$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: UPDUtNgE4Fu6KtP8A+siCvq8tes4VvW9C01gLEJlEuI= Subject key identifier: B5:F3:06:04:72:DE:7F:15:D7:01:2D:6E:23:F1:29:5F:F9:3B:7E:C0 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0900 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 08F8 Signing time: Mon 02 Mar 2026 02:58:35 +0000 Manifest this update: Mon 02 Mar 2026 02:58:34 +0000 Manifest next update: Mon 09 Mar 2026 02:58:34 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: SkefpLjBsq4j5URnR7T62K1HnD8yjIFEE180RMCA5PE=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Mar 2 02:58:34 2026 GMT Not After : Mar 9 02:58:34 2026 GMT Subject: CN=69a4fcdb-5886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ee:52:b6:71:bd:12:4b:35:76:38:89:ef:b0: 83:b5:67:cd:07:cd:8a:f2:a2:4f:ab:36:57:47:fa: fe:d2:eb:1e:9e:de:e8:c4:23:b7:fb:a7:1e:3a:85: 14:04:25:5f:05:9d:74:5c:3b:01:95:85:47:3e:92: 8d:a8:2e:20:cf:24:03:29:88:fb:65:82:2b:56:65: eb:3d:95:41:ff:6d:a7:49:e1:7f:79:16:e9:ac:16: cc:03:ea:6b:2f:2d:d4:71:24:18:0a:72:1e:4a:af: b5:2b:04:f5:fa:75:68:6a:26:bd:31:fc:55:b0:08: c5:a5:5d:53:82:ce:13:33:96:99:80:dc:f9:20:43: 2c:54:aa:dc:45:1e:24:19:9e:9b:15:83:99:13:9a: c6:46:54:a8:c8:14:7f:9d:61:27:2f:35:1f:ff:f3: 5c:f1:24:3a:fa:f7:5e:f2:b1:f0:70:76:c0:5d:ed: 8d:89:95:6c:96:8d:65:b3:5f:b8:04:82:f9:38:a0: 4f:95:79:9d:53:b3:43:cc:21:f9:4c:aa:8f:77:36: 2a:1e:05:46:49:fa:a1:9e:de:d1:41:de:e8:3b:39: 1e:0f:03:be:d0:2c:1c:b3:93:33:2f:23:e7:98:98: a8:83:6f:fa:ac:0d:22:a7:e2:39:ce:7d:cb:9c:4a: 42:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F3:06:04:72:DE:7F:15:D7:01:2D:6E:23:F1:29:5F:F9:3B:7E:C0 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:0f:aa:22:e0:d9:38:46:96:6a:52:5f:9a:2f:ad:1c:58:03: 35:08:0c:51:b2:40:be:bf:5a:d6:87:28:36:6d:f8:da:93:76: 98:81:bf:57:19:76:f6:e8:f7:c9:5d:5b:16:4b:fb:fc:a3:80: 0d:4e:f3:47:ae:a4:67:82:d5:06:f8:66:b9:12:f4:49:56:b7: d7:96:1b:7d:6a:a7:4d:e9:f7:b4:8a:86:73:fe:30:c9:86:c0: da:24:25:52:50:7b:ae:28:1a:2a:c5:a9:9c:a4:0c:f4:16:57: 92:e5:25:17:2b:e1:cf:49:e1:8d:34:15:ca:34:22:04:c8:95: 4b:7f:5f:0e:b3:d2:bf:03:ee:00:c3:1e:12:ce:11:58:29:a3: c9:30:12:ba:4d:72:50:25:a0:c7:1a:9e:0a:fb:07:e5:85:db: 04:bb:0b:3d:d9:e2:c0:7a:ff:17:05:81:b3:36:0a:cc:f7:b5: c1:1e:5a:a3:93:1f:0d:86:f9:71:b9:2c:9f:47:7d:1d:ec:25: da:0c:69:02:7d:3d:87:ed:f4:8d:27:ed:29:32:bf:c6:0c:2e: fb:5c:d1:61:d3:a1:e2:99:df:cd:e9:45:2d:63:5a:06:6a:c4: dd:f0:dc:39:c2:f9:32:37:92:8c:a6:5d:9e:24:95:52:f5:f1: 36:78:cd:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjYwMzAyMDI1ODM0WhcNMjYwMzA5MDI1ODM0WjAYMRYwFAYD VQQDEw02OWE0ZmNkYi01ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0u5StnG9Eks1djiJ77CDtWfNB82K8qJPqzZXR/r+0usent7oxCO3+6ceOoUU BCVfBZ10XDsBlYVHPpKNqC4gzyQDKYj7ZYIrVmXrPZVB/22nSeF/eRbprBbMA+pr Ly3UcSQYCnIeSq+1KwT1+nVoaia9MfxVsAjFpV1Tgs4TM5aZgNz5IEMsVKrcRR4k GZ6bFYOZE5rGRlSoyBR/nWEnLzUf//Nc8SQ6+vde8rHwcHbAXe2NiZVslo1ls1+4 BIL5OKBPlXmdU7NDzCH5TKqPdzYqHgVGSfqhnt7RQd7oOzkeDwO+0Cwcs5MzLyPn mJiog2/6rA0ip+I5zn3LnEpCwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLXzBgRy 3n8V1wEtbiPxKV/5O37AMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWw+qIuDZOEaWalJfmi+tHFgDNQgMUbJAvr9a1ocoNm342pN2mIG/Vxl29uj3 yV1bFkv7/KOADU7zR66kZ4LVBvhmuRL0SVa315YbfWqnTen3tIqGc/4wyYbA2iQl UlB7rigaKsWpnKQM9BZXkuUlFyvhz0nhjTQVyjQiBMiVS39fDrPSvwPuAMMeEs4R WCmjyTASuk1yUCWgxxqeCvsH5YXbBLsLPdniwHr/FwWBszYKzPe1wR5ao5MfDYb5 cbksn0d9Hewl2gxpAn09h+30jSftKTK/xgwu+1zRYdOh4pnfzelFLWNaBmrE3fDc OcL5MjeSjKZdniSVUvXxNnjNng== -----END CERTIFICATE-----Generated at Mon Mar 2 05:55:03 2026 by rpki-client