$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft File: PQaSnY1eH2juI-yj-UjP96LklbM.mft (raw, json) Hash identifier: MguoFJWyhev+jQkTEc47e/vr0DNGGRa/Nte99ZO7Djs= Subject key identifier: 8D:6E:65:74:9E:0A:EE:91:7C:3B:C9:EB:76:AF:16:E3:D1:21:01:4A Authority key identifier: 3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 Certificate issuer: /CN=A91DDCD9/serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft Manifest number: 0BB2 Signing time: Sun 01 Mar 2026 22:19:42 +0000 Manifest this update: Sun 01 Mar 2026 22:19:41 +0000 Manifest next update: Sun 08 Mar 2026 22:19:41 +0000 Files and hashes: 1: PQaSnY1eH2juI-yj-UjP96LklbM.crl (hash: mQe3cnURXjAzjSypdhpEJL6Gjw+M8xCoLIt8pPt2cJ0=) 2: 4140D222AB0511F0AD64C814C4F9AE02.roa (hash: lm+nFcqH0a+9WsNgR01SH0qMnw/FVhg7/KwG6EmLyBA=) 3: 41D7A1D4AB0511F0AD64C814C4F9AE02.roa (hash: rShfJxqE0h5coYqcR6ikXPA4HtTIMuqnQcLhGpxQm7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCD9, serialNumber=3D06929D8D5E1F68EE23ECA3F948CFF7A2E495B3 Validity Not Before: Mar 1 22:19:41 2026 GMT Not After : Mar 8 22:19:41 2026 GMT Subject: CN=69a4bb7d-7eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:55:c7:59:2e:3a:bb:eb:07:2f:47:04:b2:c1: 2e:e3:57:64:1d:d8:13:15:85:c9:3c:1e:69:41:81: d9:72:82:8d:2f:9e:59:a8:3e:c5:6b:fa:a2:da:0b: a3:e5:3c:f5:b0:f1:db:58:d5:db:8b:f6:77:5a:52: 92:17:03:d5:25:af:5d:b4:d7:72:49:ce:74:8f:f1: f9:a1:24:bc:23:4e:9d:9b:a3:f3:cb:d5:e4:a7:e1: b0:43:19:ae:40:cf:34:0c:c8:ca:cc:86:45:56:80: f4:8c:c3:c4:1c:51:ab:39:bb:a9:4a:33:15:95:46: 78:a8:71:62:b8:b9:c3:48:94:d3:7d:2f:31:ca:30: 7a:cb:4e:df:06:4b:ae:54:36:02:11:f2:6b:27:2c: 49:d3:49:b2:d7:d0:80:8c:fe:87:a0:73:71:35:71: 8f:fe:05:21:3e:a5:bb:24:37:6c:b7:ad:45:cf:d9: d1:ae:eb:fd:2a:f4:71:36:9c:aa:d1:4a:53:d2:5a: 22:27:18:9d:d4:36:7f:d4:68:a7:76:82:59:5c:e3: ef:2d:84:8c:04:9b:4c:ae:1a:4a:2e:b2:33:f0:dd: a4:45:77:0d:7f:62:c1:1f:c0:3d:f1:5c:db:a2:ea: 64:79:22:60:a9:fd:b0:fb:a2:85:30:c6:be:85:94: cf:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6E:65:74:9E:0A:EE:91:7C:3B:C9:EB:76:AF:16:E3:D1:21:01:4A X509v3 Authority Key Identifier: keyid:3D:06:92:9D:8D:5E:1F:68:EE:23:EC:A3:F9:48:CF:F7:A2:E4:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQaSnY1eH2juI-yj-UjP96LklbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/PQaSnY1eH2juI-yj-UjP96LklbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:21:15:bd:df:7e:0d:92:e2:7a:0d:97:35:c1:bd:7d:3b:1a: 