$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: 0JN0HnvvRng3rWKsy79+vaD1+3QBP1EoC450mka/aAE= Subject key identifier: 57:A8:E3:57:A6:C8:10:62:F4:CF:5C:44:EC:17:60:95:C3:81:DE:DB Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0BBD Signing time: Mon 02 Mar 2026 00:09:07 +0000 Manifest this update: Mon 02 Mar 2026 00:09:06 +0000 Manifest next update: Mon 09 Mar 2026 00:09:06 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: W0NRKwgtJrw17XHEiNfVWEpXZO7eevJ3AXboqoyCAy0=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: BQCqQWX54EbT8FYoBvjLqnc/rF1pO4lGjEy8BVDZOX0=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1gkuDEjoW9bKvN1y3NeSWvvd5mzGWAKNaZO4Fh0ZKKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Mar 2 00:09:06 2026 GMT Not After : Mar 9 00:09:06 2026 GMT Subject: CN=69a4d522-c75d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:2e:03:4c:49:e6:fc:3e:56:93:b7:34:36: 73:62:e0:c8:a9:0f:5c:f1:c0:36:64:c3:e9:92:71: 32:43:f3:18:22:d7:95:61:e7:67:46:5d:01:14:60: f2:12:f6:a4:c7:11:cc:35:a0:e7:b8:11:15:d3:0f: 3d:58:1c:fe:cf:7c:47:4a:fc:43:67:de:3d:47:ba: 32:c3:d9:77:fb:49:a6:ea:d2:72:36:60:cc:6e:e1: 21:2d:3e:bb:e3:af:04:46:be:ea:04:84:7f:b6:c7: 69:99:18:7a:1d:10:d7:c2:c0:dc:c0:ca:61:57:a5: a2:3a:77:38:59:64:87:56:a7:67:93:8f:ed:e9:79: 0e:38:ea:c2:d4:72:85:42:58:9e:86:60:df:cd:fe: cd:02:27:b3:69:46:ec:a8:73:35:a2:90:1f:81:62: 59:52:41:31:ea:fd:db:8c:1a:e5:2a:76:ab:0d:1f: a4:18:04:54:2a:10:db:d2:c4:c4:fc:26:a3:0b:88: 76:a6:62:e8:47:07:25:20:b9:f5:26:9f:48:56:5d: 51:63:13:44:d5:77:83:a4:53:f1:8a:c0:04:85:db: da:61:73:7e:5e:51:4a:26:33:6a:1f:94:28:30:fc: 6c:fb:16:cc:48:08:37:4c:8e:b1:08:cd:6a:fc:77: 2c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A8:E3:57:A6:C8:10:62:F4:CF:5C:44:EC:17:60:95:C3:81:DE:DB X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:21:8c:6d:f9:e9:00:0c:65:d8:af:03:0f:29:96:75:66:64: 81:44:48:c8:02:6f:9e:f1:4b:3c:e0:60:63:99:06:16:4c:f3: 95:44:18:e6:9e:06:58:b8:d1:a6:44:4f:cf:06:c2:3b:27:28: 57:c1:11:52:2e:39:fc:26:57:d8:a1:9d:b6:d1:85:5d:7e:e1: 23:c8:2c:6f:9c:ef:40:a3:8b:75:e8:87:8d:df:70:db:4f:a3: 54:ac:ce:57:c2:43:bb:a4:a8:f9:f9:b9:6f:b7:ec:6c:8e:cc: 06:f5:2b:66:e7:bd:be:fa:5f:87:66:06:b7:2f:c2:64:85:f9: a7:4c:06:3a:e0:76:a5:ff:e6:12:24:05:e9:d1:39:b2:df:cd: 07:94:a5:dc:82:ff:c2:8a:ec:76:fb:71:f7:55:d0:77:b7:1a: 0c:2e:66:f8:b2:ca:b2:2e:af:cf:73:44:ef:74:14:c2:2b:dd: ae:74:13:63:f2:70:1f:c3:bb:6d:1a:83:16:17:69:1e:da:81: 9b:76:5f:cb:a0:7a:d7:da:dc:d9:bb:38:d7:32:28:7a:7e:a8: 4a:be:df:48:1a:4b:68:0a:4e:86:c7:de:04:e5:f0:4a:a3:67: 7c:d8:e2:39:55:5b:1c:23:65:4e:71:b9:e0:e0:b4:06:1c:fb: 43:17:b3:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjYwMzAyMDAwOTA2WhcNMjYwMzA5MDAwOTA2WjAYMRYwFAYD VQQDEw02OWE0ZDUyMi1jNzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYwuA0xJ5vw+VpO3NDZzYuDIqQ9c8cA2ZMPpknEyQ/MYIteVYednRl0BFGDy EvakxxHMNaDnuBEV0w89WBz+z3xHSvxDZ949R7oyw9l3+0mm6tJyNmDMbuEhLT67 468ERr7qBIR/tsdpmRh6HRDXwsDcwMphV6WiOnc4WWSHVqdnk4/t6XkOOOrC1HKF QliehmDfzf7NAiezaUbsqHM1opAfgWJZUkEx6v3bjBrlKnarDR+kGARUKhDb0sTE /CajC4h2pmLoRwclILn1Jp9IVl1RYxNE1XeDpFPxisAEhdvaYXN+XlFKJjNqH5Qo MPxs+xbMSAg3TI6xCM1q/HcsGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFeo41em yBBi9M9cROwXYJXDgd7bMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVCGMbfnpAAxl2K8DDymWdWZkgURIyAJvnvFLPOBgY5kGFkzzlUQY5p4GWLjR pkRPzwbCOycoV8ERUi45/CZX2KGdttGFXX7hI8gsb5zvQKOLdeiHjd9w20+jVKzO V8JDu6So+fm5b7fsbI7MBvUrZue9vvpfh2YGty/CZIX5p0wGOuB2pf/mEiQF6dE5 st/NB5Sl3IL/worsdvtx91XQd7caDC5m+LLKsi6vz3NE73QUwivdrnQTY/JwH8O7 bRqDFhdpHtqBm3Zfy6B619rc2bs41zIoen6oSr7fSBpLaApOhsfeBOXwSqNnfNji OVVbHCNlTnG54OC0Bhz7QxezUA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:17:33 2026 by rpki-client