$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft File: cPEzmWaoGrwgfjvuM3CR2fLzydc.mft (raw, json) Hash identifier: ngPmBXut/SHbjC8CXZfiP8/dvc6X+aOOGmiNti6V7dY= Subject key identifier: A2:C7:33:E8:1F:B4:00:00:6E:50:D8:A1:79:AA:C0:2C:C8:48:95:B8 Authority key identifier: 70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 Certificate issuer: /CN=A91C9324/serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft Manifest number: 0219 Signing time: Mon 02 Mar 2026 03:11:43 +0000 Manifest this update: Mon 02 Mar 2026 03:11:41 +0000 Manifest next update: Mon 09 Mar 2026 03:11:41 +0000 Files and hashes: 1: cPEzmWaoGrwgfjvuM3CR2fLzydc.crl (hash: 60lEpNZ8j/Fg4nVb/ZhQepbWGhxni6rbSO7bGF4jWyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Validity Not Before: Mar 2 03:11:41 2026 GMT Not After : Mar 9 03:11:41 2026 GMT Subject: CN=69a4ffee-b966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:71:ee:68:47:2c:c0:55:9b:36:c7:2f:61: 1b:83:9f:2f:c2:5c:b5:f5:a6:35:43:dc:67:af:59: 22:20:1f:af:94:2c:96:5d:01:7d:7b:1e:03:57:52: 5f:98:73:0b:3f:0e:a0:b6:21:d3:b1:e8:bc:3c:99: 94:32:d0:bc:70:49:35:54:a5:7a:8e:1e:39:92:bf: 80:24:ad:e8:37:5b:d2:ce:60:cd:8e:c0:36:49:23: 92:78:dd:0d:3e:57:bb:1e:5c:e5:b0:f6:b4:cb:c2: 2b:58:1f:38:56:a9:e3:d1:d3:f5:f8:73:56:c2:c4: 89:0c:aa:42:74:c6:f6:7e:cb:c7:32:90:84:38:55: 16:d1:b8:1b:f5:dc:4f:4f:ef:eb:16:83:71:47:c7: a7:09:6b:e0:4e:ad:24:cc:d2:a7:8e:63:8c:c8:af: 60:0b:46:35:39:af:57:1e:3f:5b:82:2c:31:fe:c2: 24:2e:ae:8a:cc:41:d1:c6:6f:51:e0:a9:3c:a3:59: fb:e4:e4:a5:ab:72:33:35:89:72:34:b3:5f:4d:e4: a8:16:56:b5:9f:79:00:f5:1d:7d:90:ce:de:53:57: 28:a0:ef:b9:85:e1:29:e9:1e:bb:52:75:7f:6b:bf: 9c:5c:97:bf:97:36:8b:12:37:07:21:31:01:23:b9: 30:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C7:33:E8:1F:B4:00:00:6E:50:D8:A1:79:AA:C0:2C:C8:48:95:B8 X509v3 Authority Key Identifier: keyid:70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:4d:61:66:e1:ed:8a:d9:40:7d:89:93:14:bd:8d:1d:96:f3: 34:5f:a5:92:68:92:c2:36:0e:84:80:be:1a:6b:70:98:78:e1: 08:3b:f4:da:12:3c:fe:31:b0:25:c1:f1:13:63:0a:7f:b5:bb: e2:32:c5:f3:1b:1e:fa:14:20:90:55:74:59:2b:17:20:d3:4e: 79:13:9f:57:5e:b3:14:db:d4:95:18:df:ce:09:e8:97:cc:06: a6:53:91:57:8b:d8:18:4a:0e:0f:a5:03:7a:9e:53:7d:2d:be: db:65:ad:24:45:e3:65:ff:5d:eb:cc:24:d8:19:fa:82:51:4e: 39:15:2c:76:49:a8:3b:0c:fd:58:92:23:99:ad:9a:97:44:58: 4d:73:3d:0a:f2:1f:36:6e:e0:a7:92:46:b9:70:d1:e8:39:a2: b0:6d:d9:50:be:62:1a:8b:ea:07:25:58:94:09:1f:86:87:0f: 2f:6e:ef:4f:75:cc:00:a2:ef:a2:79:a0:11:f4:a1:19:7b:61: e0:13:13:67:db:59:41:ae:f9:cc:ba:92:e1:66:45:99:c0:50: a4:ca:84:fb:d0:b6:90:8a:9c:65:2f:99:0f:38:ca:8c:1d:ef: 68:12:5f:11:5d:1b:0e:02:fa:65:03:f1:00:c3:e3:e3:0d:f8: 5f:1c:43:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDcwRjEzMzk5NjZBODFBQkMyMDdFM0JFRTMzNzA5MUQ5 RjJGM0M5RDcwHhcNMjYwMzAyMDMxMTQxWhcNMjYwMzA5MDMxMTQxWjAYMRYwFAYD VQQDEw02OWE0ZmZlZS1iOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt09x7mhHLMBVmzbHL2Ebg58vwly19aY1Q9xnr1kiIB+vlCyWXQF9ex4DV1Jf mHMLPw6gtiHTsei8PJmUMtC8cEk1VKV6jh45kr+AJK3oN1vSzmDNjsA2SSOSeN0N Ple7HlzlsPa0y8IrWB84Vqnj0dP1+HNWwsSJDKpCdMb2fsvHMpCEOFUW0bgb9dxP T+/rFoNxR8enCWvgTq0kzNKnjmOMyK9gC0Y1Oa9XHj9bgiwx/sIkLq6KzEHRxm9R 4Kk8o1n75OSlq3IzNYlyNLNfTeSoFla1n3kA9R19kM7eU1cooO+5heEp6R67UnV/ a7+cXJe/lzaLEjcHITEBI7kw3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKLHM+gf tAAAblDYoXmqwCzISJW4MB8GA1UdIwQYMBaAFHDxM5lmqBq8IH477jNwkdny88nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC8yMkJGOEQzMkUw MkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dyd2dmanZ1TTNDUjJmTHp5 ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NQRXptV2FvR3J3Z2ZqdnVNM0NSMmZMenlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNC8yMkJGOEQzMkUwMkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dy d2dmanZ1TTNDUjJmTHp5ZGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvE1hZuHtitlAfYmTFL2NHZbzNF+lkmiSwjYOhIC+GmtwmHjhCDv02hI8/jGw JcHxE2MKf7W74jLF8xse+hQgkFV0WSsXINNOeROfV16zFNvUlRjfzgnol8wGplOR V4vYGEoOD6UDep5TfS2+22WtJEXjZf9d68wk2Bn6glFOORUsdkmoOwz9WJIjma2a l0RYTXM9CvIfNm7gp5JGuXDR6DmisG3ZUL5iGovqByVYlAkfhocPL27vT3XMAKLv onmgEfShGXth4BMTZ9tZQa75zLqS4WZFmcBQpMqE+9C2kIqcZS+ZDzjKjB3vaBJf EV0bDgL6ZQPxAMPj4w34XxxDWw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:57:56 2026 by rpki-client