$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: Nrwz3kMLmrEdk/6XmFrgkJ2ioYhGqIlQT2a6IubXf+M= Subject key identifier: F2:BE:0D:AA:B3:26:FE:31:61:66:AE:6D:82:85:19:B6:FB:3D:15:E9 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 08DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 08D5 Signing time: Sat 28 Feb 2026 20:42:52 +0000 Manifest this update: Sat 28 Feb 2026 20:42:51 +0000 Manifest next update: Sat 07 Mar 2026 20:42:51 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: EjpvZZXCTapzdQw44uovGQfV2d2jz4qKjxlIJcKMMxk=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: YDlJJK3r3QY2jge7AOb3CYnCW+wC8nrMDrmyeODCDi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2270 (0x8de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Feb 28 20:42:51 2026 GMT Not After : Mar 7 20:42:51 2026 GMT Subject: CN=69a3534b-624c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:20:c0:14:fd:c8:49:9b:e5:e6:64:ef:b8:1d: 92:ec:52:39:ea:95:a7:e3:98:da:ae:ac:7a:b2:c3: b1:31:97:a4:23:f6:29:38:57:cf:01:47:e3:82:64: 16:79:ad:de:59:22:17:08:f1:96:28:7a:b9:86:a3: f9:9d:b7:b5:98:25:1e:49:56:ca:2c:8c:01:d3:84: 5a:fd:59:67:23:98:8e:08:7b:e1:75:b4:24:14:2c: b3:82:b8:35:8c:5e:3e:cd:48:b4:b7:a3:fd:66:91: f0:14:fc:a3:d7:1a:ca:21:23:78:40:b2:65:95:f5: 33:d4:ea:ef:b0:b3:56:81:b0:85:d0:e1:3f:2e:ed: 04:97:b8:35:e9:a1:75:d9:c5:24:58:e3:0d:8e:d3: 45:5d:2a:36:f0:af:eb:18:e3:bf:41:09:b3:ba:49: 8b:3a:43:ba:69:c5:0d:24:59:91:b6:2e:af:55:3b: 86:f0:59:ff:fb:1f:57:59:45:20:28:03:66:88:52: 8a:80:4e:3d:21:11:2c:2e:13:e7:e1:90:fd:31:95: 6a:12:3a:f0:3d:fb:f7:8d:01:78:83:b5:d5:c3:d2: 56:2e:b7:12:ba:97:71:48:af:44:f1:c8:89:1d:1f: e4:96:5a:81:07:0a:04:c4:f6:56:27:46:32:01:30: d1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BE:0D:AA:B3:26:FE:31:61:66:AE:6D:82:85:19:B6:FB:3D:15:E9 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:59:42:7b:eb:68:52:74:ed:ec:a2:e6:ba:d7:e6:1d:9f:d3: 8c:38:88:30:53:79:7d:c7:37:8f:4c:49:66:32:d3:14:86:2e: 1f:6f:6c:07:42:9e:78:a7:59:7c:09:7d:49:18:12:7d:01:ed: 61:b3:d5:16:ca:8c:85:5b:b3:46:76:31:90:1e:f1:33:ca:6d: 3a:9b:00:8f:76:62:9d:94:ab:b1:68:e3:81:1c:48:13:d5:0f: 8b:db:89:d1:75:ea:b5:1a:a8:3c:a9:92:93:a0:c1:b9:78:eb: 8d:9b:e7:01:09:4f:6f:1b:be:b3:bf:18:1a:dd:f0:b2:6f:ed: 7a:c7:84:2b:a0:7d:e2:63:4b:57:bb:0e:05:3b:c3:90:43:65: 37:3f:80:a5:bd:09:29:b6:6c:87:0e:99:b1:7d:66:42:4b:54: 63:77:3b:83:cb:10:a6:03:9e:7a:30:d0:1e:6f:72:1e:57:8e: 20:fb:0c:a8:0b:02:dc:fb:d2:b8:6d:84:92:e1:22:01:cd:d1: b0:ab:e1:38:b6:8e:2c:4f:ed:12:23:b7:05:4e:7f:d1:dc:7c: 4e:0a:e1:b1:c8:48:cc:e6:bc:dc:01:3e:fa:5a:ea:fb:8b:26: 4f:b9:64:4a:9e:71:04:23:18:dd:0d:32:93:1d:cd:f0:49:13: fc:50:95:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjYwMjI4MjA0MjUxWhcNMjYwMzA3MjA0MjUxWjAYMRYwFAYD VQQDDA02OWEzNTM0Yi02MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCDAFP3ISZvl5mTvuB2S7FI56pWn45jarqx6ssOxMZekI/YpOFfPAUfjgmQW ea3eWSIXCPGWKHq5hqP5nbe1mCUeSVbKLIwB04Ra/VlnI5iOCHvhdbQkFCyzgrg1 jF4+zUi0t6P9ZpHwFPyj1xrKISN4QLJllfUz1OrvsLNWgbCF0OE/Lu0El7g16aF1 2cUkWOMNjtNFXSo28K/rGOO/QQmzukmLOkO6acUNJFmRti6vVTuG8Fn/+x9XWUUg KANmiFKKgE49IREsLhPn4ZD9MZVqEjrwPfv3jQF4g7XVw9JWLrcSupdxSK9E8ciJ HR/kllqBBwoExPZWJ0YyATDRZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPK+Daqz Jv4xYWaubYKFGbb7PRXpMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACFlCe+toUnTt7KLmutfmHZ/TjDiIMFN5fcc3j0xJZjLTFIYuH29sB0KeeKdZ fAl9SRgSfQHtYbPVFsqMhVuzRnYxkB7xM8ptOpsAj3ZinZSrsWjjgRxIE9UPi9uJ 0XXqtRqoPKmSk6DBuXjrjZvnAQlPbxu+s78YGt3wsm/teseEK6B94mNLV7sOBTvD kENlNz+Apb0JKbZshw6ZsX1mQktUY3c7g8sQpgOeejDQHm9yHleOIPsMqAsC3PvS uG2EkuEiAc3RsKvhOLaOLE/tEiO3BU5/0dx8TgrhschIzOa83AE++lrq+4smT7lk Sp5xBCMY3Q0ykx3N8EkT/FCVCw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:01:14 2026 by rpki-client