$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: 57Dx4lqrMVbMBnGS4vogAbRrKj5wuMDf9qO/n3Buqxk= Subject key identifier: B2:DC:FE:2A:1E:A2:6E:CF:C1:3F:D2:23:74:3C:AF:0F:A8:A8:2C:17 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 0106 Signing time: Sun 01 Mar 2026 07:06:21 +0000 Manifest this update: Sun 01 Mar 2026 07:06:20 +0000 Manifest next update: Sun 08 Mar 2026 07:06:20 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: zkAFvfNwFi7SBAUe9MO7nHEYAkwXk2QwVmrTZ43lmK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Mar 1 07:06:20 2026 GMT Not After : Mar 8 07:06:20 2026 GMT Subject: CN=69a3e56d-0802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:d4:2c:14:c0:e5:f7:e3:28:df:a0:ce:dd: 9a:aa:ab:b4:08:49:98:00:45:85:30:a7:6f:04:4a: 74:29:96:d0:0c:df:32:85:5c:9a:80:c2:32:bb:54: 2a:10:07:79:c3:65:1e:db:6b:56:0e:01:d3:16:c1: d4:a0:f2:86:c0:28:c5:96:a8:8b:00:e4:2b:37:24: 65:8f:b6:6e:c6:35:85:eb:a3:40:f4:7d:6a:cd:cc: 09:3b:a6:19:d9:d9:6e:6d:ec:ec:91:2a:7a:71:a4: 31:f5:33:ab:28:ed:f1:86:13:aa:06:80:b6:6a:28: bf:c2:5d:a9:d4:30:fb:de:22:6e:1f:37:ca:89:c9: e3:b8:0a:71:a4:98:36:77:1b:a5:f4:14:bb:dc:24: 42:85:65:13:53:97:45:d8:c7:b5:79:9d:11:43:86: 35:d1:44:cb:ce:8a:ad:42:06:0d:8f:51:d3:2e:2f: 51:8b:53:e9:5b:01:7d:80:5f:47:b5:d0:c8:a7:a3: 5b:b0:9d:94:a4:e7:b5:3e:40:4d:53:76:c5:24:19: 6c:96:db:ca:fc:55:3a:65:b4:6d:4e:76:65:d6:83: 0d:5d:7f:05:61:d7:38:bb:01:63:ac:ab:b0:1f:f3: 24:1d:71:28:0a:cb:35:55:ab:f1:d0:f9:2d:3d:3e: c4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DC:FE:2A:1E:A2:6E:CF:C1:3F:D2:23:74:3C:AF:0F:A8:A8:2C:17 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1a:97:df:2a:dd:7b:fd:10:5a:48:e6:4e:30:0f:fe:d1:49: 8f:8f:fc:a8:c7:31:0c:f9:17:b9:68:0f:fb:9a:9b:d9:74:bf: 6d:50:07:69:5e:cd:e9:de:50:58:a3:f9:97:0d:cf:87:93:ad: 6f:aa:e0:e3:71:49:82:55:dd:87:14:87:fb:2c:f3:0a:72:15: ef:a7:e2:14:13:06:ff:70:be:6d:c7:d9:b5:03:81:27:54:54: 80:39:4a:e1:06:e2:39:64:28:33:2b:ae:c7:a2:93:c5:ab:98: 4c:db:a3:97:52:a0:c4:73:21:8e:8b:3b:b8:ee:0d:84:cf:ab: cd:fc:85:f5:0d:7a:24:13:9a:6f:94:5a:d9:22:f9:d9:4c:be: a1:d2:d3:5d:4b:2d:a8:b3:23:57:43:13:e9:35:f9:cc:1d:b8: 15:bf:7c:29:43:12:7a:6d:91:9c:40:99:b7:c6:a6:9c:c5:60: b1:2f:2e:55:93:dd:92:ec:c5:7f:66:5e:f0:45:3e:c2:ea:99: 89:56:7e:74:39:2b:ef:4e:a8:83:78:53:94:1e:90:92:1e:09: ad:2e:24:52:69:ce:bf:5c:27:96:2a:5f:0f:5d:4a:56:66:2e: 37:26:d6:0a:64:38:2b:38:a2:74:00:14:f3:c3:07:e6:7b:89: 88:97:9e:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjYwMzAxMDcwNjIwWhcNMjYwMzA4MDcwNjIwWjAYMRYwFAYD VQQDEw02OWEzZTU2ZC0wODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfvULBTA5ffjKN+gzt2aqqu0CEmYAEWFMKdvBEp0KZbQDN8yhVyagMIyu1Qq EAd5w2Ue22tWDgHTFsHUoPKGwCjFlqiLAOQrNyRlj7ZuxjWF66NA9H1qzcwJO6YZ 2dlubezskSp6caQx9TOrKO3xhhOqBoC2aii/wl2p1DD73iJuHzfKicnjuApxpJg2 dxul9BS73CRChWUTU5dF2Me1eZ0RQ4Y10UTLzoqtQgYNj1HTLi9Ri1PpWwF9gF9H tdDIp6NbsJ2UpOe1PkBNU3bFJBlsltvK/FU6ZbRtTnZl1oMNXX8FYdc4uwFjrKuw H/MkHXEoCss1Vavx0PktPT7ETwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLc/ioe om7PwT/SI3Q8rw+oqCwXMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXBqX3yrde/0QWkjmTjAP/tFJj4/8qMcxDPkXuWgP+5qb2XS/bVAHaV7N6d5Q WKP5lw3Ph5Otb6rg43FJglXdhxSH+yzzCnIV76fiFBMG/3C+bcfZtQOBJ1RUgDlK 4QbiOWQoMyuux6KTxauYTNujl1KgxHMhjos7uO4NhM+rzfyF9Q16JBOab5Ra2SL5 2Uy+odLTXUstqLMjV0MT6TX5zB24Fb98KUMSem2RnECZt8amnMVgsS8uVZPdkuzF f2Ze8EU+wuqZiVZ+dDkr706og3hTlB6Qkh4JrS4kUmnOv1wnlipfD11KVmYuNybW CmQ4KziidAAU88MH5nuJiJeeNw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:45 2026 by rpki-client