$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: 9QmwuWuML3H/MAIr7T5EqLNhgoRUSGWnYuZt+61IXEM= Subject key identifier: 5B:C3:72:1A:B3:D3:2C:74:83:4C:39:FA:12:46:17:42:EF:A0:C5:8E Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 0254 Signing time: Mon 02 Mar 2026 01:57:46 +0000 Manifest this update: Mon 02 Mar 2026 01:57:42 +0000 Manifest next update: Mon 09 Mar 2026 01:57:42 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: BR0OfnNII7/oBVSkfaeDiCLP8xx/jPkpsVVzWU/z30w=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: iZ4HCtJL7rID/wZnZvAzs70hw+YNw3/gczs7CGb7Bb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Mar 2 01:57:42 2026 GMT Not After : Mar 9 01:57:42 2026 GMT Subject: CN=69a4ee99-5802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:1f:94:ba:ef:84:9a:81:76:46:cd:fc:ea:24: 28:94:0e:14:9c:47:b6:e8:84:55:d0:30:19:79:4e: 41:e9:09:1e:94:d8:ec:5b:66:7f:e8:82:0c:8a:eb: 9d:47:48:1c:29:56:f3:34:3f:7f:95:ef:7e:83:4b: d5:80:ee:f1:77:78:14:a1:4f:2f:da:9e:af:04:f1: f0:2c:67:1b:ae:3a:49:79:3f:b1:31:d7:ee:f4:1e: 97:91:70:71:98:37:36:50:81:d7:26:e0:ce:d6:90: 02:23:5d:ef:b6:04:48:26:cb:19:63:3d:0a:b6:98: e3:91:16:ea:59:3b:e4:ee:27:d7:f3:e9:5e:05:3f: f2:c4:46:3f:7d:3c:1e:44:36:17:42:a5:76:fd:41: ed:a5:22:62:d3:30:6b:31:fb:f7:85:46:0c:8a:8e: 07:02:24:13:f4:90:9f:be:c1:c8:fd:b8:1d:58:68: c1:f4:67:29:3e:59:89:ae:7b:8c:82:40:0a:b7:1e: f2:db:21:90:7a:44:4a:1a:85:75:ed:35:fd:db:ca: fe:84:7a:0a:2c:f2:ce:9f:49:07:30:d7:ed:20:be: 65:6e:10:87:38:a3:86:a9:7c:86:61:59:6d:ed:bb: d3:f5:be:89:17:0e:a9:b9:47:00:09:c5:45:80:40: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C3:72:1A:B3:D3:2C:74:83:4C:39:FA:12:46:17:42:EF:A0:C5:8E X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ae:dd:38:be:eb:c8:9d:fe:dd:a4:c2:a7:5e:0a:70:e6:c2: dd:d1:ae:8a:8f:38:54:59:d6:b8:ff:bd:82:0f:b5:33:f3:12: f1:19:70:19:3c:f3:c4:1c:45:77:62:6f:fe:d5:da:7d:a6:a7: 97:ba:36:8b:8d:fe:f9:dc:bb:e9:7a:34:60:72:20:9a:6e:f8: 50:7a:08:bb:82:01:c1:1b:a5:ff:ed:80:fb:c2:27:aa:da:0f: b4:b4:ac:5b:58:3e:bc:77:da:30:48:9e:b5:72:c0:ec:5a:5b: a7:78:2e:5f:e8:d2:4b:af:3d:6b:43:9d:e8:bf:f3:63:a9:c9: bf:4e:ea:98:11:e4:fd:48:75:fd:2f:79:0b:ed:39:18:9b:4e: 5b:ac:30:b8:e3:1b:b0:2f:45:5a:c5:ef:1f:ea:fc:cf:d6:16: 65:d9:d3:75:8d:ef:67:f7:98:26:51:39:df:ba:b0:1a:3b:76: ab:ca:54:dd:29:6d:17:ac:d7:81:2d:3d:6a:44:1d:b5:93:c5: 51:b2:36:b8:99:bd:cc:c5:18:77:d5:e9:25:3a:fa:ff:b1:7c: b0:34:0c:70:b1:4f:0f:4b:50:30:89:7a:f3:25:99:5f:82:6d: 08:bf:80:52:f7:10:28:d0:5b:e0:a6:a4:db:bc:04:db:02:50: 56:48:00:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjYwMzAyMDE1NzQyWhcNMjYwMzA5MDE1NzQyWjAYMRYwFAYD VQQDEw02OWE0ZWU5OS01ODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjx+Uuu+EmoF2Rs386iQolA4UnEe26IRV0DAZeU5B6QkelNjsW2Z/6IIMiuud R0gcKVbzND9/le9+g0vVgO7xd3gUoU8v2p6vBPHwLGcbrjpJeT+xMdfu9B6XkXBx mDc2UIHXJuDO1pACI13vtgRIJssZYz0KtpjjkRbqWTvk7ifX8+leBT/yxEY/fTwe RDYXQqV2/UHtpSJi0zBrMfv3hUYMio4HAiQT9JCfvsHI/bgdWGjB9GcpPlmJrnuM gkAKtx7y2yGQekRKGoV17TX928r+hHoKLPLOn0kHMNftIL5lbhCHOKOGqXyGYVlt 7bvT9b6JFw6puUcACcVFgEBFYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFvDchqz 0yx0g0w5+hJGF0LvoMWOMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgK7dOL7ryJ3+3aTCp14KcObC3dGuio84VFnWuP+9gg+1M/MS8RlwGTzzxBxF d2Jv/tXafaanl7o2i43++dy76Xo0YHIgmm74UHoIu4IBwRul/+2A+8InqtoPtLSs W1g+vHfaMEietXLA7Fpbp3guX+jSS689a0Od6L/zY6nJv07qmBHk/Uh1/S95C+05 GJtOW6wwuOMbsC9FWsXvH+r8z9YWZdnTdY3vZ/eYJlE537qwGjt2q8pU3SltF6zX gS09akQdtZPFUbI2uJm9zMUYd9XpJTr6/7F8sDQMcLFPD0tQMIl68yWZX4JtCL+A UvcQKNBb4Kak27wE2wJQVkgA1A== -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:06 2026 by rpki-client