29:62:03:50:55:5a:09:21:1d:23:f3:e2:ce:49:33:b5:68:ce: 88:a0:bb:65:e9:f2:fc:ae:da:a6:78:ce:c0:af:d4:46:74:0f: a1:a4:72:4d:e7:05:ac:d1:ce:7d:ee:ab:7b:78:16:96:2a:99: c2:1f:bf:f7:48:7e:d3:67:4b:8b:94:d0:fd:53:3d:2f:6d:de: ea:1d:b9:2c:b7:34:e3:68:34:a2:6a:77:16:d2:e2:9b:1f:b0: 29:e5:0e:f2:e6:7e:6a:ce:c1:44:fb:db:6a:5f:71:f1:5f:53: c3:47:76:19:70:47:1d:da:04:c8:c9:e3:b8:1a:47:dd:01:e0: f2:42:8c:59:8a:34:8b:6c:51:db:ad:bb:2a:3a:76:f3:34:2c: 35:81:31:cf:9c:28:f2:da:e8:b6:dc:d4:88:0d:62:9b:62:15: 2f:34:99:e0:40:5d:c0:2b:a1:1d:b3:3a:92:1b:45:d1:ae:36: 0a:f0:09:b6:6f:ee:3d:ab:35:ce:8e:e8:de:03:4b:d3:08:73: 32:f1:b3:3f:4f:a8:b6:79:ae:a4:54:56:90:53:ee:59:e2:80: 86:95:59:85:49:0a:38:3b:4e:a8:30:1d:11:1d:33:ac:f9:32: 67:ea:ad:e2 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RENEOTExMC8GA1UEBRMoM0QwNjkyOUQ4RDVFMUY2OEVFMjNFQ0EzRjk0OENGRjdB MkU0OTVCMzAeFw0yNjAzMDEyMjE5NDFaFw0yNjAzMDgyMjE5NDFaMBgxFjAUBgNV BAMTDTY5YTRiYjdkLTdlYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxVcdZLjq76wcvRwSywS7jV2Qd2BMVhck8HmlBgdlygo0vnlmoPsVr+qLaC6Pl PPWw8dtY1duL9ndaUpIXA9Ulr12013JJznSP8fmhJLwjTp2bo/PL1eSn4bBDGa5A zzQMyMrMhkVWgPSMw8QcUas5u6lKMxWVRniocWK4ucNIlNN9LzHKMHrLTt8GS65U NgIR8msnLEnTSbLX0ICM/oegc3E1cY/+BSE+pbskN2y3rUXP2dGu6/0q9HE2nKrR SlPSWiInGJ3UNn/UaKd2gllc4+8thIwEm0yuGkousjPw3aRFdw1/YsEfwD3xXNui 6mR5ImCp/bD7ooUwxr6FlM8NAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUjW5ldJ4K 7pF8O8nrdq8W49EhAUowHwYDVR0jBBgwFoAUPQaSnY1eH2juI+yj+UjP96LklbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREQ0Q5LzQxMEJCQzE0NEU2 QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJqdUkteWotVWpQOTZMa2xi TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFFhU25ZMWVIMmp1SS15ai1ValA5NkxrbGJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE Q0Q5LzQxMEJCQzE0NEU2QzExRUE4OTA0OTc0N0M0RjlBRTAyL1BRYVNuWTFlSDJq dUkteWotVWpQOTZMa2xiTS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCbIRW9334NkuJ6DZc1wb19OxopYgNQVVoJIR0j8+LOSTO1aM6IoLtl6fL8rtqm eM7Ar9RGdA+hpHJN5wWs0c597qt7eBaWKpnCH7/3SH7TZ0uLlND9Uz0vbd7qHbks tzTjaDSiancW0uKbH7Ap5Q7y5n5qzsFE+9tqX3HxX1PDR3YZcEcd2gTIyeO4Gkfd AeDyQoxZijSLbFHbrbsqOnbzNCw1gTHPnCjy2ui23NSIDWKbYhUvNJngQF3AK6Ed szqSG0XRrjYK8Am2b+49qzXOjujeA0vTCHMy8bM/T6i2ea6kVFaQU+5Z4oCGlVmF SQo4O06oMB0RHTOs+TJn6q3i -----END CERTIFICATE-----Generated at Mon Mar 2 04:16:56 2026 by rpki-client