$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: XBmafZ9avZeee8KhnJfU3hJe/v3EAHfolrPs0MxM900= Subject key identifier: 2D:64:7D:F7:48:D7:9F:63:3D:6F:3D:44:CC:A4:43:97:8C:6F:7F:A8 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0571 Signing time: Sat 28 Feb 2026 23:53:50 +0000 Manifest this update: Sat 28 Feb 2026 23:53:49 +0000 Manifest next update: Sat 07 Mar 2026 23:53:49 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: MkIgIK/EHzxIs5DrJbYWS6gIL0aGxPLvEkklg2MpxSw=) 2: F719961A1A8611ECB908E939C4F9AE02.roa (hash: K4Tk1pgMDNh5SKenYzBLQtmFUIf8LUH33Tf6G2W39As=) 3: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: K6zEQIX3Xs70jZXyUBIkq7itCCV+/w4+T7TPTazGJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Feb 28 23:53:49 2026 GMT Not After : Mar 7 23:53:49 2026 GMT Subject: CN=69a3800e-7d7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:e1:32:b9:13:9a:ba:eb:5c:23:f7:46:6b:8c: 5a:18:59:a9:0e:c0:c3:8c:bc:96:80:87:8d:75:3a: 8e:f9:d0:d8:47:29:7f:2b:78:bc:24:45:2c:dd:26: ef:6e:bc:4c:40:cc:26:10:97:5a:74:f1:f6:a0:fb: 2c:73:c6:4b:87:74:37:d8:0e:6d:5d:3c:30:5f:9b: 38:96:2f:ed:a7:fa:82:e8:55:f1:ce:4c:74:0e:21: b7:82:b2:3e:db:19:31:b8:2e:18:ad:ca:fa:29:e0: 0f:43:bd:23:32:89:c0:3f:62:f5:7f:ec:01:7c:ab: b4:a0:0e:3a:fc:9c:f5:b6:63:e4:d6:5b:06:5c:ae: ff:04:65:f8:d7:da:24:6e:11:7b:c5:b8:73:d1:4d: 6e:70:ee:71:1b:55:70:b6:54:29:9e:fc:94:4a:49: e8:87:dd:05:a2:22:0d:02:e7:02:ef:5e:19:eb:ec: 8f:3a:e9:2b:c7:7e:22:c9:98:61:a4:e3:d8:59:2a: 8c:4e:9b:6d:72:6e:66:b4:8c:27:5b:e8:f4:a6:e9: e5:56:9c:75:32:40:cf:64:7d:ab:55:ed:59:8f:02: 8a:93:15:ca:df:c0:58:0d:cf:ea:ae:7d:2f:eb:43: 6b:62:8c:0b:00:a7:9d:c3:46:43:96:db:8b:f5:2b: 37:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:64:7D:F7:48:D7:9F:63:3D:6F:3D:44:CC:A4:43:97:8C:6F:7F:A8 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c1:b0:47:30:e9:74:91:b0:c5:63:e9:2a:74:84:d4:fc:a5: 8c:3d:70:c4:f7:07:fe:79:79:8e:de:24:70:74:89:ec:39:b9: f0:33:d1:47:e4:db:9b:9a:66:d6:05:6b:25:3b:b4:5a:8a:03: e6:f0:e5:e0:82:70:f0:d1:bd:fa:ad:a8:e1:34:3e:f6:d6:19: 25:85:b5:cf:12:90:71:22:3c:3f:e5:23:ff:ef:c4:03:b0:ae: 6c:88:75:00:fc:64:ba:39:64:44:de:16:09:2b:53:fc:49:a8: ce:9c:68:fc:e1:78:e3:89:70:64:39:f7:ac:b3:08:ec:e2:5d: 96:2c:2f:61:47:2b:f2:51:16:c7:c7:9c:fe:ec:41:61:eb:77: 4a:a5:b7:4b:38:50:f7:7f:1e:38:7c:78:1a:44:27:25:62:0d: 3f:0b:5f:4c:c0:12:80:fc:58:b0:1e:6d:08:11:44:93:5f:73: d9:2f:7a:0c:33:df:fd:ee:36:e7:a3:a4:dc:70:2d:db:f3:2c: c7:44:62:fd:27:7c:a4:61:ad:a6:70:46:9e:48:3a:1b:76:6a: ec:d2:b4:bf:74:21:ad:5b:72:f6:68:33:d3:e7:e1:78:16:7e: 7a:95:08:d6:b4:1b:f4:05:34:98:31:ad:f8:31:de:ae:c8:ae: 5d:c2:06:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjYwMjI4MjM1MzQ5WhcNMjYwMzA3MjM1MzQ5WjAYMRYwFAYD VQQDDA02OWEzODAwZS03ZDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiuEyuROauutcI/dGa4xaGFmpDsDDjLyWgIeNdTqO+dDYRyl/K3i8JEUs3Sbv brxMQMwmEJdadPH2oPssc8ZLh3Q32A5tXTwwX5s4li/tp/qC6FXxzkx0DiG3grI+ 2xkxuC4Yrcr6KeAPQ70jMonAP2L1f+wBfKu0oA46/Jz1tmPk1lsGXK7/BGX419ok bhF7xbhz0U1ucO5xG1VwtlQpnvyUSknoh90FoiINAucC714Z6+yPOukrx34iyZhh pOPYWSqMTpttcm5mtIwnW+j0punlVpx1MkDPZH2rVe1ZjwKKkxXK38BYDc/qrn0v 60NrYowLAKedw0ZDltuL9Ss3hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1kffdI 159jPW89RMykQ5eMb3+oMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlsGwRzDpdJGwxWPpKnSE1PyljD1wxPcH/nl5jt4kcHSJ7Dm58DPRR+Tbm5pm 1gVrJTu0WooD5vDl4IJw8NG9+q2o4TQ+9tYZJYW1zxKQcSI8P+Uj/+/EA7CubIh1 APxkujlkRN4WCStT/Emozpxo/OF444lwZDn3rLMI7OJdliwvYUcr8lEWx8ec/uxB Yet3SqW3SzhQ938eOHx4GkQnJWINPwtfTMASgPxYsB5tCBFEk19z2S96DDPf/e42 56Ok3HAt2/Msx0Ri/Sd8pGGtpnBGnkg6G3Zq7NK0v3QhrVty9mgz0+fheBZ+epUI 1rQb9AU0mDGt+DHersiuXcIGiQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:41:57 2026 by rpki-client