$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: P/1zqoY3n6O+OWuSSHIKbZs+LdZh7gNd9exVfxMUTck= Subject key identifier: 1C:73:B1:E7:F0:2C:EC:03:7E:07:2E:2E:AF:59:F4:4D:14:A4:D1:3F Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DAF Signing time: Mon 02 Mar 2026 01:07:20 +0000 Manifest this update: Mon 02 Mar 2026 01:07:17 +0000 Manifest next update: Mon 09 Mar 2026 01:07:17 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: a7e7ustX8fWvPTkUbWzwKt8zcNtsV2yQ2ZnDtmvfDVM=) 2: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) 3: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) 4: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3528 (0xdc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Mar 2 01:07:17 2026 GMT Not After : Mar 9 01:07:17 2026 GMT Subject: CN=69a4e2c7-328a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:3c:d9:45:1c:df:35:72:69:e7:1e:6e:fa: 86:62:ff:68:55:cd:ec:79:d9:81:6d:5d:04:a0:9a: bc:a1:80:07:58:10:2f:e0:bf:26:a7:d6:84:ce:7e: bb:92:03:ab:a9:32:f1:2a:e9:60:09:13:c1:a0:0f: 3b:00:58:3e:c1:8c:75:23:f8:38:ee:c7:43:49:b7: 4b:13:f9:7e:b7:03:0a:b5:e0:6a:ff:96:d8:e2:f6: d0:e8:9a:c2:72:99:59:67:f2:ad:f4:6b:fb:ae:79: 7f:99:cd:5e:8b:8a:d7:45:36:d5:10:bd:b7:6a:c8: 3f:c9:a3:3d:0c:99:7e:6a:c4:d2:22:ba:5a:e8:e9: ce:d0:c1:e3:55:1a:ff:de:59:34:48:4f:62:d5:85: 5c:67:93:fd:2a:c8:c7:7c:e6:bd:26:47:0d:c0:f2: 0e:17:73:74:f2:ab:77:c2:50:29:1f:18:f6:83:fa: bb:e1:2d:66:08:bf:48:56:76:09:3f:af:20:45:37: 48:89:6e:86:81:b5:4f:b5:12:ad:2d:df:47:29:05: c5:3c:32:c2:94:2f:87:78:57:56:c8:83:78:9b:4f: 4f:f1:b9:fb:3b:64:6e:07:f9:6a:e2:a3:ac:cc:55: aa:e0:9c:4d:be:fc:a7:7b:f8:8e:32:9b:98:08:f9: 99:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:73:B1:E7:F0:2C:EC:03:7E:07:2E:2E:AF:59:F4:4D:14:A4:D1:3F X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:50:b3:b4:39:99:58:3c:91:57:9b:ab:c0:20:ef:cd:4a:00: 05:a7:05:39:76:83:88:84:83:85:c2:e5:a5:6f:0c:f3:6d:6c: 13:ac:40:87:be:99:7d:dd:4d:a4:fa:06:33:51:d6:5a:88:99: 2e:6d:50:d6:c9:13:9d:46:e5:6c:18:75:21:ae:5c:70:62:3c: f8:67:bf:95:11:dc:1b:2a:36:14:c5:c5:38:a9:13:80:38:8f: 00:fd:02:a0:0f:fd:ea:3e:ac:b0:76:28:bc:ae:b4:02:4f:f3: 22:9f:51:cd:8c:a4:89:53:7b:dc:63:b0:bf:0d:f7:ba:6b:32: 49:45:1b:6d:f9:67:73:2f:48:36:06:64:c6:7e:0a:cd:f5:97: 03:28:09:2b:aa:3b:00:3b:9e:2d:9b:bb:a2:5e:76:be:80:fc: 44:e1:56:19:ca:ff:fb:b9:4b:0e:64:6e:4a:59:60:65:8b:ae: 75:f0:fb:a0:1f:f8:ed:65:34:1c:7a:58:29:6c:ef:33:e1:09: b8:12:8b:9d:92:38:dc:df:8c:63:ce:b2:68:a4:fe:c8:8d:d8: 85:20:75:60:9a:ad:35:54:93:72:71:82:cc:36:49:8f:a8:ac: 95:7b:50:b2:dd:db:57:3f:c7:d7:3f:fc:13:e9:9f:c4:f3:2e: cb:17:4c:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwMzAyMDEwNzE3WhcNMjYwMzA5MDEwNzE3WjAYMRYwFAYD VQQDEw02OWE0ZTJjNy0zMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7w82UUc3zVyaecebvqGYv9oVc3sedmBbV0EoJq8oYAHWBAv4L8mp9aEzn67 kgOrqTLxKulgCRPBoA87AFg+wYx1I/g47sdDSbdLE/l+twMKteBq/5bY4vbQ6JrC cplZZ/Kt9Gv7rnl/mc1ei4rXRTbVEL23asg/yaM9DJl+asTSIrpa6OnO0MHjVRr/ 3lk0SE9i1YVcZ5P9KsjHfOa9JkcNwPIOF3N08qt3wlApHxj2g/q74S1mCL9IVnYJ P68gRTdIiW6GgbVPtRKtLd9HKQXFPDLClC+HeFdWyIN4m09P8bn7O2RuB/lq4qOs zFWq4JxNvvyne/iOMpuYCPmZ/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBxzsefw LOwDfgcuLq9Z9E0UpNE/MB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAilCztDmZWDyRV5urwCDvzUoABacFOXaDiISDhcLlpW8M821sE6xAh76Zfd1N pPoGM1HWWoiZLm1Q1skTnUblbBh1Ia5ccGI8+Ge/lRHcGyo2FMXFOKkTgDiPAP0C oA/96j6ssHYovK60Ak/zIp9RzYykiVN73GOwvw33umsySUUbbflncy9INgZkxn4K zfWXAygJK6o7ADueLZu7ol52voD8ROFWGcr/+7lLDmRuSllgZYuudfD7oB/47WU0 HHpYKWzvM+EJuBKLnZI43N+MY86yaKT+yI3YhSB1YJqtNVSTcnGCzDZJj6islXtQ st3bVz/H1z/8E+mfxPMuyxdMkQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:36:55 2026 by rpki-client