$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: jiGX/juFJIiF9Eiwf/E+2buaK6nk8DxbE0U62C662nU= Subject key identifier: 9F:3C:42:EC:35:24:4D:93:F5:4C:A3:77:4D:D1:57:A2:2D:C0:5A:BA Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0CF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0CE0 Signing time: Sat 28 Feb 2026 18:23:47 +0000 Manifest this update: Sat 28 Feb 2026 18:23:46 +0000 Manifest next update: Sat 07 Mar 2026 18:23:46 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: uvqAJ7PBFO0JRACeFIgUNqL8SgcmWkzVpfbljzvD9Fs=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: h0JVc0feBSsBtGgtIFmFXoruNLmCUIFMpwPnZkbgYJM=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: lMqPBu/BKT48fZ8pGUUoRP0HkCDNeelzqdKzBxYepxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF, serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Feb 28 18:23:46 2026 GMT Not After : Mar 7 18:23:46 2026 GMT Subject: CN=69a332b3-c02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:76:aa:48:db:3f:16:55:af:4b:75:e0:b4:4f: 61:2d:97:af:9a:66:84:2e:08:da:aa:99:62:0e:f7: e3:ca:89:88:05:8f:72:63:79:c8:b8:a0:77:3c:4c: f1:bb:15:f4:2d:16:d5:0f:c9:dc:4b:3e:27:38:9c: 11:db:c0:fe:6c:c6:2c:71:be:87:f7:07:24:96:46: 10:5f:7c:31:9e:d5:52:10:2f:bd:b8:4f:a5:05:3f: 47:ec:60:4e:c8:64:2b:a7:14:4b:ed:06:57:94:a8: 55:5b:d3:64:25:b5:7f:b2:f2:cf:b3:a3:39:5e:78: aa:53:c3:28:d8:4f:fc:8a:d5:6b:6c:c2:1b:1c:0a: 2e:01:65:4a:fd:6d:1a:dd:02:0b:3f:ab:07:f9:1a: 6a:b9:10:0f:cc:7e:42:82:e4:ed:af:ae:b4:31:0e: d7:af:4d:fb:c2:ca:f4:bf:6f:13:2e:0f:04:48:2f: c7:12:c4:be:6c:b0:dd:9f:d3:13:5c:7d:26:02:12: 7c:35:91:e2:14:97:e9:dd:49:89:f8:55:b9:12:84: b3:4d:8f:02:94:83:ac:18:2e:0f:18:02:18:52:f3: b5:10:c2:1b:79:f7:df:13:17:a8:fc:32:3b:83:45: 9e:31:03:17:c8:7a:56:c3:c4:40:cf:de:e6:8b:aa: 64:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:3C:42:EC:35:24:4D:93:F5:4C:A3:77:4D:D1:57:A2:2D:C0:5A:BA X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:dc:f1:bf:92:32:d3:2b:33:8f:8f:ae:32:aa:d9:96:a3:88: 04:c5:ae:24:c7:56:68:f8:5b:4e:68:b2:50:05:c8:14:ee:28: 20:91:09:da:ae:64:79:dc:69:91:b6:6f:52:12:73:68:40:37: 4d:c0:35:18:62:32:ab:e7:ee:71:46:0c:3e:d3:c6:47:70:99: 1b:1d:d2:4a:6b:d3:e4:8a:f8:18:5e:1b:c8:c6:1d:4f:47:fd: a8:00:c3:79:a9:53:36:94:97:8e:36:cf:30:7e:16:a7:8d:23: 87:95:c6:72:3a:c9:4d:7f:5f:1c:f8:37:ec:16:48:ba:32:bb: 23:2f:03:03:49:ec:bb:6d:26:be:96:f9:e9:a5:c6:98:fe:a0: 5e:91:34:1b:8b:a2:17:b3:98:4e:64:c1:0f:0f:13:05:57:4f: 33:98:77:70:50:24:14:80:dd:76:f7:a0:ba:76:d3:a7:82:14: 89:2e:b4:2a:a9:33:ba:40:8c:62:d7:92:7b:6a:2c:6e:47:00: 69:77:ae:10:a7:6b:a0:84:a1:89:39:c5:88:1f:f9:e1:e2:8d: 18:9c:7f:f7:29:15:e8:25:32:6f:b5:53:b1:78:b3:13:5b:46: f0:c2:40:6f:8c:95:50:4d:67:52:28:5b:74:ee:a7:cb:1c:f7: 26:19:39:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjYwMjI4MTgyMzQ2WhcNMjYwMzA3MTgyMzQ2WjAYMRYwFAYD VQQDDA02OWEzMzJiMy1jMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnaqSNs/FlWvS3XgtE9hLZevmmaELgjaqpliDvfjyomIBY9yY3nIuKB3PEzx uxX0LRbVD8ncSz4nOJwR28D+bMYscb6H9wcklkYQX3wxntVSEC+9uE+lBT9H7GBO yGQrpxRL7QZXlKhVW9NkJbV/svLPs6M5XniqU8Mo2E/8itVrbMIbHAouAWVK/W0a 3QILP6sH+RpquRAPzH5CguTtr660MQ7Xr037wsr0v28TLg8ESC/HEsS+bLDdn9MT XH0mAhJ8NZHiFJfp3UmJ+FW5EoSzTY8ClIOsGC4PGAIYUvO1EMIbefffExeo/DI7 g0WeMQMXyHpWw8RAz97mi6pk+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ88Quw1 JE2T9Uyjd03RV6ItwFq6MB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALdzxv5Iy0yszj4+uMqrZlqOIBMWuJMdWaPhbTmiyUAXIFO4oIJEJ2q5kedxp kbZvUhJzaEA3TcA1GGIyq+fucUYMPtPGR3CZGx3SSmvT5Ir4GF4byMYdT0f9qADD ealTNpSXjjbPMH4Wp40jh5XGcjrJTX9fHPg37BZIujK7Iy8DA0nsu20mvpb56aXG mP6gXpE0G4uiF7OYTmTBDw8TBVdPM5h3cFAkFIDddvegunbTp4IUiS60KqkzukCM YteSe2osbkcAaXeuEKdroIShiTnFiB/54eKNGJx/9ykV6CUyb7VTsXizE1tG8MJA b4yVUE1nUihbdO6nyxz3Jhk51Q== -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:49 2026 by rpki-client