$ rpki-client -vvf rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft File: 8Esk0kgu8B-It9DWKlOSJzm3iA0.mft (raw, json) Hash identifier: xuPhG7I+cDaiIEc83YUr0ahFe8E1WfU2qeVhvS7SUA8= Subject key identifier: 3D:A1:F5:4C:79:8F:49:27:5F:BE:1A:CF:A3:61:F6:9E:CB:08:1F:B0 Authority key identifier: F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D Certificate issuer: /CN=A91D112B/serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft Manifest number: 07C8 Signing time: Sat 28 Feb 2026 21:47:48 +0000 Manifest this update: Sat 28 Feb 2026 21:47:48 +0000 Manifest next update: Sat 07 Mar 2026 21:47:48 +0000 Files and hashes: 1: 8Esk0kgu8B-It9DWKlOSJzm3iA0.crl (hash: uxW7Mhii1O/H5bsGS9VDumIH/KHv8TQSlgzP1Lt3s7w=) 2: D00FC228F46111ECA631AC55C4F9AE02.roa (hash: LAD7dRCik0KzxFNr8quzKbBZIsig686rpItw8aFMMeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D112B, serialNumber=F04B24D2482EF01F88B7D0D62A53922739B7880D Validity Not Before: Feb 28 21:47:48 2026 GMT Not After : Mar 7 21:47:48 2026 GMT Subject: CN=69a36284-55ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e0:9e:76:7f:47:9c:23:31:79:b3:37:c9:1b: 3b:82:73:24:3d:bb:9b:32:7b:7c:aa:00:dc:b3:03: 7c:e5:fe:f9:4e:34:29:51:60:87:ab:ff:e7:25:47: 28:c1:da:d3:29:7d:4c:5d:4b:33:11:fb:43:cf:90: 39:41:76:5b:39:94:2c:94:bc:6e:4b:15:15:d6:e5: ea:ac:0c:81:06:cb:a1:8e:4e:2d:59:06:58:5a:ec: 6e:f2:2c:f4:8e:a0:9f:b6:57:bf:bf:fd:90:60:a6: 7c:6b:7f:21:c5:59:a3:1f:0c:bc:7f:7f:78:05:dc: be:3e:70:0a:78:eb:08:d3:7f:6d:69:ef:6a:8b:17: 1c:8b:0a:b8:b3:8f:b7:0f:06:4d:9a:e2:46:c9:2c: 48:cd:10:99:f3:18:6d:a4:e9:4d:36:94:67:ed:e0: 49:73:6c:ac:e8:74:ba:6c:1d:54:9c:aa:e2:f7:3a: 37:e3:1f:55:1b:0f:8b:2b:6d:0e:ab:27:60:f0:f3: ad:01:a2:35:6c:36:aa:9a:04:44:ff:bf:e1:b9:98: b3:81:8a:66:05:65:98:3a:a9:21:ce:db:8d:4d:52: f2:7c:e1:d3:9e:f7:94:a3:66:85:6a:95:e8:bc:4d: 80:f9:65:96:84:1e:9a:a9:19:2d:c0:f6:24:2d:db: 3a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A1:F5:4C:79:8F:49:27:5F:BE:1A:CF:A3:61:F6:9E:CB:08:1F:B0 X509v3 Authority Key Identifier: keyid:F0:4B:24:D2:48:2E:F0:1F:88:B7:D0:D6:2A:53:92:27:39:B7:88:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Esk0kgu8B-It9DWKlOSJzm3iA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D112B/1CD0E0502F3411EB97FE1786C4F9AE02/8Esk0kgu8B-It9DWKlOSJzm3iA0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:96:34:65:68:ea:bf:78:59:a6:26:49:cc:87:16:68:08:22: