$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: cmE94Pv381HPMr0aYmQxwxBEd66W1PUhDINJxalh9Ao= Subject key identifier: 72:7E:85:AC:6A:DC:16:F5:27:98:9A:FF:25:5B:09:13:1A:E0:17:2D Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E52 Signing time: Mon 02 Mar 2026 15:34:46 +0000 Manifest this update: Mon 02 Mar 2026 15:34:45 +0000 Manifest next update: Mon 09 Mar 2026 15:34:45 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: n4nkIJJJLgiqxRoAoCiIdcEaquHsSHTSlWr9pFXCXCI=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: 6f1TkFWNlMl/F/acGbghOLoUP+OqCJaMnvA5r+odhLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11889 (0x2e71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Mar 2 15:34:45 2026 GMT Not After : Mar 9 15:34:45 2026 GMT Subject: CN=69a5ae16-aace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e4:b0:a8:00:8e:90:c3:03:54:db:83:55:30: 23:8c:52:9d:8f:8b:74:e0:33:36:97:6d:f7:6e:26: c4:c4:ba:de:f2:5f:6b:8f:b0:e5:42:42:5d:14:0d: 35:50:2a:86:5c:a6:01:fb:fc:2a:8d:e8:4d:21:5a: f5:20:22:20:f4:df:b1:ec:57:ad:75:60:a1:87:0f: fb:01:07:44:5b:c3:f3:fc:11:35:8a:f8:be:f5:3a: 09:86:bd:fe:7e:c0:a2:a4:2e:bf:6f:a9:a9:1c:5c: 60:69:89:9c:9e:9c:4d:14:db:56:b9:59:78:9a:95: 0a:f1:53:1b:e7:04:bb:8c:02:23:08:b6:ea:9d:ca: b0:97:5c:22:94:32:55:cb:71:09:95:a8:45:3e:7a: 04:5c:8e:b7:74:ba:16:b8:ca:04:5e:f1:02:f8:d8: b3:de:b5:2b:d8:89:f9:ca:c6:0a:2b:30:5f:4a:46: c9:25:cb:4f:36:21:e5:88:81:cb:a0:c3:b3:e1:c2: 0f:fb:59:84:7f:7e:b4:6f:4d:8a:83:df:ff:84:44: c9:d9:75:ba:11:5c:4b:ff:61:1d:92:38:83:a6:5e: 8d:44:f7:fa:de:84:ea:d3:21:58:9b:71:b3:84:9b: 92:4f:4f:67:51:98:8a:7d:1f:f6:4e:af:f5:24:66: 43:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7E:85:AC:6A:DC:16:F5:27:98:9A:FF:25:5B:09:13:1A:E0:17:2D X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:21:58:1f:e2:33:15:8f:57:a8:2a:d1:7f:8e:be:45:66:a5: ea:18:ab:56:4c:c9:e9:37:bb:c2:32:6b:84:ae:ba:60:75:c5: ab:e5:83:da:5f:86:12:4b:69:14:20:09:28:c4:26:c7:12:6a: ab:e6:07:dc:6c:58:6b:4e:96:0f:2a:74:94:d2:5f:f4:bf:5b: a9:75:e2:b4:e7:ec:4f:02:60:3c:c3:64:a5:7c:2f:0e:f6:96: b1:f6:8a:12:cd:c6:a6:d4:45:63:5c:a6:88:23:98:76:26:da: 30:1d:b8:03:4d:b1:df:79:9d:60:e4:4d:a3:c7:4b:d5:5c:89: f3:2c:9b:69:ce:6e:13:70:de:ec:e1:d0:ac:45:29:8b:c3:c1: 39:88:a0:9a:5f:37:d4:61:eb:b4:7c:dd:39:84:cc:34:e8:60: 5c:b6:06:3b:0e:08:86:54:7c:40:09:63:d8:95:d2:61:d0:33: 27:8a:33:0a:53:cd:1a:d1:ee:55:82:d1:e7:21:89:04:ed:f4: 63:4d:ed:44:8b:fe:98:16:c1:83:5a:df:79:84:64:69:ca:87: f5:e8:6a:cc:0f:4f:f7:e2:d9:8f:d7:e7:3c:8a:71:78:c9:20: bb:70:d7:17:67:e9:a7:55:f0:a6:5a:77:2b:39:48:85:90:c7: 47:56:a2:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjYwMzAyMTUzNDQ1WhcNMjYwMzA5MTUzNDQ1WjAYMRYwFAYD VQQDEw02OWE1YWUxNi1hYWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOSwqACOkMMDVNuDVTAjjFKdj4t04DM2l233bibExLre8l9rj7DlQkJdFA01 UCqGXKYB+/wqjehNIVr1ICIg9N+x7FetdWChhw/7AQdEW8Pz/BE1ivi+9ToJhr3+ fsCipC6/b6mpHFxgaYmcnpxNFNtWuVl4mpUK8VMb5wS7jAIjCLbqncqwl1wilDJV y3EJlahFPnoEXI63dLoWuMoEXvEC+Niz3rUr2In5ysYKKzBfSkbJJctPNiHliIHL oMOz4cIP+1mEf360b02Kg9//hETJ2XW6EVxL/2EdkjiDpl6NRPf63oTq0yFYm3Gz hJuST09nUZiKfR/2Tq/1JGZDtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJ+haxq 3Bb1J5ia/yVbCRMa4BctMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOyFYH+IzFY9XqCrRf46+RWal6hirVkzJ6Te7wjJrhK66YHXFq+WD2l+GEktp FCAJKMQmxxJqq+YH3GxYa06WDyp0lNJf9L9bqXXitOfsTwJgPMNkpXwvDvaWsfaK Es3GptRFY1ymiCOYdibaMB24A02x33mdYORNo8dL1VyJ8yybac5uE3De7OHQrEUp i8PBOYigml831GHrtHzdOYTMNOhgXLYGOw4IhlR8QAlj2JXSYdAzJ4ozClPNGtHu VYLR5yGJBO30Y03tRIv+mBbBg1rfeYRkacqH9ehqzA9P9+LZj9fnPIpxeMkgu3DX F2fpp1Xwplp3KzlIhZDHR1aiUQ== -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:07 2026 by rpki-client