$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: Pe2KtVtOM/icxszffQvmfDAfNNyramEDA+qTymmvtmg= Subject key identifier: A9:37:84:54:95:6F:54:A1:D0:57:19:C2:83:E1:16:C5:A8:0D:E4:9F Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 04DA Signing time: Sun 01 Mar 2026 23:50:19 +0000 Manifest this update: Sun 01 Mar 2026 23:50:17 +0000 Manifest next update: Sun 08 Mar 2026 23:50:17 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: 1VRBCYRwVnTZN0LI/1Cira/ABYjF/ZMcw+4rqZUscXU=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 26ebyWae8kFMiBM0QnNKySSkX8UzW3r5Z0rGEmFhGYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Mar 1 23:50:17 2026 GMT Not After : Mar 8 23:50:17 2026 GMT Subject: CN=69a4d0ba-bdc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:c9:b7:bd:bb:98:4d:30:71:79:c7:60:ac: bf:fa:4f:8b:72:34:7c:36:2c:83:59:0c:cd:01:3f: 45:a8:fe:e4:74:d7:75:4d:10:45:b6:a4:41:7a:b0: d3:8b:50:fa:60:a9:8a:d7:fb:4a:2a:bf:4c:9c:cc: 0e:91:ff:b9:3d:4d:da:11:32:91:ab:18:85:4a:e1: 87:eb:9e:36:bf:14:52:d0:16:82:07:b6:5e:4d:53: 42:e8:62:3d:7c:4d:3c:c9:dc:d7:4a:fc:a9:cd:1e: 3a:d1:cb:10:e9:db:de:15:a0:5f:93:13:0a:8f:52: 73:23:31:dd:7b:95:b9:4d:a8:e5:ee:ad:5b:12:17: cb:4b:e4:86:2f:56:a7:8b:de:22:f8:ff:7b:0a:96: 41:29:d1:50:b8:95:80:dd:67:f0:a2:43:e8:c2:ae: 01:c9:08:ee:d0:ff:f9:71:d9:67:f2:c4:4b:ef:3b: bd:b3:36:a4:9e:69:ba:ad:c4:cb:53:1e:f9:ef:17: 5d:fa:7e:f7:82:74:a1:1a:28:a9:10:e2:3e:91:9f: ed:b3:11:46:9b:56:9a:63:6e:f0:d0:49:58:6f:78: 09:f3:23:59:29:79:b2:6e:d1:3d:13:ff:44:4f:25: 93:49:a6:b9:f4:45:3c:ad:17:98:ba:30:2a:a1:84: b5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:37:84:54:95:6F:54:A1:D0:57:19:C2:83:E1:16:C5:A8:0D:E4:9F X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:95:5f:46:8b:ce:bb:eb:cd:7b:84:04:2b:6c:a5:97:7e:e8: 25:68:31:2c:e3:3d:ba:7c:d4:73:bb:04:4f:54:a2:03:8f:c9: b6:70:84:0c:b3:3b:48:d4:98:01:e7:ee:06:53:55:aa:ab:f6: 9f:dd:f0:f9:70:4c:62:97:ae:7e:d6:dd:b1:45:18:ca:4c:8f: 9d:96:a4:3e:78:4b:95:9f:4d:ea:4d:d0:06:f7:4f:1f:b8:a4: 55:74:ab:c6:97:5b:1f:5d:ab:26:78:ee:67:64:37:88:53:78: 2a:fb:1a:60:51:66:a0:d5:89:4d:a1:74:59:74:13:e4:a0:89: ff:3f:a2:62:5c:a2:4d:be:c0:12:97:c3:c4:a1:ec:1a:a4:fc: 03:12:dd:17:80:57:55:34:46:e7:35:51:04:67:92:a2:20:14: 0e:03:c2:5e:9b:2a:d2:83:71:cd:85:d9:c5:60:85:10:f4:1f: d9:3c:ed:6a:ae:18:9e:39:45:b9:11:ba:0e:6e:08:d1:61:5b: 04:84:6f:e9:d4:c2:92:4a:e3:c6:e6:42:91:bf:55:53:15:f6: f0:c4:55:be:78:0e:23:ab:2c:b5:16:7e:f8:ac:13:d6:cf:26: 72:1b:a3:2d:9d:5a:c1:b4:ce:9c:ac:4f:fb:11:13:8f:d2:c8: 06:98:f8:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjYwMzAxMjM1MDE3WhcNMjYwMzA4MjM1MDE3WjAYMRYwFAYD VQQDEw02OWE0ZDBiYS1iZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QTJt727mE0wcXnHYKy/+k+LcjR8NiyDWQzNAT9FqP7kdNd1TRBFtqRBerDT i1D6YKmK1/tKKr9MnMwOkf+5PU3aETKRqxiFSuGH6542vxRS0BaCB7ZeTVNC6GI9 fE08ydzXSvypzR460csQ6dveFaBfkxMKj1JzIzHde5W5Tajl7q1bEhfLS+SGL1an i94i+P97CpZBKdFQuJWA3WfwokPowq4ByQju0P/5cdln8sRL7zu9szaknmm6rcTL Ux757xdd+n73gnShGiipEOI+kZ/tsxFGm1aaY27w0ElYb3gJ8yNZKXmybtE9E/9E TyWTSaa59EU8rReYujAqoYS1JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKk3hFSV b1Sh0FcZwoPhFsWoDeSfMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkZVfRovOu+vNe4QEK2yll37oJWgxLOM9unzUc7sET1SiA4/JtnCEDLM7SNSY AefuBlNVqqv2n93w+XBMYpeuftbdsUUYykyPnZakPnhLlZ9N6k3QBvdPH7ikVXSr xpdbH12rJnjuZ2Q3iFN4KvsaYFFmoNWJTaF0WXQT5KCJ/z+iYlyiTb7AEpfDxKHs GqT8AxLdF4BXVTRG5zVRBGeSoiAUDgPCXpsq0oNxzYXZxWCFEPQf2Tztaq4YnjlF uRG6Dm4I0WFbBIRv6dTCkkrjxuZCkb9VUxX28MRVvngOI6sstRZ++KwT1s8mchuj LZ1awbTOnKxP+xETj9LIBpj4AQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:22:10 2026 by rpki-client