$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: dVITFQADl3MyuJnIamqLzih7Jkoa9YCfsgpRJVmmbSQ= Subject key identifier: 0A:FB:E7:EB:F3:39:7F:0E:52:14:1C:19:CC:E5:CD:D5:C4:0E:0E:96 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 350F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 350F Signing time: Sat 28 Feb 2026 15:04:25 +0000 Manifest this update: Sat 28 Feb 2026 15:04:24 +0000 Manifest next update: Sat 07 Mar 2026 15:04:24 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: k6m+3YkqcRSp3kiW5Sg2H+Dql8CO2aGV45ddb76L6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13583 (0x350f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Feb 28 15:04:24 2026 GMT Not After : Mar 7 15:04:24 2026 GMT Subject: CN=69a303f9-144a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d2:b5:40:82:d3:c4:f2:89:fa:46:5e:44:e1: 79:8e:2e:8a:56:44:2f:97:75:c3:af:d0:7e:7a:d2: ac:ff:ea:7f:b8:05:6a:79:a8:6e:5b:80:1d:f9:67: ac:82:f9:91:1b:d1:d6:7e:18:25:01:8b:0e:a3:4c: 21:a2:a3:95:54:6f:43:95:61:d9:b3:d1:79:33:a7: e2:fc:6f:21:17:ad:87:d7:44:76:a2:7c:f0:f4:5b: c9:1b:dd:b5:cb:63:4b:6e:2b:30:54:36:32:a4:a8: af:32:e0:3b:6c:0d:9c:b5:b6:e8:3e:a1:11:7d:6f: c4:3a:13:62:19:4f:6b:0d:6f:66:45:af:1d:4d:64: dc:ed:ff:85:95:2e:de:4f:26:18:ce:72:8e:ba:30: a1:90:fb:c4:65:ec:6a:60:4e:0f:37:d9:8c:87:a0: 28:8d:9a:e7:1c:b6:7a:33:51:e4:a2:d4:a1:7a:3b: c6:4d:60:3d:25:61:0e:cc:2d:87:24:de:87:28:d5: b9:02:e1:cd:8b:ac:8e:94:56:88:5b:33:5f:4a:62: 49:8a:8b:e0:a2:ea:47:92:05:b3:85:30:60:b4:a4: 6b:61:32:c7:5f:3f:7c:46:c9:46:b9:d9:fa:ee:75: 2b:c9:ed:c5:f4:01:e0:a2:22:1f:00:4a:22:ee:97: e8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FB:E7:EB:F3:39:7F:0E:52:14:1C:19:CC:E5:CD:D5:C4:0E:0E:96 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:30:49:53:7b:f6:45:35:65:f2:38:29:1a:08:54:bb:67:9c: 2d:79:6f:76:89:ab:b7:66:27:23:c2:3d:cc:01:82:02:b4:50: cc:b6:56:7d:87:a4:7d:ae:7b:a0:85:db:a0:bc:be:02:b3:d8: a7:df:b4:fb:75:8e:8c:2a:b2:f9:48:d9:a8:05:25:c0:0e:cb: 96:9f:d1:be:40:17:93:13:43:10:18:e8:ea:43:39:4a:84:2b: db:37:e5:b6:03:ae:8a:a1:24:a7:8f:48:92:28:47:4b:bb:6b: 36:7c:2b:f7:86:49:5a:64:2d:e6:18:43:a5:84:4f:69:b9:fc: b3:17:86:df:6e:4e:e5:b2:3f:66:06:8c:8e:fa:41:95:75:c4: f3:93:50:2c:be:65:f3:c1:82:d0:11:66:b2:4d:51:d7:d4:be: 12:79:4b:4f:ae:1e:24:b9:ff:5f:c3:cf:b1:79:89:80:78:8e: db:0f:5e:c0:bc:4c:83:cf:78:f5:6f:b5:10:73:15:77:7e:09: e1:07:32:a7:0c:c5:06:47:19:a8:bb:2f:6d:f3:24:2d:95:25: f9:70:15:b6:72:16:12:d9:63:29:e1:49:19:ad:06:48:99:ae: b5:c5:2b:95:17:dc:f6:c9:f2:04:b7:4c:67:38:ab:1c:28:62: c2:49:0f:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjYwMjI4MTUwNDI0WhcNMjYwMzA3MTUwNDI0WjAYMRYwFAYD VQQDEw02OWEzMDNmOS0xNDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdK1QILTxPKJ+kZeROF5ji6KVkQvl3XDr9B+etKs/+p/uAVqeahuW4Ad+Wes gvmRG9HWfhglAYsOo0whoqOVVG9DlWHZs9F5M6fi/G8hF62H10R2onzw9FvJG921 y2NLbiswVDYypKivMuA7bA2ctbboPqERfW/EOhNiGU9rDW9mRa8dTWTc7f+FlS7e TyYYznKOujChkPvEZexqYE4PN9mMh6AojZrnHLZ6M1HkotShejvGTWA9JWEOzC2H JN6HKNW5AuHNi6yOlFaIWzNfSmJJiovgoupHkgWzhTBgtKRrYTLHXz98RslGudn6 7nUrye3F9AHgoiIfAEoi7pfoFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAr75+vz OX8OUhQcGczlzdXEDg6WMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmzBJU3v2RTVl8jgpGghUu2ecLXlvdomrt2YnI8I9zAGCArRQzLZWfYekfa57 oIXboLy+ArPYp9+0+3WOjCqy+UjZqAUlwA7Llp/RvkAXkxNDEBjo6kM5SoQr2zfl tgOuiqEkp49IkihHS7trNnwr94ZJWmQt5hhDpYRPabn8sxeG325O5bI/ZgaMjvpB lXXE85NQLL5l88GC0BFmsk1R19S+EnlLT64eJLn/X8PPsXmJgHiO2w9ewLxMg894 9W+1EHMVd34J4QcypwzFBkcZqLsvbfMkLZUl+XAVtnIWEtljKeFJGa0GSJmutcUr lRfc9snyBLdMZzirHChiwkkPgA== -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:46 2026 by rpki-client