$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: +cCE5Vefcf44CMnTZoJLq9GrBDx3PgnDC0a0hftHCPQ= Subject key identifier: 43:4C:8A:3E:DF:3B:2C:02:64:A7:3F:9F:2A:BF:B0:89:5B:79:69:B7 Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03F2 Signing time: Sun 01 Mar 2026 01:19:26 +0000 Manifest this update: Sun 01 Mar 2026 01:19:26 +0000 Manifest next update: Sun 08 Mar 2026 01:19:26 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: tJoKJLXoB1ESRQ0fWPpFxdNlqiiR0iUkWItuWunQ6p4=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Mar 1 01:19:26 2026 GMT Not After : Mar 8 01:19:26 2026 GMT Subject: CN=69a3941e-a71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:1f:82:d0:66:aa:11:76:2f:09:b0:c8:8d: 95:33:44:2f:1e:3d:58:c2:5f:20:f2:8a:5a:bc:19: 4f:4c:de:5d:43:5b:c9:50:a1:cd:4b:9f:e8:d7:d3: 20:b7:4e:05:cf:ff:a3:47:d9:47:e3:fd:fa:0d:3a: 9f:53:ae:82:b9:eb:bf:1b:fe:0f:91:93:83:e5:76: 2b:63:fd:af:ad:ed:ac:48:1e:f8:b5:5d:0b:c2:cd: f0:0e:4b:b3:fc:34:9f:f5:21:7c:89:ef:fd:8e:ec: 38:b7:9a:a3:8d:b7:bc:98:ea:70:0d:69:36:52:31: 27:bc:9b:0c:70:4a:29:06:10:5d:ed:56:06:f3:25: 1e:04:be:e5:78:d2:df:00:62:a3:55:e9:74:8f:d2: 4f:55:1e:88:31:c7:22:5a:c9:b1:4d:87:c7:af:44: 4d:d0:e0:24:49:e2:dd:06:56:d9:71:b1:1f:39:ee: 56:5b:3a:da:90:67:9f:63:85:e2:28:7d:56:a4:ba: 12:6d:98:d9:9c:4f:87:0e:8d:fc:78:bb:03:33:77: 0b:38:3f:cc:a3:3a:a5:e4:e6:a6:25:12:3a:45:a6: b7:56:dd:a2:aa:7a:c0:e8:b5:ac:85:27:4f:7f:ba: e7:8f:8b:ce:64:ef:c5:9b:50:e2:f1:a9:c4:9e:a0: ff:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4C:8A:3E:DF:3B:2C:02:64:A7:3F:9F:2A:BF:B0:89:5B:79:69:B7 X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:f6:8f:4b:90:8c:12:46:6b:0f:16:3b:fe:53:02:ba:08:db: 28:9c:89:a1:11:7e:df:8b:12:49:95:51:f4:d9:a0:b1:39:4c: d6:da:02:9c:99:2e:12:62:4a:d5:13:09:06:2b:0f:8c:70:a7: 7a:b7:0c:1e:b2:4c:6b:f3:73:14:bc:52:e1:cc:23:7f:90:6f: 27:af:f3:ce:07:3c:7d:08:03:0a:0d:f8:27:af:ea:b8:55:ff: ce:98:c7:3c:cb:bc:a9:07:8e:a2:4e:be:5c:c7:fa:21:91:ae: d7:54:b0:9b:fe:b5:75:9c:11:d5:6b:61:ba:b5:05:00:c6:ea: 49:aa:bd:8c:f8:1c:0d:5f:f3:97:45:ae:76:e5:07:ea:2d:db: 22:d8:6b:02:5b:9b:ce:3f:3d:14:f1:11:d8:7f:de:a6:50:6d: 61:2f:30:96:12:8c:99:ab:a5:69:32:82:fa:49:98:f9:fb:88: aa:cd:0e:70:1c:7c:f5:b2:f6:a0:03:64:29:48:51:83:9c:65: 45:75:97:c1:c6:31:e1:f1:b0:65:5f:5e:32:37:f4:c4:fa:e2: 47:c7:ab:f6:90:fa:b8:ca:c4:29:54:c4:c7:a7:38:ef:6d:9e: df:2d:59:ff:4f:8d:a1:6e:22:d7:f3:29:c4:d8:0f:c9:97:4d: 8c:ff:01:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjYwMzAxMDExOTI2WhcNMjYwMzA4MDExOTI2WjAYMRYwFAYD VQQDDA02OWEzOTQxZS1hNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbAfgtBmqhF2LwmwyI2VM0QvHj1Ywl8g8opavBlPTN5dQ1vJUKHNS5/o19Mg t04Fz/+jR9lH4/36DTqfU66Cueu/G/4PkZOD5XYrY/2vre2sSB74tV0Lws3wDkuz /DSf9SF8ie/9juw4t5qjjbe8mOpwDWk2UjEnvJsMcEopBhBd7VYG8yUeBL7leNLf AGKjVel0j9JPVR6IMcciWsmxTYfHr0RN0OAkSeLdBlbZcbEfOe5WWzrakGefY4Xi KH1WpLoSbZjZnE+HDo38eLsDM3cLOD/Mozql5OamJRI6Raa3Vt2iqnrA6LWshSdP f7rnj4vOZO/Fm1Di8anEnqD/kQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFENMij7f OywCZKc/nyq/sIlbeWm3MB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ/aPS5CMEkZrDxY7/lMCugjbKJyJoRF+34sSSZVR9NmgsTlM1toCnJkuEmJK 1RMJBisPjHCnercMHrJMa/NzFLxS4cwjf5BvJ6/zzgc8fQgDCg34J6/quFX/zpjH PMu8qQeOok6+XMf6IZGu11Swm/61dZwR1WthurUFAMbqSaq9jPgcDV/zl0WuduUH 6i3bIthrAlubzj89FPER2H/eplBtYS8wlhKMmaulaTKC+kmY+fuIqs0OcBx89bL2 oANkKUhRg5xlRXWXwcYx4fGwZV9eMjf0xPriR8er9pD6uMrEKVTEx6c4722e3y1Z /0+NoW4i1/MpxNgPyZdNjP8BYw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:27:53 2026 by rpki-client