$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft File: esDADw_KR57kZeT39UXoyUmT1hw.mft (raw, json) Hash identifier: /2ZC4ohUi0h6Y1FVvOS49i9c6v7b1je/ogLVk8z69EQ= Subject key identifier: 9F:52:58:83:BC:7C:F1:6B:05:C9:5C:B1:C4:26:D9:E2:E7:23:E3:98 Authority key identifier: 7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C Certificate issuer: /CN=A91D1691/serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Certificate serial: 24E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft Manifest number: 24B5 Signing time: Mon 02 Mar 2026 00:57:58 +0000 Manifest this update: Mon 02 Mar 2026 00:57:56 +0000 Manifest next update: Mon 09 Mar 2026 00:57:56 +0000 Files and hashes: 1: esDADw_KR57kZeT39UXoyUmT1hw.crl (hash: E90Ha3Eo1NbQgVMye+EpboyTXuBFJspEgVhj8iAw2eQ=) 2: D2AD822AF2A711F0B86D5E54726F56BC.roa (hash: M07o/4Se0WQ0x98V4EyKF0kElpzcSvmr2bEcsLBgAM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9449 (0x24e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=7AC0C00F0FCA479EE465E4F7F545E8C94993D61C Validity Not Before: Mar 2 00:57:56 2026 GMT Not After : Mar 9 00:57:56 2026 GMT Subject: CN=69a4e096-5372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:39:5f:bc:ae:dd:d0:98:d2:76:a3:d2:79:f3: 93:ab:96:33:e0:d9:bd:51:b9:be:5d:84:5f:4e:ea: bc:d4:c7:aa:8e:0f:89:f1:dc:09:28:69:25:f5:e6: 2d:a7:c9:02:2e:3b:22:00:6c:5f:9b:fb:22:dc:8f: ca:95:a2:57:8f:0f:61:d5:f3:5d:cf:a3:53:26:d5: 76:93:4a:e9:be:ba:28:d7:e3:66:dc:cd:2e:6a:f3: a1:81:79:59:fd:0a:43:ba:dd:9a:7b:06:02:37:02: b2:d6:69:e2:e6:52:f0:bd:ae:ce:b5:7c:55:9a:92: 79:c7:5f:a2:1d:67:d8:ac:98:fa:42:9f:03:d0:d0: 33:cc:22:ff:4f:e4:77:a8:bc:05:a8:ff:63:14:d8: af:ab:3a:01:52:1c:31:3d:8d:90:d1:b8:8d:f8:66: d0:60:a7:90:a3:36:d6:51:37:ee:19:c7:3d:9d:f1: 24:93:d5:82:ab:cf:ea:1f:9d:dd:4e:07:e0:8b:a0: 3e:1b:02:fb:0a:3f:9a:de:05:cd:87:07:67:fb:a6: a7:11:3a:8b:4e:57:0c:c8:af:e3:e0:6c:91:33:dd: 81:38:3d:c7:a3:53:c6:a9:6c:2f:3d:69:53:33:1c: ab:9d:d0:01:53:f6:fc:af:cd:56:70:49:c1:84:e2: 77:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:52:58:83:BC:7C:F1:6B:05:C9:5C:B1:C4:26:D9:E2:E7:23:E3:98 X509v3 Authority Key Identifier: keyid:7A:C0:C0:0F:0F:CA:47:9E:E4:65:E4:F7:F5:45:E8:C9:49:93:D6:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/esDADw_KR57kZeT39UXoyUmT1hw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/5AFC2692652B11E597A86881C4F9AE02/esDADw_KR57kZeT39UXoyUmT1hw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:86:b3:1b:5d:f4:d8:04:87:2c:1d:9b:8b:0b:a0:84:6d:32: