$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: NHAG3THVyPrVqcc9VpMyMggPcs3SmCmm9nVssIRY6fQ= Subject key identifier: 4D:6E:1B:A1:6C:99:51:4E:5D:A3:BE:D7:4C:AA:24:27:65:42:0F:EC Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 07B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 07A8 Signing time: Sat 28 Feb 2026 21:53:47 +0000 Manifest this update: Sat 28 Feb 2026 21:53:46 +0000 Manifest next update: Sat 07 Mar 2026 21:53:46 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: zfApdESr0JGnwvN2jkSMWAj0cei1752T2QRhB/l7O7Q=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1VkiWuf3LmTXPo0lG7z4MV7mfdfkpr5ah6SxtTNpBGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1968 (0x7b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Feb 28 21:53:46 2026 GMT Not After : Mar 7 21:53:46 2026 GMT Subject: CN=69a363eb-7358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ac:36:6b:48:f2:54:15:2a:f1:9d:57:6c:cb: 9b:8f:f1:ea:52:a8:0d:7e:35:8f:0d:b2:ce:f4:42: 74:32:92:87:dc:aa:d1:c2:6a:6d:9c:75:8a:00:6d: 1f:53:53:13:91:5e:0a:fd:45:1f:5b:4d:f8:f1:94: bd:0d:e5:13:6c:23:0f:1a:13:4e:0c:ea:fc:b7:e2: bd:a0:ea:1a:1a:b9:66:e6:75:62:9e:98:a4:19:c7: 35:cf:af:93:49:eb:a9:73:fa:7e:62:eb:c3:e1:c6: 44:f7:18:18:3d:34:15:42:18:6d:93:63:b3:88:e3: 60:38:ec:85:44:15:50:3c:5a:90:c0:13:99:29:41: c5:03:4b:5d:3a:5f:7a:40:7f:16:2f:b8:37:8d:47: 34:c7:b1:c2:e8:30:60:60:0c:c8:a3:40:ea:f8:bf: 60:db:e7:2d:24:1a:8f:cb:d5:a0:36:7e:7d:e9:ed: 8a:52:72:73:4a:d8:fe:95:ad:2a:b4:b4:93:bf:e6: 6a:a0:cd:4a:b4:67:4d:0d:83:61:72:be:06:60:ac: e7:3f:65:2c:41:89:28:ee:04:6f:5f:79:e0:61:83: a2:0c:0d:12:32:c2:0d:db:c8:83:91:4f:12:c5:4e: e4:1a:4d:30:f9:a4:62:79:f3:53:3a:c5:f0:bf:f8: 22:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6E:1B:A1:6C:99:51:4E:5D:A3:BE:D7:4C:AA:24:27:65:42:0F:EC X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ea:39:40:83:28:ad:60:7b:23:e7:2f:50:e9:d3:80:43:69: 8a:f6:6e:85:f0:41:ff:28:9d:ab:4d:35:b3:5b:1f:b2:34:c0: 0e:7a:ec:1e:1a:cc:64:fd:da:15:e5:a9:f8:0d:7a:6f:4f:c4: d4:0c:1d:b4:b6:1d:33:bb:e4:cd:b1:a1:26:8e:e9:93:b7:4d: 64:4e:80:d7:a2:11:b5:ce:33:15:70:0d:e9:b0:83:ee:1b:dc: 5a:61:0f:2b:02:e4:13:89:46:43:bb:b1:10:37:a9:d5:7d:b2: b4:98:64:bd:1c:e7:75:57:68:b3:78:fc:02:db:4a:f2:20:5a: 79:12:d5:00:77:fe:06:4d:f1:90:4e:b7:74:12:a1:1c:45:6e: b6:80:77:da:ae:19:85:8f:6c:2c:50:71:8e:4a:b3:28:fd:96: 1b:56:17:c3:3d:84:26:31:2e:b4:e5:bc:05:02:7d:1d:af:d0: 37:b3:ae:e4:ce:06:72:b5:b9:d0:ef:fc:5a:c6:80:eb:38:68: fa:44:1c:e8:c6:cb:c0:36:a8:93:3e:88:bc:21:28:6a:7d:e5: 0c:99:77:74:f7:5f:d2:73:5b:35:d7:68:ec:f0:ec:69:ba:74: e0:47:fc:79:1a:a4:dc:1c:e5:f3:ac:b0:32:5b:f2:d0:76:fb: b0:c6:c3:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjYwMjI4MjE1MzQ2WhcNMjYwMzA3MjE1MzQ2WjAYMRYwFAYD VQQDDA02OWEzNjNlYi03MzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKw2a0jyVBUq8Z1XbMubj/HqUqgNfjWPDbLO9EJ0MpKH3KrRwmptnHWKAG0f U1MTkV4K/UUfW0348ZS9DeUTbCMPGhNODOr8t+K9oOoaGrlm5nVinpikGcc1z6+T Seupc/p+YuvD4cZE9xgYPTQVQhhtk2OziONgOOyFRBVQPFqQwBOZKUHFA0tdOl96 QH8WL7g3jUc0x7HC6DBgYAzIo0Dq+L9g2+ctJBqPy9WgNn596e2KUnJzStj+la0q tLSTv+ZqoM1KtGdNDYNhcr4GYKznP2UsQYko7gRvX3ngYYOiDA0SMsIN28iDkU8S xU7kGk0w+aRiefNTOsXwv/giiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE1uG6Fs mVFOXaO+10yqJCdlQg/sMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANOo5QIMorWB7I+cvUOnTgENpivZuhfBB/yidq001s1sfsjTADnrsHhrMZP3a FeWp+A16b0/E1AwdtLYdM7vkzbGhJo7pk7dNZE6A16IRtc4zFXAN6bCD7hvcWmEP KwLkE4lGQ7uxEDep1X2ytJhkvRzndVdos3j8AttK8iBaeRLVAHf+Bk3xkE63dBKh HEVutoB32q4ZhY9sLFBxjkqzKP2WG1YXwz2EJjEutOW8BQJ9Ha/QN7Ou5M4GcrW5 0O/8WsaA6zho+kQc6MbLwDaokz6IvCEoan3lDJl3dPdf0nNbNddo7PDsabp04Ef8 eRqk3Bzl86ywMlvy0Hb7sMbDeg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:39:58 2026 by rpki-client