$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: ZV/elbNEzjwLNnkshyTxufUXVNT2SPmH4M87DyNu9T4= Subject key identifier: 87:58:F5:04:F2:F1:07:01:15:37:F4:7F:DF:A8:D5:2F:25:A3:BD:17 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 0171 Signing time: Sun 01 Mar 2026 05:46:00 +0000 Manifest this update: Sun 01 Mar 2026 05:45:59 +0000 Manifest next update: Sun 08 Mar 2026 05:45:59 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: K2Cw6ePRvCqvonqRp4kmOSIvhNuYw/T6B/vQGwHzOos=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: WXs23PC9oNPUDjoMufc2iqduojTIGtlpeP1luMoHhDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Mar 1 05:45:59 2026 GMT Not After : Mar 8 05:45:59 2026 GMT Subject: CN=69a3d297-9fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:df:90:bc:7d:f7:a9:88:99:d9:0d:ec:1b:40: 53:99:5d:3d:2a:91:2f:c7:4f:85:b1:bf:f0:9f:df: 47:4e:35:a4:df:d7:92:15:63:0e:e6:06:8f:4c:73: b4:3c:98:8f:72:6e:1d:bb:6e:38:23:a8:bf:87:17: 54:7a:88:3b:0c:21:25:ba:98:b2:e0:c6:09:2f:54: 8c:60:a9:bc:e9:dc:e5:50:b6:54:3e:57:54:e8:07: 65:42:62:2e:64:5c:1b:79:72:39:ce:5c:c6:47:7a: 27:0d:18:ca:e8:50:8a:c8:4b:9a:0a:e0:6a:e5:a7: 61:fd:b9:d3:3f:70:1b:bb:a4:27:d7:be:61:b4:83: b5:03:67:5f:1c:72:16:3f:6f:58:a6:ab:6d:75:35: 68:85:b4:0a:96:fe:dd:57:48:57:16:de:71:2e:ea: 5d:7d:a8:cc:65:75:9a:10:fb:7d:89:d7:2e:df:59: 53:c0:18:f1:95:68:de:b0:0c:bc:9a:dc:16:5b:3d: 17:92:fe:e4:82:e2:80:b3:00:a3:14:34:31:47:df: ea:6b:e2:01:d7:e8:f5:8c:5f:44:8f:68:21:fd:a6: 25:e0:21:cc:cf:96:3b:be:64:f6:13:97:51:52:95: 1c:23:4f:2b:cc:32:84:21:fe:01:fe:68:29:03:d3: db:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:58:F5:04:F2:F1:07:01:15:37:F4:7F:DF:A8:D5:2F:25:A3:BD:17 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:3b:71:b3:61:72:8a:3f:27:6e:fd:60:a6:67:32:2c:3a:fa: 72:ef:89:cb:c0:8c:00:9b:0b:79:2f:42:5b:a6:92:71:dd:9a: 75:7c:b2:a5:26:a0:47:9f:00:c8:09:3b:53:a5:3b:b9:7f:98: e7:28:28:3c:64:17:f0:66:aa:f0:2d:4f:cf:4a:59:2d:de:b6: 6c:ac:05:33:25:6a:91:a1:19:47:b8:b6:3b:71:12:3e:e1:04: 5b:09:38:ee:c5:fd:ec:6f:3a:e7:59:1d:88:63:55:d7:ef:d5: 1e:1b:3d:96:56:81:cc:16:65:50:b5:57:9e:1e:94:2d:21:31: 46:61:c1:c9:ea:ae:78:42:b5:69:9c:fa:d9:fb:da:2f:46:e9: e5:1d:08:ff:f0:30:29:c3:0f:d4:28:0d:60:40:23:00:bb:df: 59:70:32:bd:cb:b0:4f:ac:fa:bc:2a:3a:12:e0:94:40:4b:b4: 93:c3:03:15:d9:42:62:e4:5e:cc:ce:98:d0:e6:89:9c:a1:03: ec:51:58:10:2b:a4:e1:67:2e:86:a5:80:36:7b:17:8c:17:bd: d6:0d:64:b7:28:56:fd:4f:4d:1c:8f:bb:33:fc:ce:2f:83:df: 97:61:7e:db:c7:88:f6:f4:3d:50:63:b5:42:d7:c8:23:d4:ee: ca:d1:4a:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjYwMzAxMDU0NTU5WhcNMjYwMzA4MDU0NTU5WjAYMRYwFAYD VQQDEw02OWEzZDI5Ny05ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkt+QvH33qYiZ2Q3sG0BTmV09KpEvx0+Fsb/wn99HTjWk39eSFWMO5gaPTHO0 PJiPcm4du244I6i/hxdUeog7DCElupiy4MYJL1SMYKm86dzlULZUPldU6AdlQmIu ZFwbeXI5zlzGR3onDRjK6FCKyEuaCuBq5adh/bnTP3Abu6Qn175htIO1A2dfHHIW P29YpqttdTVohbQKlv7dV0hXFt5xLupdfajMZXWaEPt9idcu31lTwBjxlWjesAy8 mtwWWz0Xkv7kguKAswCjFDQxR9/qa+IB1+j1jF9Ej2gh/aYl4CHMz5Y7vmT2E5dR UpUcI08rzDKEIf4B/mgpA9PbSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIdY9QTy 8QcBFTf0f9+o1S8lo70XMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjDtxs2Fyij8nbv1gpmcyLDr6cu+Jy8CMAJsLeS9CW6aScd2adXyypSagR58A yAk7U6U7uX+Y5ygoPGQX8Gaq8C1Pz0pZLd62bKwFMyVqkaEZR7i2O3ESPuEEWwk4 7sX97G8651kdiGNV1+/VHhs9llaBzBZlULVXnh6ULSExRmHByequeEK1aZz62fva L0bp5R0I//AwKcMP1CgNYEAjALvfWXAyvcuwT6z6vCo6EuCUQEu0k8MDFdlCYuRe zM6Y0OaJnKED7FFYECuk4WcuhqWANnsXjBe91g1ktyhW/U9NHI+7M/zOL4Pfl2F+ 28eI9vQ9UGO1QtfII9TuytFKSQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:23:03 2026 by rpki-client