$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: bVWijpAz+OzWMsA6pKA7Hm5WNMITmlpadahg1TpkUM8= Subject key identifier: 55:A0:F5:B7:53:F1:A1:EA:67:9D:35:C8:5F:1D:5F:5C:87:14:F0:3F Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 08B9 Signing time: Mon 02 Mar 2026 02:41:40 +0000 Manifest this update: Mon 02 Mar 2026 02:41:38 +0000 Manifest next update: Mon 09 Mar 2026 02:41:38 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: +OGtnRu0J8nkikxEuX2XjyEfovuMPzNR0ucPoYePCj0=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: WjGg/ZejwvG9Siea7F263gfGtLWehGPgmKPNRYmD4sA=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: 2893HNR31GoP/uh0ScggOWfiNSgjFGwQgJxlawN3n4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Mar 2 02:41:38 2026 GMT Not After : Mar 9 02:41:38 2026 GMT Subject: CN=69a4f8e3-85b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:84:99:06:c3:33:a7:35:2c:4e:59:c2:21:72: 26:19:4a:bf:10:07:86:20:fe:b8:0c:d8:11:6d:82: 8b:55:06:a1:74:7a:ca:26:31:4e:ee:4a:b9:f1:62: f3:38:0f:c1:56:5a:87:7b:14:ad:7b:32:e6:6c:5e: 8b:7b:1a:98:fe:f9:61:5a:37:b1:09:20:92:56:c4: 2a:96:22:ef:bb:45:26:6b:db:c2:82:bd:da:b1:26: 6f:f8:c2:12:1b:5f:66:19:25:12:66:eb:5e:81:e1: 08:73:b6:0c:08:02:de:fc:bb:d4:44:83:3a:65:f8: 32:1a:6c:af:28:8a:7a:e0:5e:57:72:fb:6e:9f:82: bf:63:49:5a:7b:e5:35:0d:2f:fd:88:64:8b:92:2d: 19:27:80:1b:12:e9:b2:95:a7:00:86:58:40:e6:25: 94:5d:e9:45:1a:62:83:f6:8f:e0:02:6f:bf:e7:c6: 66:85:81:94:0c:08:45:06:a8:88:b5:1a:54:aa:19: 72:4c:29:0c:9f:54:f5:68:e7:8c:ab:a2:76:14:72: 8e:14:8f:98:c6:87:13:48:70:c5:8d:65:59:52:90: 35:4e:22:6e:9d:3e:69:b3:3d:08:a7:a9:5c:15:89: 10:ae:77:0b:07:8f:0b:b2:9c:1b:9c:ef:b0:de:ce: cc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A0:F5:B7:53:F1:A1:EA:67:9D:35:C8:5F:1D:5F:5C:87:14:F0:3F X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2b:09:a7:54:32:e0:f0:ff:f4:aa:d2:88:61:06:e7:f4:c2: bb:bf:95:95:09:c9:d2:12:4d:55:a3:ed:ba:20:16:42:57:76: 3e:08:d4:8d:9f:cd:ca:7e:7b:f7:c3:ac:5b:62:b6:38:fb:d7: dc:c8:09:87:83:cf:7d:f1:32:d7:b5:c0:8e:4d:bf:e1:c4:56: c5:29:49:bb:b6:d7:89:28:72:8e:d2:be:68:aa:55:4f:9d:78: 89:17:2f:39:03:7e:12:89:d1:1d:ad:54:53:bc:73:50:d9:ad: f2:be:f7:7a:81:e5:63:e9:b9:d9:b8:01:52:1d:3c:11:9a:05: 5d:51:ba:89:e9:d0:15:4f:64:36:b0:7b:19:83:cd:5e:78:1d: 9c:ad:14:9e:a1:e9:35:72:e3:8a:44:07:14:b9:97:e9:23:27: 0f:f2:74:e1:93:4e:df:17:ef:0a:20:78:b6:8d:09:1a:5f:88: 2b:46:f0:96:7e:79:55:d3:25:10:79:ff:d8:3f:e9:65:96:0a: c8:0e:71:3e:80:bf:65:42:71:eb:c7:98:60:28:06:db:51:ed: 72:81:c8:da:3f:84:20:8b:90:4e:bc:46:8a:f3:49:22:3e:7b: 40:99:64:6e:c7:ae:f4:b0:b6:69:be:14:b9:7d:54:7a:a1:af: db:f0:ee:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjYwMzAyMDI0MTM4WhcNMjYwMzA5MDI0MTM4WjAYMRYwFAYD VQQDEw02OWE0ZjhlMy04NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi4SZBsMzpzUsTlnCIXImGUq/EAeGIP64DNgRbYKLVQahdHrKJjFO7kq58WLz OA/BVlqHexStezLmbF6LexqY/vlhWjexCSCSVsQqliLvu0Uma9vCgr3asSZv+MIS G19mGSUSZutegeEIc7YMCALe/LvURIM6ZfgyGmyvKIp64F5Xcvtun4K/Y0lae+U1 DS/9iGSLki0ZJ4AbEumylacAhlhA5iWUXelFGmKD9o/gAm+/58ZmhYGUDAhFBqiI tRpUqhlyTCkMn1T1aOeMq6J2FHKOFI+YxocTSHDFjWVZUpA1TiJunT5psz0Ip6lc FYkQrncLB48LspwbnO+w3s7MmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWg9bdT 8aHqZ501yF8dX1yHFPA/MB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcCsJp1Qy4PD/9KrSiGEG5/TCu7+VlQnJ0hJNVaPtuiAWQld2PgjUjZ/Nyn57 98OsW2K2OPvX3MgJh4PPffEy17XAjk2/4cRWxSlJu7bXiShyjtK+aKpVT514iRcv OQN+EonRHa1UU7xzUNmt8r73eoHlY+m52bgBUh08EZoFXVG6ienQFU9kNrB7GYPN XngdnK0UnqHpNXLjikQHFLmX6SMnD/J04ZNO3xfvCiB4to0JGl+IK0bwln55VdMl EHn/2D/pZZYKyA5xPoC/ZUJx68eYYCgG21HtcoHI2j+EIIuQTrxGivNJIj57QJlk bseu9LC2ab4UuX1UeqGv2/DunQ== -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:23 2026 by rpki-client