+AbOdSu4GSGH/kdiYLikNRV9pMIGZ411TdtJTT1BNrtEkQvR/Xit 4AcMUwmAmwuo9WcbFIbazLUEt9xwYLrWqtDQOFI0Qtmg9+S/lXzeKyBVSJVJQ3G9 dy8v54zzKFW6R+GeLAsHkMtw/57BdUNFKoA18sO7ijEz4T6L0WU0zuDeg/ao9p5X 0Bgz1tAO1t4dr1MGTVBoyw7/YA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:09:51 2026 by rpki-client