fe:d7:d6:5a:bb:53:7b:61:8e:04:5d:25:a9:85:35:1e:28:89: 16:1c:82:06:3b:63:86:b9:a4:f3:bb:d5:cd:b3:b4:18:73:cd: 63:4d:57:a8:df:e4:24:67:0e:4c:b1:cb:91:fc:32:5d:48:52: f9:0c:1b:0e:0f:ab:14:e2:69:56:3b:ce:fc:e4:d2:cd:40:1b: 6b:ba:fb:80:57:bc:a5:cb:fa:8b:17:f7:c2:93:9c:dc:a4:58: 0b:09:17:bc:4e:ad:11:2e:42:e6:07:f3:91:a4:46:da:3d:0c: 62:28:73:5d:9f:47:44:86:21:84:24:2e:15:59:97:c1:77:b5: 5a:22:bb:63:49:66:fc:4b:e1:0f:85:d3:23:0f:f4:54:dc:04: 73:77:f5:7a:63:be:69:cd:9c:a4:63:be:c3:f1:b3:b7:b1:d1: 14:de:1c:68:c3:43:0e:34:26:d1:9c:03:93:fa:98:b4:38:29: 39:4e:26:2c:a1:f1:9c:25:a0:4f:5d:b8:bc:eb:96:87:83:f0: 70:71:5f:b2:95:1d:91:3d:9c:df:c8:17:08:b1:d3:0d:da:de: 32:63:8e:80:39:f1:1c:3e:4f:a4:89:75:de:d0:ed:95:cb:d4: de:63:2f:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMkIxMTAvBgNVBAUTKEYwNEIyNEQyNDgyRUYwMUY4OEI3RDBENjJBNTM5MjI3 MzlCNzg4MEQwHhcNMjYwMjI4MjE0NzQ4WhcNMjYwMzA3MjE0NzQ4WjAYMRYwFAYD VQQDDA02OWEzNjI4NC01NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOCedn9HnCMxebM3yRs7gnMkPbubMnt8qgDcswN85f75TjQpUWCHq//nJUco wdrTKX1MXUszEftDz5A5QXZbOZQslLxuSxUV1uXqrAyBBsuhjk4tWQZYWuxu8iz0 jqCftle/v/2QYKZ8a38hxVmjHwy8f394Bdy+PnAKeOsI039tae9qixcciwq4s4+3 DwZNmuJGySxIzRCZ8xhtpOlNNpRn7eBJc2ys6HS6bB1UnKri9zo34x9VGw+LK20O qydg8POtAaI1bDaqmgRE/7/huZizgYpmBWWYOqkhztuNTVLyfOHTnveUo2aFapXo vE2A+WWWhB6aqRktwPYkLds6fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD2h9Ux5 j0knX74az6Nh9p7LCB+wMB8GA1UdIwQYMBaAFPBLJNJILvAfiLfQ1ipTkic5t4gN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEyQi8xQ0QwRTA1MDJG MzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThCLUl0OURXS2xPU0p6bTNp QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFc2swa2d1OEItSXQ5RFdLbE9TSnptM2lBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTEyQi8xQ0QwRTA1MDJGMzQxMUVCOTdGRTE3ODZDNEY5QUUwMi84RXNrMGtndThC LUl0OURXS2xPU0p6bTNpQTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR5Y0ZWjqv3hZpiZJzIcWaAgi/tfWWrtTe2GOBF0lqYU1HiiJFhyCBjtjhrmk 87vVzbO0GHPNY01XqN/kJGcOTLHLkfwyXUhS+QwbDg+rFOJpVjvO/OTSzUAba7r7 gFe8pcv6ixf3wpOc3KRYCwkXvE6tES5C5gfzkaRG2j0MYihzXZ9HRIYhhCQuFVmX wXe1WiK7Y0lm/EvhD4XTIw/0VNwEc3f1emO+ac2cpGO+w/Gzt7HRFN4caMNDDjQm 0ZwDk/qYtDgpOU4mLKHxnCWgT124vOuWh4PwcHFfspUdkT2c38gXCLHTDdreMmOO gDnxHD5PpIl13tDtlcvU3mMvpQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:22:54 2026 by rpki-client