$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft File: CekFd0f2O6Ciga54ATZozt6kCrQ.mft (raw, json) Hash identifier: NUhiFGPFvp2uVP+8pfuEI69un22nkbQHw4HICxtoZ90= Subject key identifier: D6:EA:DE:09:3B:BA:F9:C7:C3:48:76:02:57:6D:42:74:15:48:58:B8 Authority key identifier: 09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 Certificate issuer: /CN=A91CDAFB/serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft Manifest number: 01FF Signing time: Sun 01 Mar 2026 03:50:06 +0000 Manifest this update: Sun 01 Mar 2026 03:50:06 +0000 Manifest next update: Sun 08 Mar 2026 03:50:06 +0000 Files and hashes: 1: CekFd0f2O6Ciga54ATZozt6kCrQ.crl (hash: HIj2KCV8jp4aT3rRdOsOklz2nNIherHlEah1BH4+O+I=) 2: 2815D106041A11EEA67A6B4DC4F9AE02.roa (hash: SwrvoVYgU6/JlbNtHbJmqe4zyeb9jSsFgyQPBZNxoww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDAFB, serialNumber=09E9057747F63BA0A281AE78013668CEDEA40AB4 Validity Not Before: Mar 1 03:50:06 2026 GMT Not After : Mar 8 03:50:06 2026 GMT Subject: CN=69a3b76e-2adb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:94:6d:7d:22:92:e7:4d:59:a0:9c:56:42: 4e:96:11:e9:ce:46:5c:40:33:bd:ec:4a:8a:08:ae: 8f:24:bc:06:fb:80:e5:f8:0c:8a:7c:56:6c:bc:a5: 2b:78:9e:37:d4:66:cf:f3:8b:11:db:4c:6a:d4:8d: c0:ed:0f:8c:3d:65:52:17:d1:33:2d:f7:90:b9:84: f1:08:dd:ce:39:9d:47:de:af:52:a6:eb:8c:a1:b3: bb:88:2c:03:0c:55:77:2a:8d:ca:b3:d6:bc:7b:ac: 19:43:94:18:12:75:e9:a0:2c:4c:04:6e:af:c6:c7: 2a:68:6a:54:69:9c:dd:da:29:2f:80:23:b4:1f:5b: 33:47:dd:f5:ef:ff:c0:2a:c2:f6:55:13:84:ff:e7: 12:f3:f2:e4:5c:8b:75:35:15:fe:94:84:24:1d:a4: bf:50:43:93:b2:8a:2b:52:2b:b5:48:cc:18:f9:5a: 80:99:78:d4:a7:92:44:85:db:8e:e6:d3:9a:64:6e: b9:d8:d5:82:ac:7c:a7:89:ff:2b:6b:f1:cc:02:19: 06:05:e8:f3:37:de:f2:34:eb:0e:e9:2c:ec:c9:70: ba:58:56:21:a0:c8:30:90:3b:a3:e3:86:ba:a1:fc: cb:de:01:b7:af:13:03:0e:60:6e:f9:e8:48:14:23: 97:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EA:DE:09:3B:BA:F9:C7:C3:48:76:02:57:6D:42:74:15:48:58:B8 X509v3 Authority Key Identifier: keyid:09:E9:05:77:47:F6:3B:A0:A2:81:AE:78:01:36:68:CE:DE:A4:0A:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CekFd0f2O6Ciga54ATZozt6kCrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDAFB/EC0F6A38034111EEA5215247C4F9AE02/CekFd0f2O6Ciga54ATZozt6kCrQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:a6:70:64:ed:67:1c:c5:55:35:96:a7:74:7a:21:04:dc:c1: 