$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: NnKYe5gschcAuYOp34A8aDraX16e69ExEMa31napMsk= Subject key identifier: 4C:3A:03:4D:C5:87:29:37:E5:C5:D9:B8:07:E7:25:51:C6:FF:87:C4 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: 014D Signing time: Sun 01 Mar 2026 06:10:47 +0000 Manifest this update: Sun 01 Mar 2026 06:10:46 +0000 Manifest next update: Sun 08 Mar 2026 06:10:46 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: 1wx6qdh0h4KxjIcyj4lCtiKe5jGKUOtDLyoRDHLEZcU=) 2: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: c1LdcyfxBkh65MfHEWuLe4Y+neliIailfDFE8qX4bKs=) 3: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: 7t/pdYKTKmwUGR/lE+qnEM4TrcYeXROZCsv49aYTSqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Mar 1 06:10:46 2026 GMT Not After : Mar 8 06:10:46 2026 GMT Subject: CN=69a3d867-9466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:86:3d:76:e9:15:15:85:30:85:ff:ea:4b:a8: 3d:12:a0:85:10:5e:4d:06:00:09:3c:71:89:71:c3: 39:e7:b3:8e:58:59:06:bf:13:7c:e8:68:36:b8:ed: 27:03:b0:1a:64:38:00:a6:18:9a:86:cc:4e:af:1d: b2:6e:97:df:90:d4:c9:b5:53:50:65:21:62:d9:ce: 26:e7:29:5d:d5:d6:7c:dc:40:f8:78:c2:9f:55:08: d6:65:d8:f7:a8:db:7d:b4:d8:ee:2b:ce:49:44:9d: 93:31:76:c7:e6:99:09:77:8d:8b:0f:b5:ac:59:3a: 6f:a9:4f:75:7c:fc:05:d8:e9:a0:d3:b0:56:1c:65: 93:f7:9e:8d:9c:81:e4:31:42:93:07:d0:3b:1e:65: df:6d:ad:14:2b:d2:45:3b:09:66:9a:63:e8:cb:45: fa:f8:f3:15:1e:ce:91:fc:60:e9:7a:e0:8b:d8:2f: 8a:7a:cc:4a:37:58:ca:f9:f9:60:f5:16:67:f5:ae: 0b:40:20:65:3a:62:b9:0c:78:a3:f6:4f:0f:b1:72: 31:04:5e:a1:5a:cc:1d:93:94:ca:a4:ef:5a:8a:d2: 9a:bb:b4:b2:62:d6:2f:f6:9f:af:f5:01:b1:e0:6a: f8:e8:20:c0:6f:e4:ec:c4:61:28:13:ae:ee:8d:70: 70:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3A:03:4D:C5:87:29:37:E5:C5:D9:B8:07:E7:25:51:C6:FF:87:C4 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ea:a6:b7:97:5f:52:de:ad:20:48:07:ef:60:98:00:74:0f: c9:ff:48:b1:d6:e8:f8:2f:81:92:ec:23:3e:81:6f:03:4d:d3: ab:7c:a3:7f:e1:c8:87:1d:7a:48:d3:34:6d:ba:e5:3e:2f:58: 52:e3:3a:9a:a5:0c:b0:ab:0d:c2:9c:27:41:ca:c2:1d:a7:2c: 9e:bf:ae:10:2f:eb:1d:75:ea:b6:a6:b6:22:6b:6d:45:9a:a5: fe:5e:c4:c3:2c:b3:08:b3:c5:31:50:4e:1d:2d:cb:78:8e:7c: 93:27:3d:40:f5:73:42:af:b2:35:e3:52:a2:6b:09:a4:08:86: ac:c1:15:21:90:41:e4:b8:7f:94:1a:ac:23:0a:23:91:fd:c7: 87:78:b8:31:61:cb:27:a0:1d:69:4f:c6:64:09:09:e8:06:d9: 7f:dd:e2:49:e7:a8:14:fd:85:ee:01:cd:08:dc:26:cf:7b:5f: 3f:51:36:99:88:03:a5:8c:3d:7a:33:c6:da:1f:8d:21:6e:34: b7:e3:2e:20:96:9e:ed:d4:af:f2:11:a5:7d:43:cb:49:1f:21: 0a:2f:03:9d:ef:b0:3d:aa:c6:a1:61:d9:26:4b:af:31:c3:ae: c3:bf:56:78:92:51:c3:3d:ff:59:24:d9:59:6b:e0:ec:bd:25: b5:c3:b4:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjYwMzAxMDYxMDQ2WhcNMjYwMzA4MDYxMDQ2WjAYMRYwFAYD VQQDEw02OWEzZDg2Ny05NDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YY9dukVFYUwhf/qS6g9EqCFEF5NBgAJPHGJccM557OOWFkGvxN86Gg2uO0n A7AaZDgAphiahsxOrx2ybpffkNTJtVNQZSFi2c4m5yld1dZ83ED4eMKfVQjWZdj3 qNt9tNjuK85JRJ2TMXbH5pkJd42LD7WsWTpvqU91fPwF2Omg07BWHGWT956NnIHk MUKTB9A7HmXfba0UK9JFOwlmmmPoy0X6+PMVHs6R/GDpeuCL2C+KesxKN1jK+flg 9RZn9a4LQCBlOmK5DHij9k8PsXIxBF6hWswdk5TKpO9aitKau7SyYtYv9p+v9QGx 4Gr46CDAb+TsxGEoE67ujXBw7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEw6A03F hyk35cXZuAfnJVHG/4fEMB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADeqmt5dfUt6tIEgH72CYAHQPyf9Isdbo+C+BkuwjPoFvA03Tq3yjf+HIhx16 SNM0bbrlPi9YUuM6mqUMsKsNwpwnQcrCHacsnr+uEC/rHXXqtqa2ImttRZql/l7E wyyzCLPFMVBOHS3LeI58kyc9QPVzQq+yNeNSomsJpAiGrMEVIZBB5Lh/lBqsIwoj kf3Hh3i4MWHLJ6AdaU/GZAkJ6AbZf93iSeeoFP2F7gHNCNwmz3tfP1E2mYgDpYw9 ejPG2h+NIW40t+MuIJae7dSv8hGlfUPLSR8hCi8Dne+wParGoWHZJkuvMcOuw79W eJJRwz3/WSTZWWvg7L0ltcO0dw== -----END CERTIFICATE-----Generated at Mon Mar 2 17:12:29 2026 by rpki-client