$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: eseV7fgdZIy4YBIVjpJhwzg5VZZ33124q6tdfpLuIKo= Subject key identifier: 8A:8D:C2:8D:D1:72:5B:BB:C9:D7:12:DF:1F:28:33:9D:9C:81:23:E5 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 0117 Signing time: Mon 02 Mar 2026 00:43:54 +0000 Manifest this update: Mon 02 Mar 2026 00:43:53 +0000 Manifest next update: Mon 09 Mar 2026 00:43:53 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: Vo0Aq3vTB2BJDVv+Bm9PJKyVRh1zfsxgfws9yiworrc=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: /pgTpJCeELO0vx7ey0ylXFhJZdDNJrts1Zcttp5czrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Mar 2 00:43:53 2026 GMT Not After : Mar 9 00:43:53 2026 GMT Subject: CN=69a4dd4a-f5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:82:c1:fb:80:5d:f2:ed:7c:3f:61:85:e9:cc: 66:da:ee:cf:6c:d6:32:a7:be:49:8c:c4:9e:40:1c: b6:40:5a:bc:ce:be:b5:cf:23:9a:44:66:c2:00:af: 65:eb:82:a7:69:8b:27:4c:40:97:9f:9c:2c:7b:a9: d1:99:4d:57:e1:5c:d5:30:79:e6:9c:3b:4d:ec:b4: d6:e6:f2:81:38:4f:c3:3b:df:80:91:4f:9d:ae:a3: 95:d0:ea:5d:0d:46:9a:c7:52:c5:1a:25:6d:bc:97: 54:a1:a9:9c:fc:f1:78:d7:ab:b6:ee:10:63:40:22: 61:97:ba:ba:c0:88:34:35:6b:0f:37:53:d3:d0:89: 7d:a7:5b:67:b4:64:0e:35:c9:18:b6:21:ca:c3:db: 72:99:ef:ac:74:af:52:20:de:44:fc:62:77:62:d5: 87:20:5d:49:95:94:f1:21:7a:21:ff:cd:81:cb:0b: c1:bb:ca:a5:1f:51:7c:bd:6c:4d:90:30:b7:a2:8d: 73:85:96:8e:82:bc:fc:6a:a3:b1:62:6f:a9:5d:ec: df:43:75:2a:bb:62:55:38:90:25:7c:3b:37:4c:94: 0a:c6:ac:7a:bc:37:53:a7:1d:9e:74:a1:79:be:64: 17:10:64:20:89:0d:80:19:86:98:41:aa:42:5d:4a: df:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8D:C2:8D:D1:72:5B:BB:C9:D7:12:DF:1F:28:33:9D:9C:81:23:E5 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:90:96:37:1a:5e:46:e0:73:eb:8b:39:82:f8:65:eb:0f:22: 1d:0c:0f:fe:3f:a2:fd:ed:bc:84:30:ff:c6:50:62:31:6d:e9: 58:97:0a:54:0e:f9:9c:2b:7c:7c:b0:4d:9e:ea:c9:41:77:32: 86:ea:93:95:d3:97:9e:68:ca:27:f9:89:28:05:c3:40:da:9f: 9f:ea:fb:5d:80:92:ad:1d:90:72:27:b0:31:6f:85:aa:bb:dd: d9:4e:b7:e8:2b:f4:c3:8b:7a:11:f1:79:fb:8f:75:69:d3:32: b0:9c:11:b3:88:78:ec:c5:ea:30:5a:78:e9:af:9b:00:a6:30: ba:01:02:b6:4a:2b:0b:24:28:57:7d:4d:27:c2:38:17:76:76: 03:51:a3:f1:ff:1b:7a:75:0e:08:bc:0e:d5:81:ca:68:e5:1f: 7d:19:49:20:d4:73:65:54:c9:7f:b0:1f:75:de:22:d2:81:ad: f9:c1:f8:69:67:34:fb:47:aa:e1:1b:8b:d1:5e:5b:eb:d3:2c: 15:36:41:96:78:ca:15:56:1e:d5:b0:9f:c1:34:3c:85:6b:71: 93:14:49:4b:84:cb:ac:5c:3b:70:e0:ef:c3:bd:13:25:c2:b0: 6d:da:c7:45:2c:8a:e6:81:3b:ef:f0:35:8e:c7:21:8d:92:cb: 3a:ef:d0:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjYwMzAyMDA0MzUzWhcNMjYwMzA5MDA0MzUzWjAYMRYwFAYD VQQDEw02OWE0ZGQ0YS1mNWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuILB+4Bd8u18P2GF6cxm2u7PbNYyp75JjMSeQBy2QFq8zr61zyOaRGbCAK9l 64KnaYsnTECXn5wse6nRmU1X4VzVMHnmnDtN7LTW5vKBOE/DO9+AkU+drqOV0Opd DUaax1LFGiVtvJdUoamc/PF416u27hBjQCJhl7q6wIg0NWsPN1PT0Il9p1tntGQO NckYtiHKw9tyme+sdK9SIN5E/GJ3YtWHIF1JlZTxIXoh/82BywvBu8qlH1F8vWxN kDC3oo1zhZaOgrz8aqOxYm+pXezfQ3Uqu2JVOJAlfDs3TJQKxqx6vDdTpx2edKF5 vmQXEGQgiQ2AGYaYQapCXUrffwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIqNwo3R clu7ydcS3x8oM52cgSPlMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtJCWNxpeRuBz64s5gvhl6w8iHQwP/j+i/e28hDD/xlBiMW3pWJcKVA75nCt8 fLBNnurJQXcyhuqTldOXnmjKJ/mJKAXDQNqfn+r7XYCSrR2QciewMW+Fqrvd2U63 6Cv0w4t6EfF5+491adMysJwRs4h47MXqMFp46a+bAKYwugECtkorCyQoV31NJ8I4 F3Z2A1Gj8f8benUOCLwO1YHKaOUffRlJINRzZVTJf7Afdd4i0oGt+cH4aWc0+0eq 4RuL0V5b69MsFTZBlnjKFVYe1bCfwTQ8hWtxkxRJS4TLrFw7cODvw70TJcKwbdrH RSyK5oE77/A1jschjZLLOu/QYQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:16:24 2026 by rpki-client