8a:43:9c:58:80:4e:7e:be:73:64:4e:a9:fb:3a:2e:e3:7f:79: 4b:e7:d6:45:94:f4:5b:9f:51:5d:ab:69:cb:89:3b:2d:ed:b6: 30:2d:ab:e4:17:6b:54:91:fd:9f:50:f6:b0:23:85:2e:6c:76: 1c:26:5f:97:32:2b:ec:5d:d6:6b:28:00:91:42:74:af:80:4d: 2a:d8:b2:64:d0:d2:dc:38:38:e6:ff:68:4b:fb:2d:65:70:6b: 59:bc:32:3b:55:7d:50:4b:b6:05:9a:dc:f3:3d:82:e7:0c:46: 4a:e4:e7:f1:84:79:e5:47:80:80:2f:28:2f:a2:4f:3e:2c:70: dc:89:4a:88:66:7e:ed:67:dc:32:bb:2f:4f:00:5d:74:1a:42: 3f:ca:fc:8f:63:1e:28:ff:01:e4:c6:56:e1:0b:e9:be:12:48: 6a:e3:12:4a:a4:91:80:76:d9:a9:28:55:39:63:32:b3:9e:b9: 92:fa:b7:33:bd:23:ae:e3:54:e7:9a:88:8a:cf:44:42:bc:f3: 98:61:65:54:19:4e:ef:df:5e:d9:3c:d4:0a:3e:f7:b2:35:7b: 75:c3:54:6c:87:5d:86:9a:11:30:dc:73:f3:2c:68:61:e5:36: 18:48:92:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RBRkIxMTAvBgNVBAUTKDA5RTkwNTc3NDdGNjNCQTBBMjgxQUU3ODAxMzY2OENF REVBNDBBQjQwHhcNMjYwMzAxMDM1MDA2WhcNMjYwMzA4MDM1MDA2WjAYMRYwFAYD VQQDDA02OWEzYjc2ZS0yYWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjiUbX0ikudNWaCcVkJOlhHpzkZcQDO97EqKCK6PJLwG+4Dl+AyKfFZsvKUr eJ431GbP84sR20xq1I3A7Q+MPWVSF9EzLfeQuYTxCN3OOZ1H3q9SpuuMobO7iCwD DFV3Ko3Ks9a8e6wZQ5QYEnXpoCxMBG6vxscqaGpUaZzd2ikvgCO0H1szR9317//A KsL2VROE/+cS8/LkXIt1NRX+lIQkHaS/UEOTsoorUiu1SMwY+VqAmXjUp5JEhduO 5tOaZG652NWCrHynif8ra/HMAhkGBejzN97yNOsO6SzsyXC6WFYhoMgwkDuj44a6 ofzL3gG3rxMDDmBu+ehIFCOXwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNbq3gk7 uvnHw0h2AldtQnQVSFi4MB8GA1UdIwQYMBaAFAnpBXdH9jugooGueAE2aM7epAq0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREFGQi9FQzBGNkEzODAz NDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82Q2lnYTU0QVRab3p0NmtD clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nla0ZkMGYyTzZDaWdhNTRBVFpvenQ2a0NyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REFGQi9FQzBGNkEzODAzNDExMUVFQTUyMTUyNDdDNEY5QUUwMi9DZWtGZDBmMk82 Q2lnYTU0QVRab3p0NmtDclEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZaZwZO1nHMVVNZandHohBNzBikOcWIBOfr5zZE6p+zou4395S+fWRZT0W59R Xatpy4k7Le22MC2r5BdrVJH9n1D2sCOFLmx2HCZflzIr7F3WaygAkUJ0r4BNKtiy ZNDS3Dg45v9oS/stZXBrWbwyO1V9UEu2BZrc8z2C5wxGSuTn8YR55UeAgC8oL6JP Pixw3IlKiGZ+7WfcMrsvTwBddBpCP8r8j2MeKP8B5MZW4QvpvhJIauMSSqSRgHbZ qShVOWMys565kvq3M70jruNU55qIis9EQrzzmGFlVBlO799e2TzUCj73sjV7dcNU bIddhpoRMNxz8yxoYeU2GEiScA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:29:29 2026 by rpki-client