$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: d9QNegAt+m/5iFGtkCsjzsXN29FXIqaX/2Qfy2UkIbQ= Subject key identifier: 63:85:27:43:55:01:0F:19:EF:EC:C5:30:EB:90:C2:34:60:E0:45:1A Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 360B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 3584 Signing time: Sat 28 Feb 2026 14:16:31 +0000 Manifest this update: Sat 28 Feb 2026 14:16:31 +0000 Manifest next update: Sat 07 Mar 2026 14:16:31 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: ah7r2Hhp6zzm+52VdwJUTQgBbu5Zn8BwGSC8X5hDP1U=) 2: DB3F9CA4817B11F0BDC51985C4F9AE02.roa (hash: JAIKKCo9C8qw6fr8uLdaMchlj/iGB4GqwIN2CeXneAc=) 3: DCD41E8E98D511F0B3824663C4F9AE02.roa (hash: EWlSDhZJpxeihw3aeM/sQAa10hdfChLc1MQCCqHexiw=) 4: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 5: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 6: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) 7: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 8: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13835 (0x360b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Feb 28 14:16:31 2026 GMT Not After : Mar 7 14:16:31 2026 GMT Subject: CN=69a2f8bf-c5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:84:7c:53:8d:27:85:c4:13:9f:30:0e:e4:9c: a5:36:3d:38:05:d6:03:ff:37:aa:dd:ff:08:90:9e: 77:0f:75:84:e0:d3:c3:29:3f:cf:49:7e:ae:6d:c5: 06:6f:b7:15:90:49:de:47:5c:05:a6:45:83:0c:16: 8c:18:f9:a1:cc:f7:f7:b1:11:38:6f:e8:b3:17:b2: 64:52:81:88:f9:2c:49:bd:8d:7d:99:97:d3:df:ef: bb:bc:53:5d:56:99:4a:76:d5:a0:86:54:9d:5c:23: c6:84:71:95:3c:fc:c5:86:c2:8c:98:48:03:35:ef: 9e:4a:2f:b6:c0:ba:58:33:7b:7e:dc:09:d3:c8:0a: a6:25:56:fb:45:e3:c3:82:e2:e2:0d:68:77:fc:5a: d1:83:c8:ab:7d:ca:fc:ba:69:2e:79:39:3f:cd:d8: f2:06:e2:dc:e1:d6:4c:31:d2:b7:20:32:52:f3:1e: c3:e8:85:b5:8b:54:f0:93:ec:2c:52:62:ae:ef:05: cd:fd:c8:af:20:37:9f:c8:f0:d8:19:f5:e7:43:ea: c8:fb:3b:05:50:f4:15:ce:97:d1:e4:67:9c:75:cc: b7:f7:00:8e:e8:74:53:fc:6e:97:71:1c:e3:32:5e: cf:50:4e:a4:8b:b3:68:80:f0:43:e1:3e:f5:83:20: c4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:85:27:43:55:01:0F:19:EF:EC:C5:30:EB:90:C2:34:60:E0:45:1A X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7b:31:6c:f7:80:e1:0d:c1:25:85:bb:e0:58:37:84:64:d8: 61:a5:9b:23:ca:8d:bb:f3:ef:f8:68:59:9b:f6:60:5f:f3:79: e1:b3:2c:8d:40:bb:22:f6:44:6d:b3:39:b3:a8:7f:07:ed:45: 41:dc:c6:bc:f1:4a:cc:5b:8b:0f:b7:fb:09:34:63:cb:be:15: 42:61:0f:c1:5a:24:79:2a:0e:67:4b:4c:75:1d:1d:ec:dd:5f: 76:d4:00:40:0a:5e:79:22:12:14:bc:a2:9b:e0:24:79:70:91: c7:ea:eb:9a:8d:2c:a2:91:80:69:c7:ec:16:47:bb:9b:c5:df: 5c:4e:c7:84:86:e9:90:ca:08:80:0a:d1:67:ba:0d:5d:75:12: 8d:d2:15:d2:81:da:6f:42:8a:58:17:fd:03:39:bc:88:d6:c6: b6:07:15:33:a4:9d:36:0f:62:24:e6:dc:cf:ba:85:84:18:96: cd:92:96:8d:f9:45:9d:39:7e:59:87:b4:9d:39:1b:50:b9:ac: 11:47:dd:87:10:c1:fc:5b:b2:8d:bb:fd:c4:ef:c7:14:6b:ef: 98:71:58:2d:6c:45:3e:ed:64:b3:f5:10:60:6b:55:8e:27:c1: fb:ad:0d:e1:38:ea:8c:6a:a2:00:36:99:c8:e3:f8:83:77:fc: dc:39:14:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjYwMjI4MTQxNjMxWhcNMjYwMzA3MTQxNjMxWjAYMRYwFAYD VQQDDA02OWEyZjhiZi1jNWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIR8U40nhcQTnzAO5JylNj04BdYD/zeq3f8IkJ53D3WE4NPDKT/PSX6ubcUG b7cVkEneR1wFpkWDDBaMGPmhzPf3sRE4b+izF7JkUoGI+SxJvY19mZfT3++7vFNd VplKdtWghlSdXCPGhHGVPPzFhsKMmEgDNe+eSi+2wLpYM3t+3AnTyAqmJVb7RePD guLiDWh3/FrRg8irfcr8umkueTk/zdjyBuLc4dZMMdK3IDJS8x7D6IW1i1Twk+ws UmKu7wXN/civIDefyPDYGfXnQ+rI+zsFUPQVzpfR5Gecdcy39wCO6HRT/G6XcRzj Ml7PUE6ki7NogPBD4T71gyDE5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGOFJ0NV AQ8Z7+zFMOuQwjRg4EUaMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFHsxbPeA4Q3BJYW74Fg3hGTYYaWbI8qNu/Pv+GhZm/ZgX/N54bMsjUC7IvZE bbM5s6h/B+1FQdzGvPFKzFuLD7f7CTRjy74VQmEPwVokeSoOZ0tMdR0d7N1fdtQA QApeeSISFLyim+AkeXCRx+rrmo0sopGAacfsFke7m8XfXE7HhIbpkMoIgArRZ7oN XXUSjdIV0oHab0KKWBf9Azm8iNbGtgcVM6SdNg9iJObcz7qFhBiWzZKWjflFnTl+ WYe0nTkbULmsEUfdhxDB/Fuyjbv9xO/HFGvvmHFYLWxFPu1ks/UQYGtVjifB+60N 4TjqjGqiADaZyOP4g3f83DkUZQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:13:50 2026 by rpki-client