$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: TSTKNQQnWSFka6nuOuifWOLCmbxk+9wajlCq0XGJgus= Subject key identifier: 16:BD:C8:00:79:9A:8A:A5:6D:2D:BA:13:90:F9:2E:73:A4:80:84:81 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 011B Signing time: Sun 01 Mar 2026 06:49:37 +0000 Manifest this update: Sun 01 Mar 2026 06:49:36 +0000 Manifest next update: Sun 08 Mar 2026 06:49:36 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: lfzVEnPkCzXmJWDTMSZ5SG4nsM08jG4E0gVTTL/r7AE=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Mar 1 06:49:36 2026 GMT Not After : Mar 8 06:49:36 2026 GMT Subject: CN=69a3e181-88bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:14:ef:0e:14:8a:d1:9b:b9:9c:2d:10:a2:97: 74:a0:09:11:ce:1b:4c:07:27:96:12:14:e3:aa:b1: da:07:f6:b2:f8:d3:dd:41:ee:26:b2:d0:29:f3:2e: 27:a0:b7:52:36:21:a9:16:05:58:4b:f1:97:65:9b: b2:94:82:97:83:88:f0:6f:73:e2:37:8a:e7:f4:1f: 6c:2a:5d:57:cf:bd:1b:eb:30:e9:20:ee:17:b2:6e: 59:57:e5:0f:ab:a4:4c:2e:45:37:9c:fd:e1:88:64: ea:27:67:87:c0:dd:83:ce:ce:b7:d1:0b:c0:f7:44: 39:c3:6f:99:d7:20:8e:da:61:5c:0d:aa:65:4f:7c: ae:ad:71:62:1f:14:ff:2e:69:66:b0:b2:71:03:5d: b6:a6:98:d2:83:49:5a:40:f0:c4:c2:36:ba:67:ed: 34:27:d5:fa:2c:42:fd:f0:53:68:5e:ca:a2:af:5e: bf:36:d1:e0:b3:52:cf:b9:da:2b:ad:48:a9:64:93: 6f:01:45:c8:f8:45:15:ca:9b:e2:1d:fd:82:9e:9e: 55:a3:74:46:7a:a1:23:41:39:38:1f:da:2d:04:bd: 87:42:2e:32:f5:2a:6a:3e:76:1e:d1:0b:2b:cc:cc: 5c:a5:02:45:14:83:e5:d5:97:2c:96:b7:9e:43:44: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:BD:C8:00:79:9A:8A:A5:6D:2D:BA:13:90:F9:2E:73:A4:80:84:81 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:00:dc:f4:c8:ac:c6:49:ad:3d:b8:d0:4d:45:57:31:66:59: 1a:b3:90:90:5a:c2:44:51:76:28:15:a2:7e:02:0f:97:9b:2d: c0:ec:eb:17:98:39:43:78:59:15:83:83:e3:b2:fb:a5:7e:e6: 0f:7d:ae:44:57:eb:1d:f1:c9:8b:ba:eb:bf:5d:d0:53:f3:ab: f4:40:55:c3:b6:77:01:e5:58:51:c1:8f:75:6e:3b:d6:05:d0: 34:5c:6a:6c:54:1b:57:35:f8:3c:55:61:4c:81:fe:43:46:55: 7e:5c:93:99:bc:f3:50:d7:35:74:3a:a6:79:6c:a8:fa:6e:e4: 6b:10:8e:44:03:9f:78:07:e6:bf:25:a6:ca:28:5f:dc:f2:31: d9:44:21:aa:cd:30:ef:83:e6:90:01:e0:aa:33:54:ad:2a:5d: c1:a9:4e:ed:b5:31:cb:9e:69:58:85:59:da:a4:89:49:bd:25: cb:73:35:3d:df:15:7c:0b:e0:db:ff:f4:f9:d8:16:8c:7e:2f: 4a:1b:3f:81:9b:55:c3:33:9c:70:80:0e:0c:d6:db:cb:2a:3c: b7:fe:84:91:49:08:e4:e2:af:83:fd:07:cc:19:a1:82:37:53: 45:ab:9d:f6:71:64:57:db:fe:90:3c:73:0a:15:45:c1:1c:1f: f6:a6:75:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjYwMzAxMDY0OTM2WhcNMjYwMzA4MDY0OTM2WjAYMRYwFAYD VQQDEw02OWEzZTE4MS04OGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBTvDhSK0Zu5nC0Qopd0oAkRzhtMByeWEhTjqrHaB/ay+NPdQe4mstAp8y4n oLdSNiGpFgVYS/GXZZuylIKXg4jwb3PiN4rn9B9sKl1Xz70b6zDpIO4Xsm5ZV+UP q6RMLkU3nP3hiGTqJ2eHwN2Dzs630QvA90Q5w2+Z1yCO2mFcDaplT3yurXFiHxT/ LmlmsLJxA122ppjSg0laQPDEwja6Z+00J9X6LEL98FNoXsqir16/NtHgs1LPudor rUipZJNvAUXI+EUVypviHf2Cnp5Vo3RGeqEjQTk4H9otBL2HQi4y9SpqPnYe0Qsr zMxcpQJFFIPl1ZcslreeQ0R1gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBa9yAB5 moqlbS26E5D5LnOkgISBMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHgDc9MisxkmtPbjQTUVXMWZZGrOQkFrCRFF2KBWifgIPl5stwOzrF5g5Q3hZ FYOD47L7pX7mD32uRFfrHfHJi7rrv13QU/Or9EBVw7Z3AeVYUcGPdW471gXQNFxq bFQbVzX4PFVhTIH+Q0ZVflyTmbzzUNc1dDqmeWyo+m7kaxCORAOfeAfmvyWmyihf 3PIx2UQhqs0w74PmkAHgqjNUrSpdwalO7bUxy55pWIVZ2qSJSb0ly3M1Pd8VfAvg 2//0+dgWjH4vShs/gZtVwzOccIAODNbbyyo8t/6EkUkI5OKvg/0HzBmhgjdTRaud 9nFkV9v+kDxzChVFwRwf9qZ1mA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:58:41 2026 by rpki-client