c7:31:50:ac:b4:44:92:5c:5d:d7:08:f2:c2:1f:74:a7:bd:c6: 90:f0:ee:1b:84:3f:46:e5:ac:30:5e:d1:ee:e3:78:d7:85:72: 4b:00:93:99:1a:5f:3f:00:5e:11:03:89:e7:9c:c9:23:17:ca: 21:de:b2:75:c7:65:82:62:1c:c7:f6:9a:9b:91:90:3e:a9:b3: 6b:4d:36:52:7b:13:6d:33:b9:8e:4c:72:63:f8:6f:fd:47:8e: c2:73:5d:d9:09:93:49:12:32:5c:d9:f9:81:d8:04:a6:57:ec: de:1d:77:6a:e8:63:30:9e:65:f8:ba:ae:1d:f7:59:56:af:c6: 72:fe:41:c2:a7:36:77:85:b2:80:bb:5a:d3:80:57:ec:49:92: 85:e8:a1:16:5b:45:6d:7e:e9:d2:3e:68:37:70:0b:a3:29:2d: 53:94:f1:60:a2:90:2c:0c:89:03:47:8e:5a:3c:87:f2:54:08: f7:1c:7e:7d:c6:1c:fd:c0:af:84:15:30:ad:f3:78:0f:89:dc: f1:cc:35:ea:cc:7a:5e:fd:f1:c6:b6:a5:87:b9:3a:81:58:59: a6:25:db:41:9e:ea:05:4f:3a:63:b6:aa:f6:7c:f1:ce:32:0d: 02:2a:88:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKDdBQzBDMDBGMEZDQTQ3OUVFNDY1RTRGN0Y1NDVFOEM5 NDk5M0Q2MUMwHhcNMjYwMzAyMDA1NzU2WhcNMjYwMzA5MDA1NzU2WjAYMRYwFAYD VQQDEw02OWE0ZTA5Ni01MzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjlfvK7d0JjSdqPSefOTq5Yz4Nm9Ubm+XYRfTuq81Meqjg+J8dwJKGkl9eYt p8kCLjsiAGxfm/si3I/KlaJXjw9h1fNdz6NTJtV2k0rpvroo1+Nm3M0uavOhgXlZ /QpDut2aewYCNwKy1mni5lLwva7OtXxVmpJ5x1+iHWfYrJj6Qp8D0NAzzCL/T+R3 qLwFqP9jFNivqzoBUhwxPY2Q0biN+GbQYKeQozbWUTfuGcc9nfEkk9WCq8/qH53d Tgfgi6A+GwL7Cj+a3gXNhwdn+6anETqLTlcMyK/j4GyRM92BOD3Ho1PGqWwvPWlT MxyrndABU/b8r81WcEnBhOJ3gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ9SWIO8 fPFrBclcscQm2eLnI+OYMB8GA1UdIwQYMBaAFHrAwA8Pykee5GXk9/VF6MlJk9Yc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81QUZDMjY5MjY1 MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1N2taZVQzOVVYb3lVbVQx aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzREFEd19LUjU3a1plVDM5VVhveVVtVDFody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81QUZDMjY5MjY1MkIxMUU1OTdBODY4ODFDNEY5QUUwMi9lc0RBRHdfS1I1 N2taZVQzOVVYb3lVbVQxaHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjYazG1302ASHLB2biwughG0yxzFQrLREklxd1wjywh90p73GkPDuG4Q/RuWs MF7R7uN414VySwCTmRpfPwBeEQOJ55zJIxfKId6ydcdlgmIcx/aam5GQPqmza002 UnsTbTO5jkxyY/hv/UeOwnNd2QmTSRIyXNn5gdgEplfs3h13auhjMJ5l+LquHfdZ Vq/Gcv5Bwqc2d4WygLta04BX7EmSheihFltFbX7p0j5oN3ALoyktU5TxYKKQLAyJ A0eOWjyH8lQI9xx+fcYc/cCvhBUwrfN4D4nc8cw16sx6Xv3xxralh7k6gVhZpiXb QZ7qBU86Y7aq9nzxzjINAiqIFw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:32:53 2026 by rpki-client