$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: eXjqwg7PNspZGksWfYHQB78okiINNFSkkiVHzihNuLI= Subject key identifier: 4C:19:97:E8:57:C8:88:A5:67:3C:91:CD:B3:64:5F:66:B5:2A:5F:33 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: 0135 Signing time: Sun 01 Mar 2026 06:27:03 +0000 Manifest this update: Sun 01 Mar 2026 06:27:02 +0000 Manifest next update: Sun 08 Mar 2026 06:27:02 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: 41kTrbglgDaEh/vpfyc3lwZbtwBjnkro7SxAt7Xso98=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Mar 1 06:27:02 2026 GMT Not After : Mar 8 06:27:02 2026 GMT Subject: CN=69a3dc36-29b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:29:50:90:0a:dd:ef:4d:ef:de:40:dc:67: c0:82:c7:81:25:7a:93:cd:0f:bb:03:df:ba:72:82: fd:f1:35:bf:5f:30:4d:38:81:b6:42:20:84:09:fe: 70:c8:88:9e:67:95:0d:7a:c5:f9:a3:e7:e9:ce:c7: c8:62:58:0e:35:ab:37:1f:28:46:10:e2:4f:41:2b: d3:94:f5:f9:c6:3b:e4:ca:34:b0:f9:6f:b8:2d:da: 39:ae:e3:b1:30:3c:16:d1:fc:0b:4f:ee:e5:da:eb: 01:3b:ae:fe:5a:f0:0e:6b:bc:4c:fc:db:89:d2:f1: e5:de:38:7a:33:cb:29:e5:a8:3f:1d:e1:40:3d:85: 46:fd:79:36:ef:11:08:16:8b:9e:a8:d8:51:d2:a2: 0d:d6:52:5b:ea:85:b6:fb:c2:dd:25:63:18:e3:08: f3:af:63:4a:e4:a0:5d:20:c2:01:36:b1:b2:9a:61: ff:b9:1f:a0:de:ed:3b:14:a2:5f:0b:b5:86:a3:39: 12:1e:24:cf:10:ad:f9:05:6c:5e:54:41:0e:48:65: d4:e5:d8:2a:82:0d:b0:bd:2a:a7:9f:d9:fc:82:74: e8:8b:06:47:44:7b:de:d4:76:f6:e8:93:61:b8:4d: 8c:20:e3:b1:84:0d:e9:d5:e6:48:e7:fa:04:e8:1e: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:19:97:E8:57:C8:88:A5:67:3C:91:CD:B3:64:5F:66:B5:2A:5F:33 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:a3:d6:4d:f7:fc:61:04:a6:48:1c:6f:c2:82:3f:85:74:46: 13:ae:35:02:df:16:51:81:1b:ec:16:a4:da:2f:43:e1:ff:86: 56:d1:96:bc:21:00:bc:4c:9c:81:7b:d0:65:b6:8c:a9:ce:41: c9:c2:d5:2e:75:28:78:02:b8:34:ed:de:e3:55:3a:05:93:50: 98:eb:12:83:c5:46:b2:40:25:e6:cc:e7:c9:be:92:d1:a4:6f: 15:09:34:19:9d:f0:14:44:80:4f:61:7a:84:79:b2:7f:0c:bb: 11:ec:67:68:7a:43:bb:47:b4:05:ab:33:e6:f1:86:1e:ab:a0: 53:07:8c:9e:13:7b:28:ff:89:94:51:66:b6:19:a5:1f:1d:33: 3a:83:e2:ba:55:bb:51:96:21:30:97:49:0e:0f:cb:c8:8b:6c: c5:14:fb:eb:1d:aa:6f:3e:a6:a3:40:a3:0f:8c:91:fb:d4:c1: 9e:2b:b2:6b:02:36:c8:d4:57:4f:1a:f3:88:6a:12:c4:73:cf: 97:5a:c5:a5:7e:16:1b:3a:42:26:e3:c2:fe:d2:9a:6c:df:fd: 73:80:fd:b3:71:47:6c:72:ef:8d:b0:d1:c1:be:b5:9d:02:a8: 83:7b:20:96:fb:43:01:4b:b3:3b:b3:82:53:95:c8:1f:3c:79: cb:50:59:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjYwMzAxMDYyNzAyWhcNMjYwMzA4MDYyNzAyWjAYMRYwFAYD VQQDEw02OWEzZGMzNi0yOWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYcpUJAK3e9N795A3GfAgseBJXqTzQ+7A9+6coL98TW/XzBNOIG2QiCECf5w yIieZ5UNesX5o+fpzsfIYlgONas3HyhGEOJPQSvTlPX5xjvkyjSw+W+4Ldo5ruOx MDwW0fwLT+7l2usBO67+WvAOa7xM/NuJ0vHl3jh6M8sp5ag/HeFAPYVG/Xk27xEI FoueqNhR0qIN1lJb6oW2+8LdJWMY4wjzr2NK5KBdIMIBNrGymmH/uR+g3u07FKJf C7WGozkSHiTPEK35BWxeVEEOSGXU5dgqgg2wvSqnn9n8gnToiwZHRHve1Hb26JNh uE2MIOOxhA3p1eZI5/oE6B6IEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEwZl+hX yIilZzyRzbNkX2a1Kl8zMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu6PWTff8YQSmSBxvwoI/hXRGE641At8WUYEb7Bak2i9D4f+GVtGWvCEAvEyc gXvQZbaMqc5BycLVLnUoeAK4NO3e41U6BZNQmOsSg8VGskAl5sznyb6S0aRvFQk0 GZ3wFESAT2F6hHmyfwy7EexnaHpDu0e0Basz5vGGHqugUweMnhN7KP+JlFFmthml Hx0zOoPiulW7UZYhMJdJDg/LyItsxRT76x2qbz6mo0CjD4yR+9TBniuyawI2yNRX TxrziGoSxHPPl1rFpX4WGzpCJuPC/tKabN/9c4D9s3FHbHLvjbDRwb61nQKog3sg lvtDAUuzO7OCU5XIHzx5y1BZQw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:48:52 2026 by rpki-client