$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: PFqSpVL/vDRW7KZmPNmeqc2M6UYM8/1/in/Z+acCSTg= Subject key identifier: 76:54:A8:0B:09:BD:4C:2B:47:2D:21:D1:4B:35:D0:31:A8:AC:68:34 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0BED Signing time: Sat 28 Feb 2026 19:05:06 +0000 Manifest this update: Sat 28 Feb 2026 19:05:06 +0000 Manifest next update: Sat 07 Mar 2026 19:05:06 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: XimsQJOzQSn/w8UNjGf4s4STwfddVlJRkgXPFtX8bsc=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Feb 28 19:05:06 2026 GMT Not After : Mar 7 19:05:06 2026 GMT Subject: CN=69a33c62-9098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:8d:a3:af:cc:20:d8:b3:ae:e3:08:2a:9b: 04:f5:26:75:d6:70:51:e9:22:84:55:f3:74:a2:af: 50:60:62:c6:d4:56:a4:aa:18:ce:5a:df:72:31:e2: 5f:c3:71:aa:74:0b:c9:de:d8:d3:da:e1:4d:51:8c: 14:ca:0e:61:22:45:1a:66:56:cc:3c:6f:f9:31:40: 1e:c1:7e:8a:21:96:1d:be:76:db:df:71:77:cb:0c: 6a:9c:0f:36:dd:4f:95:3d:69:e0:c6:ba:4e:72:e6: 5d:4a:7d:f1:7b:d8:fb:b2:63:e4:fe:c9:0d:0f:a4: 19:8e:62:27:91:0c:a3:d7:28:e8:ee:8d:1e:13:6f: 7b:22:24:05:28:6e:ec:ce:93:87:2a:6f:9e:63:97: 50:4f:2b:c5:8c:1b:76:1d:19:bb:41:08:3b:2b:0d: 29:aa:66:fd:93:22:75:8e:b8:3b:43:e6:b2:fb:a7: d8:b0:bc:5f:b0:62:18:be:e1:c9:b4:ba:45:5a:1c: ab:09:78:cd:40:22:27:2c:86:bc:ac:4d:62:cc:8a: 95:04:89:2a:34:e3:79:d4:e0:d2:e7:73:9a:1b:87: 5d:08:c2:77:b6:68:ed:de:36:30:97:c8:b6:71:f0: a2:de:a7:c2:d3:a0:6e:c3:0e:68:cf:99:e8:6f:ff: 48:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:54:A8:0B:09:BD:4C:2B:47:2D:21:D1:4B:35:D0:31:A8:AC:68:34 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:65:25:b4:5c:46:ca:c3:c8:be:18:41:3c:41:dc:88:61:00: 57:92:4d:21:58:ac:36:44:08:5b:7d:f9:ab:77:41:7a:c3:8e: 2f:ad:51:bf:d9:9f:59:56:db:af:71:da:e3:44:f7:04:87:06: 40:30:16:9d:7d:1b:46:64:70:25:b5:b4:f2:bb:73:ee:09:d0: cb:54:c7:02:54:fa:de:d6:56:56:86:59:41:0d:c4:4b:8e:9e: fc:f8:06:0f:2a:a3:4c:6f:91:c5:9e:6d:b3:53:4b:39:7a:1d: 60:ed:8c:29:e8:27:88:c6:49:ec:33:ee:5f:61:53:6b:42:2f: 5a:81:91:d5:99:f2:f5:e3:52:9a:ac:96:59:1f:53:8b:9d:2b: 75:52:80:87:25:da:65:15:86:a3:6b:8a:55:19:54:ba:52:fc: 88:c3:ea:9d:df:1c:9d:39:db:c6:fc:36:81:09:d4:55:ca:49: 57:ac:6d:ed:4f:91:9d:2a:1c:7f:5a:68:d2:86:47:01:9d:3d: e1:a3:38:23:86:b3:d3:05:11:cb:93:49:c3:d7:12:58:2b:40: 72:5d:a9:4a:50:f7:d6:cb:e7:70:dc:0c:46:4b:81:fc:bd:22: 43:58:c3:02:ea:7d:b3:3c:98:f3:4f:c4:0e:3e:db:2b:f7:f3: ca:4c:9c:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjYwMjI4MTkwNTA2WhcNMjYwMzA3MTkwNTA2WjAYMRYwFAYD VQQDDA02OWEzM2M2Mi05MDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9ONo6/MINizruMIKpsE9SZ11nBR6SKEVfN0oq9QYGLG1FakqhjOWt9yMeJf w3GqdAvJ3tjT2uFNUYwUyg5hIkUaZlbMPG/5MUAewX6KIZYdvnbb33F3ywxqnA82 3U+VPWngxrpOcuZdSn3xe9j7smPk/skND6QZjmInkQyj1yjo7o0eE297IiQFKG7s zpOHKm+eY5dQTyvFjBt2HRm7QQg7Kw0pqmb9kyJ1jrg7Q+ay+6fYsLxfsGIYvuHJ tLpFWhyrCXjNQCInLIa8rE1izIqVBIkqNON51ODS53OaG4ddCMJ3tmjt3jYwl8i2 cfCi3qfC06Buww5oz5nob/9IkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHZUqAsJ vUwrRy0h0Us10DGorGg0MB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj2UltFxGysPIvhhBPEHciGEAV5JNIVisNkQIW335q3dBesOOL61Rv9mfWVbb r3Ha40T3BIcGQDAWnX0bRmRwJbW08rtz7gnQy1THAlT63tZWVoZZQQ3ES46e/PgG DyqjTG+RxZ5ts1NLOXodYO2MKegniMZJ7DPuX2FTa0IvWoGR1Zny9eNSmqyWWR9T i50rdVKAhyXaZRWGo2uKVRlUulL8iMPqnd8cnTnbxvw2gQnUVcpJV6xt7U+RnSoc f1po0oZHAZ094aM4I4az0wURy5NJw9cSWCtAcl2pSlD31svncNwMRkuB/L0iQ1jD Aup9szyY80/EDj7bK/fzykycsw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:38:49 2026 by rpki-client