$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: 4F8RPTl0ur51wU6Z1q3dPvHdmGZeifEEp1p0z5tomLU= Subject key identifier: C9:4B:D7:44:3E:4C:EF:04:A0:C9:42:3B:9E:E5:BC:91:CF:83:31:C2 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: A9 Signing time: Mon 02 Mar 2026 02:05:13 +0000 Manifest this update: Mon 02 Mar 2026 02:05:11 +0000 Manifest next update: Mon 09 Mar 2026 02:05:11 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: oOAyoFyR7v9EJirc4FmT7OLSCIQVb0lvsRojP5F8Aaw=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:05:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Mar 2 02:05:11 2026 GMT Not After : Mar 9 02:05:11 2026 GMT Subject: CN=69a4f059-088c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:3f:7d:17:62:73:9c:5c:bd:7d:db:62:68:2c: 2c:34:ec:9f:d7:74:ce:6a:e8:1a:ff:31:35:db:3a: 8e:22:44:e0:c4:87:6f:f6:96:26:0d:e0:49:bc:59: 32:b2:be:44:3c:6d:c8:71:bd:55:05:ea:5c:81:6c: cc:13:7b:71:87:2e:1f:0c:96:f5:08:00:24:53:ec: a6:9e:1c:1f:6d:dd:53:1b:ce:e6:fb:6f:30:76:3f: a8:97:96:08:f4:f1:94:85:ba:eb:89:72:2e:cc:d1: 55:5e:ee:12:c5:cb:a8:b4:fb:55:6e:a2:39:4f:7e: 4b:ba:6d:8d:fa:ae:78:85:4e:28:88:3b:c3:a5:c8: b3:b5:a4:63:7d:eb:85:61:94:43:c9:0d:07:fb:c9: 13:62:5e:a0:40:5d:50:9f:23:56:e4:3f:7f:d8:1e: 19:66:ae:b3:97:73:2d:31:0f:f6:6b:86:8a:d4:79: 7c:71:d8:00:9b:c9:db:fe:2f:4b:90:36:60:2b:2b: 30:1d:bb:47:e1:c4:f6:de:17:70:da:ef:42:ae:cb: 1f:e9:15:bb:ed:38:5e:5c:69:37:8c:e9:8d:a1:46: 29:d5:ea:46:12:5e:6c:5f:6a:b6:19:3c:f2:69:42: 07:bc:aa:c1:64:0f:ad:cf:3c:5d:2e:a2:a9:1b:36: c7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:4B:D7:44:3E:4C:EF:04:A0:C9:42:3B:9E:E5:BC:91:CF:83:31:C2 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:6b:39:fa:2e:22:35:b3:5a:86:f5:a8:d3:4c:b4:df:c2:1e: 16:bc:8f:c3:58:11:a9:d2:bc:6a:92:4a:57:17:f9:8d:64:80: 5e:99:5e:e1:39:82:a4:34:de:75:69:9c:84:59:a5:0a:08:62: cd:1f:a8:91:28:62:47:85:2a:e4:f2:26:e1:fc:51:39:bd:63: 2c:35:2e:d9:a6:15:79:c3:bd:29:f9:93:74:16:6b:b4:08:85: 56:c7:4f:e1:33:d1:9c:f1:a3:3b:f5:0a:dc:fa:e2:d5:2a:95: c9:46:db:d6:ed:e4:68:0a:2a:47:7a:b0:66:f6:ef:87:98:4e: e8:93:51:a9:1f:02:5f:2a:cd:af:04:34:4a:48:ea:f7:6d:03: 76:ae:df:10:a1:8f:74:f0:a0:6d:40:0f:b3:d7:a3:a6:94:a2: 29:96:b3:26:35:d5:27:b6:a2:76:77:67:5a:d6:b8:0f:4f:f6: 39:4c:77:b3:67:8c:e6:fb:1f:ef:06:fb:d9:b4:26:07:66:95: 45:be:f2:ad:a4:c4:7b:83:45:1c:13:d7:6d:1d:d0:ff:13:04: 7d:7c:1f:f8:73:34:e5:14:ba:f3:a0:c9:76:b4:5b:43:ae:21: 79:62:7b:ac:23:b7:d1:84:1d:25:f2:a9:94:c0:66:7e:00:96: ed:72:9a:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwMzAyMDIwNTExWhcNMjYwMzA5MDIwNTExWjAYMRYwFAYD VQQDEw02OWE0ZjA1OS0wODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhj99F2JznFy9fdtiaCwsNOyf13TOauga/zE12zqOIkTgxIdv9pYmDeBJvFky sr5EPG3Icb1VBepcgWzME3txhy4fDJb1CAAkU+ymnhwfbd1TG87m+28wdj+ol5YI 9PGUhbrriXIuzNFVXu4SxcuotPtVbqI5T35Lum2N+q54hU4oiDvDpciztaRjfeuF YZRDyQ0H+8kTYl6gQF1QnyNW5D9/2B4ZZq6zl3MtMQ/2a4aK1Hl8cdgAm8nb/i9L kDZgKyswHbtH4cT23hdw2u9Crssf6RW77TheXGk3jOmNoUYp1epGEl5sX2q2GTzy aUIHvKrBZA+tzzxdLqKpGzbHqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMlL10Q+ TO8EoMlCO57lvJHPgzHCMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAx2s5+i4iNbNahvWo00y038IeFryPw1gRqdK8apJKVxf5jWSAXple4TmCpDTe dWmchFmlCghizR+okShiR4Uq5PIm4fxROb1jLDUu2aYVecO9KfmTdBZrtAiFVsdP 4TPRnPGjO/UK3Pri1SqVyUbb1u3kaAoqR3qwZvbvh5hO6JNRqR8CXyrNrwQ0Skjq 920Ddq7fEKGPdPCgbUAPs9ejppSiKZazJjXVJ7aidndnWta4D0/2OUx3s2eM5vsf 7wb72bQmB2aVRb7yraTEe4NFHBPXbR3Q/xMEfXwf+HM05RS686DJdrRbQ64heWJ7 rCO30YQdJfKplMBmfgCW7XKaHg== -----END CERTIFICATE-----Generated at Mon Mar 2 08:34:25 2026 by rpki-client