$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: sb36L+R+iJ+oTD2MaxFXwLOesj46VnUUbOdz5vdM/so= Subject key identifier: 8F:9C:03:AA:A5:75:06:B9:AB:DD:4D:48:BF:16:CA:4B:38:D8:21:21 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0840 Signing time: Sat 28 Feb 2026 21:11:56 +0000 Manifest this update: Sat 28 Feb 2026 21:11:56 +0000 Manifest next update: Sat 07 Mar 2026 21:11:56 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: D3cvA1KNQhGTKX+TX7HEVRisry2Snt6/FxJJBe79TC8=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Feb 28 21:11:56 2026 GMT Not After : Mar 7 21:11:56 2026 GMT Subject: CN=69a35a1c-dab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:18:22:d5:69:5f:1d:9d:7f:7b:3c:cb:0b:3f: e7:ac:5a:db:f6:55:8e:39:da:ca:1b:d4:8a:b8:86: c7:e9:30:9f:cb:a7:82:30:bb:42:3c:b0:86:1c:63: bc:37:ef:b4:5b:ba:e7:ed:11:98:ff:b6:ea:6b:97: 6c:36:de:b3:93:3c:a0:4f:fc:48:b9:48:95:5a:03: a7:da:fd:6a:3c:18:a1:e1:65:44:db:c6:e4:70:29: d8:8b:1c:f0:4c:b8:14:a6:f6:f7:3c:5c:54:fe:53: 31:a9:9c:f9:ea:36:90:87:1f:31:ae:9e:83:1c:e5: cd:44:bb:a0:31:a3:7f:b7:68:4a:24:01:f9:aa:88: 20:e5:22:62:6a:7b:fd:d6:42:f2:ff:5c:c0:e8:d7: 54:03:39:40:12:ce:e3:7d:24:d3:ee:c2:41:f6:0a: 58:cc:93:62:aa:15:30:8e:48:e1:dc:43:e2:07:e7: 5e:5f:75:ac:df:34:f8:7b:3d:48:8b:02:7e:6e:23: 72:16:3e:99:3f:4a:fc:73:db:23:55:e8:80:28:e7: 12:ef:23:52:8f:3c:02:88:27:2e:f5:83:f0:ea:c1: 4e:e0:2f:80:28:2f:5a:e4:b9:dc:24:1c:2a:5e:2d: 39:40:fc:ed:f7:8f:75:b7:6e:dd:b8:59:2e:b7:52: 3d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:9C:03:AA:A5:75:06:B9:AB:DD:4D:48:BF:16:CA:4B:38:D8:21:21 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:64:9a:66:1d:24:04:5f:6d:f4:07:ca:5d:e2:7b:75:78:f5: 46:1a:bc:64:a7:4b:fd:d4:21:11:a8:f4:f1:2b:a1:72:32:5d: 04:3d:af:14:5b:db:5c:41:3b:fa:d1:ef:4d:c7:20:04:66:d6: 3c:00:8a:a6:99:67:ca:a7:bb:c4:a1:df:cb:5d:65:2f:8f:fa: ef:59:02:6d:14:9b:28:db:b2:54:2f:36:6c:6a:dd:03:45:80: 30:fb:cf:35:26:98:f8:4e:46:10:02:0c:9d:35:84:f1:2f:f0: 91:30:a9:06:96:65:7d:e9:b6:43:86:a7:97:84:64:b8:76:7b: b5:0d:a6:a9:4e:55:04:4a:b4:88:6e:9e:42:6e:7e:e4:47:7e: af:8e:78:24:3a:b0:e9:c7:2d:c5:1e:81:88:d1:f0:eb:7f:8c: 9d:99:f3:72:0c:94:cc:12:e7:d8:3c:14:36:b8:6c:e9:64:44: f2:7f:3b:86:ff:b5:ff:c2:6f:8c:e7:c3:47:46:74:98:a0:ef: bf:c9:67:38:ea:8e:63:c9:0a:47:0e:28:fa:84:22:cc:70:74: 24:2f:c6:5e:0b:24:1d:80:d6:b3:81:b8:e6:94:2b:b5:67:39: 7f:e7:c0:b5:88:f1:3a:d0:db:75:49:4f:01:ff:51:10:87:bd: cc:63:30:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjYwMjI4MjExMTU2WhcNMjYwMzA3MjExMTU2WjAYMRYwFAYD VQQDDA02OWEzNWExYy1kYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxgi1WlfHZ1/ezzLCz/nrFrb9lWOOdrKG9SKuIbH6TCfy6eCMLtCPLCGHGO8 N++0W7rn7RGY/7bqa5dsNt6zkzygT/xIuUiVWgOn2v1qPBih4WVE28bkcCnYixzw TLgUpvb3PFxU/lMxqZz56jaQhx8xrp6DHOXNRLugMaN/t2hKJAH5qogg5SJianv9 1kLy/1zA6NdUAzlAEs7jfSTT7sJB9gpYzJNiqhUwjkjh3EPiB+deX3Ws3zT4ez1I iwJ+biNyFj6ZP0r8c9sjVeiAKOcS7yNSjzwCiCcu9YPw6sFO4C+AKC9a5LncJBwq Xi05QPzt9491t27duFkut1I95wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI+cA6ql dQa5q91NSL8Wyks42CEhMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEWSaZh0kBF9t9AfKXeJ7dXj1Rhq8ZKdL/dQhEaj08SuhcjJdBD2vFFvbXEE7 +tHvTccgBGbWPACKpplnyqe7xKHfy11lL4/671kCbRSbKNuyVC82bGrdA0WAMPvP NSaY+E5GEAIMnTWE8S/wkTCpBpZlfem2Q4anl4RkuHZ7tQ2mqU5VBEq0iG6eQm5+ 5Ed+r454JDqw6cctxR6BiNHw63+MnZnzcgyUzBLn2DwUNrhs6WRE8n87hv+1/8Jv jOfDR0Z0mKDvv8lnOOqOY8kKRw4o+oQizHB0JC/GXgskHYDWs4G45pQrtWc5f+fA tYjxOtDbdUlPAf9REIe9zGMwAQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:11 2026 by rpki-client