$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: CQNP9+lm9RIk4uehc+FLXD68Pm24/w8uPdHQyI8Al1s= Subject key identifier: 8E:90:0A:DD:42:0D:89:76:E1:94:27:10:F6:7A:0A:6A:0E:3D:2D:D4 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C87 Signing time: Sat 28 Feb 2026 18:48:08 +0000 Manifest this update: Sat 28 Feb 2026 18:48:07 +0000 Manifest next update: Sat 07 Mar 2026 18:48:07 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: a94YBfMFoWKHVVlFK5+nLi5P/3BAy7EuvTBk3BA9uSc=) 2: 988741FEDB8111F0B008B5AB60D3641D.roa (hash: +cWhXgmvXqt9a6ZqEZBrdto9E96GIgUY7aVDt14B1Zw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Feb 28 18:48:07 2026 GMT Not After : Mar 7 18:48:07 2026 GMT Subject: CN=69a33867-28a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:74:4c:3e:3f:34:50:7f:7f:38:d8:6b:55:26: 4a:4f:c2:99:db:02:74:27:47:c4:59:c0:3a:45:4b: 9e:f1:c7:39:c1:0e:1d:0d:86:0c:f1:80:28:4e:d1: 30:d6:a4:e7:e3:86:58:01:20:c3:b8:e8:df:46:f3: c0:d9:0e:28:e3:a9:33:3d:f2:65:85:77:64:03:47: c8:2a:cf:59:ab:11:9e:37:e2:0d:f4:7c:36:e1:14: 36:32:71:5c:c7:75:37:68:2b:71:c3:5c:d9:00:37: 6c:80:08:00:8c:6b:2b:bc:57:ec:df:82:55:31:ac: b8:a7:94:7f:2c:10:8b:c7:39:91:0c:9b:9a:96:09: 7b:90:32:ff:0f:32:0e:81:de:90:be:52:07:f2:8e: 0b:f1:1d:35:6d:0d:bb:be:29:66:e6:9a:63:10:21: 59:49:2d:a0:60:36:e6:d8:a4:97:be:80:0c:ee:c2: 8c:e2:02:a6:73:ae:eb:5e:12:a3:71:d3:6e:3f:8d: 7a:1b:cf:4f:48:be:be:72:21:4d:b3:f2:13:fe:c3: 3e:09:57:71:12:1d:3d:0b:0a:32:86:de:8c:89:2f: af:d9:92:2f:1f:a8:9b:1f:bb:d7:18:ba:de:1c:1d: a9:67:6a:62:ca:08:1b:17:72:e1:08:26:5c:4b:be: 73:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:90:0A:DD:42:0D:89:76:E1:94:27:10:F6:7A:0A:6A:0E:3D:2D:D4 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:60:42:76:86:5d:73:e4:4a:ea:7d:3e:6d:5b:9f:b2:89:63: 23:3a:07:ba:6b:00:a0:0a:9d:89:a5:dd:e5:95:3e:50:8b:57: 63:be:2d:74:54:9b:e1:3c:71:39:7a:65:5b:92:12:fe:3c:96: ff:27:b1:c9:21:fd:39:6c:dd:b7:8d:c2:41:3c:48:f8:d4:fe: d5:13:1a:ac:9a:75:6f:d9:f5:2f:3b:de:91:ea:80:73:ef:f7: c6:3b:fa:62:0c:da:6c:80:93:9c:a3:9c:50:68:7d:b6:90:4e: 16:af:50:ba:2f:f2:03:00:e5:81:a9:e2:b6:4e:c9:8a:05:41: b0:b6:fb:2f:8a:a1:91:5b:83:e5:8f:7c:88:4a:cb:95:fb:06: 20:af:db:64:58:14:b0:7a:bd:96:e7:5a:a5:11:05:28:a1:cc: 3d:d4:3a:34:55:7e:bd:0f:ad:76:3f:88:61:7b:f2:39:d1:78: 58:45:fe:23:87:69:05:c1:02:c9:8b:3d:68:c6:6e:51:25:fe: 4e:0d:41:fb:fe:4b:5f:ba:3f:4d:58:fb:ed:f0:e0:cf:75:1a: de:3d:4f:9b:19:d3:c0:0f:a3:97:20:e1:e3:2a:4a:42:30:b1: e2:d5:3f:c5:e2:9c:95:99:30:29:ac:52:bf:a6:e2:34:41:86: ca:ed:2d:1b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjYwMjI4MTg0ODA3WhcNMjYwMzA3MTg0ODA3WjAYMRYwFAYD VQQDDA02OWEzMzg2Ny0yOGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXRMPj80UH9/ONhrVSZKT8KZ2wJ0J0fEWcA6RUue8cc5wQ4dDYYM8YAoTtEw 1qTn44ZYASDDuOjfRvPA2Q4o46kzPfJlhXdkA0fIKs9ZqxGeN+IN9Hw24RQ2MnFc x3U3aCtxw1zZADdsgAgAjGsrvFfs34JVMay4p5R/LBCLxzmRDJualgl7kDL/DzIO gd6QvlIH8o4L8R01bQ27vilm5ppjECFZSS2gYDbm2KSXvoAM7sKM4gKmc67rXhKj cdNuP416G89PSL6+ciFNs/IT/sM+CVdxEh09Cwoyht6MiS+v2ZIvH6ibH7vXGLre HB2pZ2piyggbF3LhCCZcS75z8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6QCt1C DYl24ZQnEPZ6CmoOPS3UMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgWBCdoZdc+RK6n0+bVufsoljIzoHumsAoAqdiaXd5ZU+UItXY74tdFSb4Txx OXplW5IS/jyW/yexySH9OWzdt43CQTxI+NT+1RMarJp1b9n1LzvekeqAc+/3xjv6 YgzabICTnKOcUGh9tpBOFq9Qui/yAwDlganitk7JigVBsLb7L4qhkVuD5Y98iErL lfsGIK/bZFgUsHq9ludapREFKKHMPdQ6NFV+vQ+tdj+IYXvyOdF4WEX+I4dpBcEC yYs9aMZuUSX+Tg1B+/5LX7o/TVj77fDgz3Ua3j1PmxnTwA+jlyDh4ypKQjCx4tU/ xeKclZkwKaxSv6biNEGGyu0tGw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:35:06 2026 by rpki-client