$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: oXZQ+eBzC46GzDyz5SZOGaJ+J7x9MjbwSSm/Pz6f64c= Subject key identifier: 4D:26:48:DA:EE:23:3D:2E:D1:CA:55:CE:2B:4E:52:EC:2C:C1:FD:56 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 24EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 24B6 Signing time: Mon 02 Mar 2026 15:51:48 +0000 Manifest this update: Mon 02 Mar 2026 15:51:47 +0000 Manifest next update: Mon 09 Mar 2026 15:51:47 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: sqVP6TF7yn7dMy44nXR8q6wXIXn6y/pACFu9qBlhbmg=) 2: D2AD822AF2A711F0B86D5E54726F56BC.roa (hash: M07o/4Se0WQ0x98V4EyKF0kElpzcSvmr2bEcsLBgAM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9450 (0x24ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Mar 2 15:51:47 2026 GMT Not After : Mar 9 15:51:47 2026 GMT Subject: CN=69a5b214-0215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:5d:16:19:d4:99:27:ae:96:66:6f:1c:fb:5f: 5d:09:e8:d8:4c:ec:ac:29:90:82:4c:3c:e7:51:44: 80:57:3f:64:3a:8d:8a:d7:dc:a5:02:c0:de:b0:af: 00:ab:e9:a5:a2:2c:65:68:0e:e5:3f:99:29:d2:a8: d8:0b:34:84:8a:83:fc:76:16:db:a9:16:0c:80:23: 5c:c1:39:e1:92:fd:ed:58:a5:bb:d8:32:9e:19:6f: b7:35:cf:28:ca:20:43:c4:2a:00:5a:9f:43:b9:61: 44:c3:d6:5b:58:94:a1:d9:9f:8c:46:28:b4:e6:ca: 63:2b:e5:50:14:9c:33:7c:91:7d:e6:f3:b4:9e:e5: ff:02:ba:57:57:b7:c0:b8:10:92:1f:d5:7b:c5:92: fc:74:a7:10:fe:fd:94:f5:c7:bb:d8:d4:3f:33:be: be:4e:2e:61:94:db:8d:b8:12:03:54:e3:4e:df:b2: ca:8d:eb:69:a3:ef:29:08:9b:3c:a9:76:51:62:b5: 2d:1d:7c:5f:5f:7e:cb:ef:0c:4e:b1:9a:7d:4f:f5: 52:1f:33:5b:78:76:74:39:5f:f2:ed:15:d1:ab:ac: 47:ae:11:7d:09:a3:48:34:75:07:2d:1a:70:1f:44: 76:3f:cf:86:68:16:e4:97:d1:59:a1:ff:44:0c:9c: e3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:26:48:DA:EE:23:3D:2E:D1:CA:55:CE:2B:4E:52:EC:2C:C1:FD:56 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:80:85:89:8f:37:71:d6:50:18:cf:5d:11:93:c0:20:37:e7: 9e:d9:44:38:93:fa:a0:b2:50:af:9d:c7:f3:22:25:9b:1a:5e: 9d:76:7f:2d:df:07:b4:82:15:2e:5d:5c:70:02:ff:df:0f:85: 31:34:c8:7b:87:22:40:86:a9:1f:f3:df:21:22:ef:1b:f8:6f: 3c:fa:49:6f:c0:0f:06:8c:c3:76:1c:ac:93:9d:bf:4e:4b:87: 1e:ae:20:b9:ae:ab:69:54:bf:c0:4c:a6:f2:11:71:9e:0c:33: 84:cb:ba:f9:c8:d2:fb:2d:7b:af:d8:bd:59:6f:14:db:ac:87: 26:01:8e:ac:67:10:f3:a6:80:71:bb:de:cf:80:76:93:74:92: 84:58:97:17:c9:e6:99:aa:ef:df:fb:48:d8:cf:f8:e0:ef:dc: 67:fc:98:0b:03:10:a8:a9:18:7e:5f:ed:7d:0d:27:2b:16:2a: 3f:db:f7:38:cb:45:21:57:98:44:9f:39:95:56:83:0e:26:dd: 19:95:a6:95:98:90:35:3c:37:44:bd:2c:e4:8f:ca:16:70:a3: d3:ef:ba:af:36:02:45:a3:78:b2:f7:78:a5:9b:47:0e:36:91: c6:b5:5a:6d:e2:12:f3:80:73:d6:2f:f8:ef:ec:f4:e2:92:a9: 5f:9f:46:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjYwMzAyMTU1MTQ3WhcNMjYwMzA5MTU1MTQ3WjAYMRYwFAYD VQQDEw02OWE1YjIxNC0wMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiF0WGdSZJ66WZm8c+19dCejYTOysKZCCTDznUUSAVz9kOo2K19ylAsDesK8A q+mloixlaA7lP5kp0qjYCzSEioP8dhbbqRYMgCNcwTnhkv3tWKW72DKeGW+3Nc8o yiBDxCoAWp9DuWFEw9ZbWJSh2Z+MRii05spjK+VQFJwzfJF95vO0nuX/ArpXV7fA uBCSH9V7xZL8dKcQ/v2U9ce72NQ/M76+Ti5hlNuNuBIDVONO37LKjetpo+8pCJs8 qXZRYrUtHXxfX37L7wxOsZp9T/VSHzNbeHZ0OV/y7RXRq6xHrhF9CaNINHUHLRpw H0R2P8+GaBbkl9FZof9EDJzjuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE0mSNru Iz0u0cpVzitOUuwswf1WMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtICFiY83cdZQGM9dEZPAIDfnntlEOJP6oLJQr53H8yIlmxpenXZ/Ld8HtIIV Ll1ccAL/3w+FMTTIe4ciQIapH/PfISLvG/hvPPpJb8APBozDdhysk52/TkuHHq4g ua6raVS/wEym8hFxngwzhMu6+cjS+y17r9i9WW8U26yHJgGOrGcQ86aAcbvez4B2 k3SShFiXF8nmmarv3/tI2M/44O/cZ/yYCwMQqKkYfl/tfQ0nKxYqP9v3OMtFIVeY RJ85lVaDDibdGZWmlZiQNTw3RL0s5I/KFnCj0++6rzYCRaN4svd4pZtHDjaRxrVa beIS84Bz1i/47+z04pKpX59GDQ== -----END CERTIFICATE-----Generated at Mon Mar 2 21:57:18 2026 by rpki-client