$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: HPZwuTJdXi/nr/UhVKlMGImWOEC2wspTKQdfjZ/TyEs= Subject key identifier: 56:BD:40:12:1E:F7:B9:B9:23:8A:D1:11:A1:9A:15:F1:F2:77:B0:90 Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 0A18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 0A04 Signing time: Mon 02 Mar 2026 03:01:42 +0000 Manifest this update: Mon 02 Mar 2026 03:01:40 +0000 Manifest next update: Mon 09 Mar 2026 03:01:40 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: V/fTcWeOSa7iSDcxzRMnFVfZae007Ck2PqUSA8I/mJE=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: b+aLVYk2tgs7wuTrLgj88F2Zzs9HvJ7ppCzvA/wlonM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C, serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Mar 2 03:01:40 2026 GMT Not After : Mar 9 03:01:40 2026 GMT Subject: CN=69a4fd96-4b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:24:6a:c6:32:76:51:97:d9:4c:65:10:cc:13: 38:38:9c:55:67:ce:5f:bd:d1:1b:56:97:4d:80:ac: ab:9d:9e:a9:5c:f2:1f:4e:b9:91:04:ad:cb:2b:4c: 07:89:1e:34:a6:1a:32:b2:4d:b2:60:e8:5f:0b:5f: 74:e6:a8:4e:8b:a5:77:9c:8f:9e:e4:51:d6:91:99: 50:62:ea:07:a3:02:2e:d8:e8:5d:03:3d:a0:2d:26: 0e:7a:f4:64:84:c2:29:32:f8:c6:d1:71:70:b1:9b: 0f:08:6e:d9:e7:36:aa:c4:6f:c9:b8:9c:08:ab:6d: 0b:89:be:98:44:94:fb:c7:63:80:d0:61:bf:05:5f: 2e:a1:50:10:fc:a5:f0:45:bb:2e:0b:cc:87:81:e8: f4:97:0f:e7:4d:3d:10:5a:82:78:de:7a:fe:d0:f7: d7:b4:b4:cf:9e:df:9a:f1:3c:7c:5c:20:cb:20:21: de:81:fa:ac:b7:db:6c:fb:a2:1c:b5:65:3d:8c:c5: 2a:b8:58:70:1c:a7:10:70:02:b6:b5:b3:e8:00:70: ed:74:cd:07:14:44:c3:92:5d:e1:ea:a9:d0:91:d1: 47:f0:c5:cb:7e:e7:3f:9e:cc:1b:7d:6a:7e:cc:e2: 03:7b:ba:23:b4:0a:a0:61:47:78:58:32:7a:36:6e: 47:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BD:40:12:1E:F7:B9:B9:23:8A:D1:11:A1:9A:15:F1:F2:77:B0:90 X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ac:ed:f2:e0:8c:78:dd:bc:89:0a:2f:13:46:fe:28:52:6f: a3:9d:28:10:e8:39:cb:e7:e3:27:59:29:0d:e2:34:40:e1:e0: 4e:aa:db:65:01:31:7f:2c:2a:c3:9c:51:86:58:5e:d3:18:81: 37:41:bf:b5:36:18:c0:03:6b:da:e3:56:f5:c0:0d:88:49:91: cf:38:81:72:18:9e:d7:4a:71:fd:02:06:f9:a3:9a:85:48:9c: 43:2d:8f:a4:4f:41:1a:bb:07:e8:3c:79:44:94:e7:50:97:f4: 07:55:2c:7d:73:32:41:e6:5f:e9:6b:b8:41:30:49:fd:fe:8e: 2d:f5:fd:2e:65:6e:7e:02:93:ca:ba:dd:0e:30:78:ec:b4:6f: 92:0d:d8:b6:de:79:c0:90:d9:0e:9e:3e:f8:7c:67:4f:93:7b: f0:c4:c8:3e:00:13:b7:b0:b7:53:2d:24:9a:04:ca:94:48:0b: 21:51:9d:ba:39:be:e4:11:fe:93:83:01:20:80:31:f0:d8:28: 22:41:0f:64:42:51:64:e0:7d:39:3f:42:cc:04:c8:91:72:f1: 95:6d:1b:81:af:ea:f6:21:2d:1e:68:41:35:48:f3:ed:43:a3: e0:ca:c5:72:ef:58:dc:33:16:5a:9f:80:eb:fa:ee:54:6e:67: 59:d9:db:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjYwMzAyMDMwMTQwWhcNMjYwMzA5MDMwMTQwWjAYMRYwFAYD VQQDEw02OWE0ZmQ5Ni00YjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAliRqxjJ2UZfZTGUQzBM4OJxVZ85fvdEbVpdNgKyrnZ6pXPIfTrmRBK3LK0wH iR40phoysk2yYOhfC1905qhOi6V3nI+e5FHWkZlQYuoHowIu2OhdAz2gLSYOevRk hMIpMvjG0XFwsZsPCG7Z5zaqxG/JuJwIq20Lib6YRJT7x2OA0GG/BV8uoVAQ/KXw RbsuC8yHgej0lw/nTT0QWoJ43nr+0PfXtLTPnt+a8Tx8XCDLICHegfqst9ts+6Ic tWU9jMUquFhwHKcQcAK2tbPoAHDtdM0HFETDkl3h6qnQkdFH8MXLfuc/nswbfWp+ zOIDe7ojtAqgYUd4WDJ6Nm5HewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFa9QBIe 97m5I4rREaGaFfHyd7CQMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdazt8uCMeN28iQovE0b+KFJvo50oEOg5y+fjJ1kpDeI0QOHgTqrbZQExfywq w5xRhlhe0xiBN0G/tTYYwANr2uNW9cANiEmRzziBchie10px/QIG+aOahUicQy2P pE9BGrsH6Dx5RJTnUJf0B1UsfXMyQeZf6Wu4QTBJ/f6OLfX9LmVufgKTyrrdDjB4 7LRvkg3Ytt55wJDZDp4++HxnT5N78MTIPgATt7C3Uy0kmgTKlEgLIVGdujm+5BH+ k4MBIIAx8NgoIkEPZEJRZOB9OT9CzATIkXLxlW0bga/q9iEtHmhBNUjz7UOj4MrF cu9Y3DMWWp+A6/ruVG5nWdnbeA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:24:10 2026 by rpki-client