$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: vyJHiGH625zh1ht1dIWIz4baQKlwSUpcS2VGvGKXJKs= Subject key identifier: 49:5D:98:3A:DD:79:21:A5:89:CA:9C:1A:A8:1B:22:27:5E:85:33:E4 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 107B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0FED Signing time: Mon 02 Mar 2026 00:18:56 +0000 Manifest this update: Mon 02 Mar 2026 00:18:53 +0000 Manifest next update: Mon 09 Mar 2026 00:18:53 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: OOuuirGgpkZxm1GBUFpxETF3mdYbhf7F5JJuof4/fcs=) 2: 2EFFC95471DC11F0B648E61EC4F9AE02.roa (hash: imzzgK2jkD8mtGVZSU5UK2u7UGX3PSejQBat9sn+BNw=) 3: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: TLIL13JgGPe1P4BL40jELv4mEyCxR17v77PRx0bd8FM=) 4: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: PRbYpTR7dL6OD02LCfnRi/JtoGtSSPYB6suy4a9h8Dk=) 5: B2AB6010721811F09FD98A22C4F9AE02.roa (hash: RppZ41kvs72Nx/kep3oP9EH50fRwPEp+eO9LIxKJPl0=) 6: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (hash: eAns+FZkAHBk1mAiuYMr/116oRI3l4XLKkm5ctbEEec=) 7: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: CAc0lSCqkmGaHO8KNNEhlMOK99LXlZrr2QvZXGpcJRg=) 8: B35E5B46334111EF9770A542C4F9AE02.roa (hash: KbfiegSJRccS2wc3BWQkCJHlKd3xmNfbrA1PK5bBMgQ=) 9: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: a/aSh7H+9BOPAN+WcSvePCOi0af08D3dWGvwlCEpYQk=) 10: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: CK4ODNzWrU/j1GWyDHdyLVzs0cc7hbXsl1UKT9ytXhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4219 (0x107b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Mar 2 00:18:53 2026 GMT Not After : Mar 9 00:18:53 2026 GMT Subject: CN=69a4d76f-7468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:81:be:6c:d7:2d:a7:49:de:f8:0d:db:d0: fe:c7:28:78:a3:87:bf:6c:5c:d5:32:5b:50:cc:26: 16:3b:9b:c2:57:03:7f:46:57:6a:9f:1e:e7:fc:0e: 06:4e:8b:80:96:11:8c:96:7b:11:70:90:54:b2:c5: 3e:32:54:cf:17:48:15:8e:de:a0:0b:38:c1:41:06: 42:37:c7:a5:c7:2e:cf:0a:44:6e:7e:7e:c0:f4:21: cd:d9:14:f9:7c:b3:6a:98:06:48:a7:94:ab:1b:aa: c0:1d:70:9a:c6:df:14:88:99:87:fa:13:91:c0:37: f0:51:fb:f2:ba:d4:54:d0:97:50:a3:b1:de:39:54: 30:10:81:25:fa:f2:2c:6a:bc:07:84:28:e9:49:9d: 31:00:2d:36:3c:1c:16:1c:60:b4:80:aa:de:69:bc: 3e:77:4b:37:97:e7:d1:57:87:d8:1a:e8:c5:c0:f0: c8:06:76:1b:0a:fd:45:8c:e3:41:b8:95:93:5f:f1: 1f:53:f9:e0:0f:86:1d:8f:97:d8:10:27:8d:ec:b1: c1:0f:ba:93:f9:21:3c:5d:3c:b1:db:2c:69:83:b0: f2:52:0d:b0:c4:77:24:eb:8d:c9:d5:be:f3:59:f2: 41:06:8d:8a:9c:8d:77:7f:8b:39:73:15:a6:da:2f: c8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5D:98:3A:DD:79:21:A5:89:CA:9C:1A:A8:1B:22:27:5E:85:33:E4 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:7d:86:2d:54:c4:3a:11:d9:81:02:ce:1e:e4:4f:fc:25:68: 10:b1:13:40:09:10:0c:9d:e0:ce:ad:a3:fb:b1:15:ee:6d:78: a9:13:7b:c5:08:c4:80:7e:78:85:1d:5c:ed:f9:37:a6:95:f9: 3d:02:f9:56:b1:37:42:17:dd:d5:37:71:9d:c8:de:67:26:0a: 00:c2:1d:0d:4a:ae:fe:25:f9:94:a6:d8:16:41:1d:21:91:d3: 60:46:9e:97:66:9d:c9:b1:35:02:40:af:63:b4:ba:f2:b2:d2: ad:0b:c2:c0:cd:37:60:fc:07:c3:e4:ed:ca:1f:ad:e9:e1:27: de:71:e0:ae:9e:d3:ec:ae:1d:96:31:74:31:77:cf:ed:92:e0: 3f:52:89:e6:07:99:9b:69:78:84:bb:d0:ff:71:c4:d5:b1:63: 52:98:df:b2:34:ea:a5:fd:a2:2b:ef:98:01:ba:91:3c:be:c6: 93:ef:f2:b1:b2:cd:0b:63:9c:66:d1:70:90:4c:2f:13:48:3f: 3c:ac:a5:58:0c:e9:ca:e7:c1:89:3a:70:da:b0:3d:c2:a4:14: d8:01:6a:43:29:9e:9a:bd:b1:45:44:8c:29:3d:1b:72:eb:50: cf:0b:12:b7:b5:65:54:1c:92:7b:67:66:59:e3:f9:07:9b:76: 7a:96:6c:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjYwMzAyMDAxODUzWhcNMjYwMzA5MDAxODUzWjAYMRYwFAYD VQQDEw02OWE0ZDc2Zi03NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugqBvmzXLadJ3vgN29D+xyh4o4e/bFzVMltQzCYWO5vCVwN/Rldqnx7n/A4G TouAlhGMlnsRcJBUssU+MlTPF0gVjt6gCzjBQQZCN8elxy7PCkRufn7A9CHN2RT5 fLNqmAZIp5SrG6rAHXCaxt8UiJmH+hORwDfwUfvyutRU0JdQo7HeOVQwEIEl+vIs arwHhCjpSZ0xAC02PBwWHGC0gKreabw+d0s3l+fRV4fYGujFwPDIBnYbCv1FjONB uJWTX/EfU/ngD4Ydj5fYECeN7LHBD7qT+SE8XTyx2yxpg7DyUg2wxHck643J1b7z WfJBBo2KnI13f4s5cxWm2i/IEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEldmDrd eSGlicqcGqgbIidehTPkMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmX2GLVTEOhHZgQLOHuRP/CVoELETQAkQDJ3gzq2j+7EV7m14qRN7xQjEgH54 hR1c7fk3ppX5PQL5VrE3Qhfd1TdxncjeZyYKAMIdDUqu/iX5lKbYFkEdIZHTYEae l2adybE1AkCvY7S68rLSrQvCwM03YPwHw+Ttyh+t6eEn3nHgrp7T7K4dljF0MXfP 7ZLgP1KJ5geZm2l4hLvQ/3HE1bFjUpjfsjTqpf2iK++YAbqRPL7Gk+/ysbLNC2Oc ZtFwkEwvE0g/PKylWAzpyufBiTpw2rA9wqQU2AFqQymemr2xRUSMKT0bcutQzwsS t7VlVBySe2dmWeP5B5t2epZstg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:51:44 2026 by rpki-client