$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: FZTo2qnhrBq9FUEQzqwi6Z2ICW3CAXOUr4pxOploMRk= Subject key identifier: BB:AB:81:36:EC:5D:30:6D:45:DA:43:AD:76:26:CE:C7:22:20:77:4C Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: 95 Signing time: Sun 01 Mar 2026 08:46:23 +0000 Manifest this update: Sun 01 Mar 2026 08:46:22 +0000 Manifest next update: Sun 08 Mar 2026 08:46:22 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: BYvPUQxd7XtgL0698DUgSOGkLBL6HsnuHomzUc8X0AM=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Mar 1 08:46:22 2026 GMT Not After : Mar 8 08:46:22 2026 GMT Subject: CN=69a3fcdf-e121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:9f:67:a8:d2:fb:95:26:e9:bc:25:ec:c2: 35:53:61:6b:40:fb:bc:0c:6c:68:86:b5:23:26:d6: c7:12:6b:fd:48:2c:2f:a9:57:c7:2f:a2:40:2d:60: cb:a9:33:d9:af:7e:99:30:8a:1c:b2:48:09:21:21: 75:b9:d6:a0:8b:7e:f6:7b:12:80:d5:ff:ea:d8:c3: 39:84:5a:60:7b:ad:76:94:df:e3:f3:17:9e:b9:f2: c6:7a:31:0c:98:2d:89:64:8f:30:4b:7f:81:2b:e5: a4:26:c6:96:88:60:31:87:51:9e:0c:c5:d9:f8:c3: fa:6a:76:9e:f1:90:45:ae:e3:bb:5f:3b:31:98:c1: 48:a0:46:11:ec:53:ff:5e:ce:4d:5e:b4:9e:ae:32: 70:41:a3:7e:c5:0f:95:08:4c:18:f7:84:aa:2a:1a: 41:98:31:4d:3e:df:f7:4e:25:5a:a9:71:0f:b2:a4: 05:2c:ba:64:6b:e1:6b:f3:ad:e1:55:36:03:ce:de: 4a:99:16:98:8b:b8:fe:27:dd:85:1e:2b:df:3d:ff: d2:68:10:e5:8f:c9:d3:f9:e1:19:3c:96:89:29:02: aa:a4:81:fa:30:e2:eb:cf:db:fa:49:e9:1b:06:b8: c9:f7:ab:f8:70:b4:e0:13:b6:82:05:0d:5b:62:dc: ed:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AB:81:36:EC:5D:30:6D:45:DA:43:AD:76:26:CE:C7:22:20:77:4C X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:4c:e9:7f:c7:40:9c:fd:b0:29:15:29:23:72:fc:bc:78:76: 65:df:35:6f:ee:b4:94:6c:78:0d:14:92:d6:fd:fd:b2:f8:5c: 60:2c:86:92:95:c2:d7:66:80:71:73:f0:77:50:74:25:87:f3: a0:40:c9:eb:0b:f8:7c:10:99:96:ea:ab:83:65:a2:c5:ef:83: 47:8e:5d:d4:1b:5d:07:58:39:67:f7:bd:25:ca:25:24:3a:78: bc:48:56:96:62:eb:ec:c2:f1:7b:7c:3f:83:c6:06:d4:c7:66: 1d:f4:d0:e4:e5:cd:f0:38:80:cf:53:1c:d1:43:5f:58:f6:a3: a1:52:e2:65:3f:83:58:9b:11:e0:97:c9:3c:bf:06:c3:11:bc: 86:94:98:ea:e9:00:07:9d:86:35:16:15:b9:a8:76:42:5c:7f: b3:d4:1f:3c:49:d6:30:1c:ba:f5:0e:c6:01:d6:0f:94:6f:0d: 81:0c:3a:4f:b7:c9:bd:73:20:6b:60:a8:ac:e4:90:bb:3e:b0: 56:bb:d9:48:e4:a0:3f:ab:9d:83:8f:01:01:74:5a:e1:00:30: 66:9a:5b:6e:33:0e:ac:87:75:3c:2a:30:ee:26:1f:25:e6:ca: cb:b8:05:26:71:ac:49:fb:f3:57:2a:ac:33:7a:31:91:d5:2b: 93:06:e8:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwMzAxMDg0NjIyWhcNMjYwMzA4MDg0NjIyWjAYMRYwFAYD VQQDEw02OWEzZmNkZi1lMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqISfZ6jS+5Um6bwl7MI1U2FrQPu8DGxohrUjJtbHEmv9SCwvqVfHL6JALWDL qTPZr36ZMIocskgJISF1udagi372exKA1f/q2MM5hFpge612lN/j8xeeufLGejEM mC2JZI8wS3+BK+WkJsaWiGAxh1GeDMXZ+MP6anae8ZBFruO7XzsxmMFIoEYR7FP/ Xs5NXrSerjJwQaN+xQ+VCEwY94SqKhpBmDFNPt/3TiVaqXEPsqQFLLpka+Fr863h VTYDzt5KmRaYi7j+J92FHivfPf/SaBDlj8nT+eEZPJaJKQKqpIH6MOLrz9v6Sekb BrjJ96v4cLTgE7aCBQ1bYtztGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLurgTbs XTBtRdpDrXYmzsciIHdMMB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWEzpf8dAnP2wKRUpI3L8vHh2Zd81b+60lGx4DRSS1v39svhcYCyGkpXC12aA cXPwd1B0JYfzoEDJ6wv4fBCZluqrg2Wixe+DR45d1BtdB1g5Z/e9JcolJDp4vEhW lmLr7MLxe3w/g8YG1MdmHfTQ5OXN8DiAz1Mc0UNfWPajoVLiZT+DWJsR4JfJPL8G wxG8hpSY6ukAB52GNRYVuah2Qlx/s9QfPEnWMBy69Q7GAdYPlG8NgQw6T7fJvXMg a2CorOSQuz6wVrvZSOSgP6udg48BAXRa4QAwZppbbjMOrId1PCow7iYfJebKy7gF JnGsSfvzVyqsM3oxkdUrkwbo6w== -----END CERTIFICATE-----Generated at Mon Mar 2 08:21:08 2026 by rpki-client