$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: G6FEITb6rQLw4RX6NFLAoTgHUIoz8ryYNFbI0oUl6rI= Subject key identifier: A2:54:80:8D:2E:D5:62:CF:1B:71:1F:41:A7:AA:0B:FC:62:A9:21:91 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 04BF Signing time: Mon 02 Mar 2026 02:24:03 +0000 Manifest this update: Mon 02 Mar 2026 02:24:01 +0000 Manifest next update: Mon 09 Mar 2026 02:24:01 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: dKcZipvsy+fuj0fFTv2p/rlSYMamhCzvHgJd5GuDPFo=) 2: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: xijaZu6pAwwNLd6WONxWQ6mZqU3GdiHzZC1uaLYBENo=) 3: E84DD6FAC9C311F0ACE5A118C4F9AE02.roa (hash: u2rzRUism7xTPxp63V3W7DOQwUN/ky3ASLXGx242uU8=) 4: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: GS31bTdPfKVJ1J6UCJ9YLKFQUEEmZi77Y2aiEp3HKVY=) 5: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: w1LkgMGS8oqwPRuQKx3FjuBZt3rf+t0hZFmWkXtaaSY=) 6: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: D21a7LlMu8RnxWZ8YgRZ6sV/m0f2ZXrJTQlAZBy166E=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: a2Eak+r8Eojdu+clly0gi9Nawkq6TirHUh3AZGHAXRg=) 8: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: kXgZNQ9cWIHfXiEIAxnhKXY51BGRFvcRzJmJYDyHg78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Mar 2 02:24:01 2026 GMT Not After : Mar 9 02:24:01 2026 GMT Subject: CN=69a4f4c2-c6dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8a:d1:77:c2:3a:58:94:bb:f8:5e:17:47:07: 3e:fc:34:93:a8:e4:72:fe:cc:67:71:17:fd:2d:f3: b8:3b:3a:a0:cd:97:9a:cc:42:65:f5:24:8c:a9:5c: bf:cf:77:02:79:0f:ba:11:4b:e1:15:b4:8e:94:42: 29:c6:4f:0c:22:94:c0:2f:56:27:c3:4d:b4:72:ba: 2d:d5:52:39:77:ca:09:c9:ad:f8:2e:f1:26:0c:ba: 7e:30:ae:b2:16:a9:ab:1e:d4:a2:65:ac:7e:2b:f3: 86:4a:ad:d7:28:61:a0:44:1e:99:7c:d2:ee:a8:70: 55:98:30:ab:cd:83:76:85:a0:dd:31:aa:24:ea:04: 1e:0a:d3:4a:f5:a6:7e:09:dd:84:64:fd:03:75:08: 87:7c:59:4c:1d:c5:2b:22:c5:cf:55:49:b9:ef:10: d7:93:bc:45:b8:4a:e6:9c:f1:04:51:a5:19:78:7b: 8f:38:19:93:11:e0:51:d6:b0:e4:bf:99:44:c3:f5: 73:58:4a:6f:b8:33:e0:a1:21:59:a1:f2:e9:29:6a: e5:86:16:fb:dd:63:f6:70:30:f3:47:fc:f6:40:47: 93:e9:fc:27:d8:68:1d:91:07:37:4a:08:21:13:64: 9d:5a:80:59:c8:e9:6b:cb:8b:fe:54:11:ee:fc:1a: 8b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:54:80:8D:2E:D5:62:CF:1B:71:1F:41:A7:AA:0B:FC:62:A9:21:91 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4b:c8:94:fc:b4:36:0b:0c:2a:71:11:d5:ae:b9:43:79:a4: 16:ac:d3:ac:6e:c6:19:21:6d:5c:9f:d6:38:f9:2e:9c:6c:ea: 49:93:2e:b5:90:87:4e:0d:7d:0d:70:87:19:ff:5f:5c:7b:21: 72:3c:f3:67:7a:eb:59:29:c9:d4:af:a2:c1:72:38:f5:5b:3e: 6e:64:48:84:b3:5a:dc:cd:75:e6:6d:49:45:88:64:46:19:42: 1c:4e:41:dc:05:7e:20:66:4e:f7:50:d1:86:c2:a6:be:f3:b5: ce:bc:cd:3d:52:fe:c1:78:98:11:74:fb:8f:fb:41:e9:c8:c9: d1:02:cf:40:9c:79:6b:75:0f:d3:5e:6c:4a:30:42:92:5a:53: 7f:54:c7:12:8a:6a:81:4e:2a:06:54:21:ac:e6:46:9e:70:5f: ba:62:18:7e:29:a0:73:b9:39:b5:2f:0e:a4:a4:39:0a:3b:cf: 57:e4:ee:af:bc:55:10:f0:d6:3c:79:f2:6d:75:26:62:2e:8f: 90:de:98:18:71:4f:15:33:c7:ac:a7:46:c1:13:2b:47:b5:bb: 22:06:f1:60:1a:53:af:77:c4:1d:34:5e:d3:41:21:3a:17:4d: 97:3e:1c:d7:49:59:16:d8:13:5e:1e:88:7a:8b:c9:40:e8:27: 06:ee:be:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjYwMzAyMDIyNDAxWhcNMjYwMzA5MDIyNDAxWjAYMRYwFAYD VQQDEw02OWE0ZjRjMi1jNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6YrRd8I6WJS7+F4XRwc+/DSTqORy/sxncRf9LfO4OzqgzZeazEJl9SSMqVy/ z3cCeQ+6EUvhFbSOlEIpxk8MIpTAL1Ynw020crot1VI5d8oJya34LvEmDLp+MK6y FqmrHtSiZax+K/OGSq3XKGGgRB6ZfNLuqHBVmDCrzYN2haDdMaok6gQeCtNK9aZ+ Cd2EZP0DdQiHfFlMHcUrIsXPVUm57xDXk7xFuErmnPEEUaUZeHuPOBmTEeBR1rDk v5lEw/VzWEpvuDPgoSFZofLpKWrlhhb73WP2cDDzR/z2QEeT6fwn2GgdkQc3Sggh E2SdWoBZyOlry4v+VBHu/BqL/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJUgI0u 1WLPG3EfQaeqC/xiqSGRMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkUvIlPy0NgsMKnER1a65Q3mkFqzTrG7GGSFtXJ/WOPkunGzqSZMutZCHTg19 DXCHGf9fXHshcjzzZ3rrWSnJ1K+iwXI49Vs+bmRIhLNa3M115m1JRYhkRhlCHE5B 3AV+IGZO91DRhsKmvvO1zrzNPVL+wXiYEXT7j/tB6cjJ0QLPQJx5a3UP015sSjBC klpTf1THEopqgU4qBlQhrOZGnnBfumIYfimgc7k5tS8OpKQ5CjvPV+Tur7xVEPDW PHnybXUmYi6PkN6YGHFPFTPHrKdGwRMrR7W7IgbxYBpTr3fEHTRe00EhOhdNlz4c 10lZFtgTXh6IeovJQOgnBu6+QA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:12 2026 by rpki-client