$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: HCPEAehyJbv2lnxReumFWWlIfprJrmfiGLbWu4wLaG4= Subject key identifier: E0:F0:EA:B0:E5:B0:25:08:DD:8F:32:BC:BC:27:EB:2B:B0:DE:03:AD Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 0900 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08E2 Signing time: Sun 01 Mar 2026 23:53:03 +0000 Manifest this update: Sun 01 Mar 2026 23:53:02 +0000 Manifest next update: Sun 08 Mar 2026 23:53:02 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: KaQ18OUL0GYO08DLFRolG7O6xLm26TCeq33CCt8oEq4=) 2: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: fecuy51h04kA/93Fl9Jso7L2bJu10CuAwHp5PsU5FhA=) 3: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: O+J9NJa3UAiRFIsaF/1cDe44mda6RPgxat0aYJVT3MQ=) 4: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: e1E68Ho50ngwWh9r7dC17sN0VAiVWs7P5I7wOcaITiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Mar 1 23:53:02 2026 GMT Not After : Mar 8 23:53:02 2026 GMT Subject: CN=69a4d15f-6015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:1a:58:f7:c1:e2:38:6e:9e:4c:e7:11:6c: 99:39:3b:96:18:e9:af:fb:e2:31:4e:2d:1c:b7:38: 88:25:fd:91:32:24:b3:b6:9e:66:73:99:d5:c9:55: bf:ed:8f:8b:84:33:e8:1e:85:94:bd:34:18:35:9b: 86:d6:52:9e:93:9d:24:44:1c:9c:32:3b:d1:4f:d3: 4e:3c:71:fd:ea:e2:7e:e1:ec:db:dd:34:f2:54:f6: a9:a5:8f:3f:22:52:b2:16:a5:3d:19:f8:66:b2:1a: 25:23:02:c3:cd:3b:da:41:2b:d3:6e:62:82:35:e3: 04:67:f1:a8:e3:56:3d:81:06:84:45:19:75:32:a8: 61:ee:6b:3f:e8:e8:c1:64:20:47:5a:a8:27:13:58: 27:52:8a:df:c3:40:42:ce:ab:9f:79:1b:b1:12:8d: 71:f6:d8:22:b0:1e:7c:a7:f7:e5:03:67:c2:b1:8a: 67:7d:9a:9c:f9:18:fd:c9:d9:84:cb:74:c3:cd:71: 68:03:97:09:c8:05:1e:cc:8a:83:02:43:fb:2e:d5: f5:68:7c:07:c2:94:ce:09:30:a6:06:80:ff:5d:cb: 8a:b3:60:ae:6b:34:35:2a:2b:a1:be:55:89:da:cf: d9:72:c1:3e:9f:eb:4f:be:a5:b3:69:28:e6:17:14: 5f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F0:EA:B0:E5:B0:25:08:DD:8F:32:BC:BC:27:EB:2B:B0:DE:03:AD X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:49:31:d1:1c:2a:2f:67:86:88:5d:6f:4e:bb:ca:00:ac:ec: 31:25:6e:97:de:4d:43:45:ac:b2:46:d2:65:46:06:88:94:d5: 04:36:03:81:a7:82:66:80:b6:9f:2a:71:04:8b:44:4a:50:7e: 77:09:9b:36:9b:cb:ee:5b:a7:a7:17:dd:a8:eb:99:e5:5e:d0: 92:1b:35:0e:f9:f2:20:db:be:97:2e:4d:cf:57:d3:fd:ca:c6: 61:66:68:13:21:1a:87:71:d9:46:50:d0:4c:80:21:ff:96:4b: 04:c9:f5:03:2f:f1:04:00:0b:3c:a2:4a:3b:9f:2a:8c:03:6c: d6:b7:52:e3:f7:a7:ef:ae:3f:79:4c:18:b3:6d:f5:4e:66:22: 7d:6a:0a:42:2a:d5:bc:ee:e3:12:58:e9:88:e4:bb:b7:55:8f: 0d:4e:f2:cc:f5:94:69:6a:0e:8d:aa:16:fa:b8:c7:ea:2d:48: c8:8a:10:04:35:69:74:fc:c9:26:da:eb:48:84:a1:e5:23:fb: 91:d0:63:e7:b7:66:15:2b:d2:40:0b:ce:c4:1a:5a:51:14:2a: 45:f1:8a:21:46:7f:c2:a6:89:8f:f1:30:f7:58:22:5e:ed:d3: bd:e4:96:d6:dc:1a:c1:88:c2:9b:d6:24:eb:ee:24:73:62:b0: 13:e9:e9:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjYwMzAxMjM1MzAyWhcNMjYwMzA4MjM1MzAyWjAYMRYwFAYD VQQDEw02OWE0ZDE1Zi02MDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI0aWPfB4jhunkznEWyZOTuWGOmv++IxTi0ctziIJf2RMiSztp5mc5nVyVW/ 7Y+LhDPoHoWUvTQYNZuG1lKek50kRBycMjvRT9NOPHH96uJ+4ezb3TTyVPappY8/ IlKyFqU9GfhmsholIwLDzTvaQSvTbmKCNeMEZ/Go41Y9gQaERRl1Mqhh7ms/6OjB ZCBHWqgnE1gnUorfw0BCzqufeRuxEo1x9tgisB58p/flA2fCsYpnfZqc+Rj9ydmE y3TDzXFoA5cJyAUezIqDAkP7LtX1aHwHwpTOCTCmBoD/XcuKs2CuazQ1KiuhvlWJ 2s/ZcsE+n+tPvqWzaSjmFxRfBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODw6rDl sCUI3Y8yvLwn6yuw3gOtMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARUkx0RwqL2eGiF1vTrvKAKzsMSVul95NQ0WsskbSZUYGiJTVBDYDgaeCZoC2 nypxBItESlB+dwmbNpvL7lunpxfdqOuZ5V7Qkhs1DvnyINu+ly5Nz1fT/crGYWZo EyEah3HZRlDQTIAh/5ZLBMn1Ay/xBAALPKJKO58qjANs1rdS4/en764/eUwYs231 TmYifWoKQirVvO7jEljpiOS7t1WPDU7yzPWUaWoOjaoW+rjH6i1IyIoQBDVpdPzJ JtrrSISh5SP7kdBj57dmFSvSQAvOxBpaURQqRfGKIUZ/wqaJj/Ew91giXu3TveSW 1twawYjCm9Yk6+4kc2KwE+npsg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:28:49 2026 by rpki-client