$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: p8GPFZB/uNi/qq1tacgPjn7KkMfeF+VKZxV5y5bwNA8= Subject key identifier: AA:EC:27:AC:CE:97:91:8C:82:30:45:6B:25:4B:AB:F5:69:C4:7A:07 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 03BE Signing time: Mon 02 Mar 2026 00:11:01 +0000 Manifest this update: Mon 02 Mar 2026 00:11:00 +0000 Manifest next update: Mon 09 Mar 2026 00:11:00 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: jCdR7kXVszZx4jhhgiA/95Lt3k4Dw4qadH01fLAN4cM=) 2: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: 6ChvL5bIW0nd/LEwk1GkYjUq9x3wU+NsnqxaoPxGr+c=) 3: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: SAmq2qut5svZXJTr/IN8K0rrvVU2RQUex9B9Y/hGwvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Mar 2 00:11:00 2026 GMT Not After : Mar 9 00:11:00 2026 GMT Subject: CN=69a4d595-10fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:fe:ac:05:c3:21:24:c7:26:7d:a9:9a:de:0d: 81:36:0f:e0:52:5f:34:bc:43:4f:b5:3c:fc:4b:1c: e3:82:f7:ce:40:14:42:c8:cd:81:f1:3f:dd:ba:6d: 97:d0:f0:3c:8b:92:96:f3:b6:77:35:19:7f:b9:a3: 7d:b0:22:8e:61:1f:07:f4:bd:3d:8d:a0:d6:94:88: 2d:d4:3b:0a:ee:8d:bc:81:90:c9:e0:2e:03:fb:95: 87:c9:12:5f:fd:57:c8:82:6d:35:13:fd:95:7f:50: 4e:bf:64:ce:0d:4c:83:d3:ac:55:14:1c:06:b1:5c: 4e:d5:fb:17:2a:25:39:fa:f0:a0:85:fb:33:0d:b2: 69:00:2e:77:72:c0:1f:1f:77:9a:de:90:65:0e:81: 23:ba:c2:af:56:a7:83:2a:68:8d:1c:69:54:72:6c: 50:89:e1:e0:b9:4d:aa:fd:15:0c:47:46:d4:de:71: 42:33:f7:a2:91:75:7e:f2:dc:de:2d:58:e1:c1:3a: 64:fd:04:96:5c:52:26:f7:02:9c:85:ba:27:7b:e7: b4:49:15:46:09:c2:c0:45:b6:51:6d:16:fc:b8:bb: 21:d1:59:fb:fe:7c:de:01:ae:7c:db:7e:cf:bf:14: 7d:6b:3f:a7:8a:ec:b5:25:a3:cf:7c:aa:bb:23:42: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EC:27:AC:CE:97:91:8C:82:30:45:6B:25:4B:AB:F5:69:C4:7A:07 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:42:57:e1:01:93:d6:33:03:81:ed:ec:66:33:30:cc:14:f0: 07:c8:3b:d3:ce:ab:6f:c4:21:69:9e:48:e2:0a:8c:8e:c9:a1: 9d:e1:1e:d0:af:9c:b9:1f:df:40:9d:c3:08:37:48:9f:44:1d: 38:1b:8f:2b:e9:15:a7:89:81:2f:c8:66:6d:32:22:2d:c3:24: 0a:fa:34:ef:06:73:cc:ec:da:f8:4b:24:66:1c:cb:a1:cc:d7: 65:aa:6f:2c:82:4b:f0:aa:99:03:1b:68:bf:a0:62:16:05:91: 51:d2:5c:2b:7a:fb:3a:2f:b8:84:a6:65:7d:7f:d4:ec:b5:84: 5c:68:18:16:a2:b7:1e:7d:78:dc:0a:88:a4:c1:5d:02:3e:fd: f7:2a:0b:7a:fa:ec:c5:e8:00:58:ac:64:fa:7c:bc:0d:ba:c5: b6:77:c8:b9:a4:01:1b:fa:d5:cd:cb:bd:f8:88:28:15:54:5f: 51:7c:84:94:a5:a4:7c:55:17:36:69:92:ec:c2:af:42:a5:87: 15:4a:62:76:ff:ea:a5:8d:d3:3b:64:db:a4:08:ed:f4:18:bc: d7:dd:36:0a:79:c3:17:09:03:04:0f:26:61:3c:b7:4d:5d:30: c9:e8:1d:4a:0b:66:e0:16:f2:2c:ba:7b:94:c4:b0:8d:7c:42: 96:a8:a6:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjYwMzAyMDAxMTAwWhcNMjYwMzA5MDAxMTAwWjAYMRYwFAYD VQQDEw02OWE0ZDU5NS0xMGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmP6sBcMhJMcmfama3g2BNg/gUl80vENPtTz8SxzjgvfOQBRCyM2B8T/dum2X 0PA8i5KW87Z3NRl/uaN9sCKOYR8H9L09jaDWlIgt1DsK7o28gZDJ4C4D+5WHyRJf /VfIgm01E/2Vf1BOv2TODUyD06xVFBwGsVxO1fsXKiU5+vCghfszDbJpAC53csAf H3ea3pBlDoEjusKvVqeDKmiNHGlUcmxQieHguU2q/RUMR0bU3nFCM/eikXV+8tze LVjhwTpk/QSWXFIm9wKchbone+e0SRVGCcLARbZRbRb8uLsh0Vn7/nzeAa58237P vxR9az+niuy1JaPPfKq7I0Jm1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKrsJ6zO l5GMgjBFayVLq/VpxHoHMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiUJX4QGT1jMDge3sZjMwzBTwB8g7086rb8QhaZ5I4gqMjsmhneEe0K+cuR/f QJ3DCDdIn0QdOBuPK+kVp4mBL8hmbTIiLcMkCvo07wZzzOza+EskZhzLoczXZapv LIJL8KqZAxtov6BiFgWRUdJcK3r7Oi+4hKZlfX/U7LWEXGgYFqK3Hn143AqIpMFd Aj799yoLevrsxegAWKxk+ny8DbrFtnfIuaQBG/rVzcu9+IgoFVRfUXyElKWkfFUX NmmS7MKvQqWHFUpidv/qpY3TO2TbpAjt9Bi81902CnnDFwkDBA8mYTy3TV0wyegd Sgtm4BbyLLp7lMSwjXxClqimmg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:31 2026 by rpki-client