$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: o/I6T3+W2NZfxBwSeukOUuKUKNWAxwseN2VHHVvFd1I= Subject key identifier: E9:75:6D:22:F4:49:48:46:42:15:48:46:AF:34:12:34:E0:84:F1:93 Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: 85 Signing time: Sun 01 Mar 2026 08:56:21 +0000 Manifest this update: Sun 01 Mar 2026 08:56:20 +0000 Manifest next update: Sun 08 Mar 2026 08:56:20 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: mWPXofpcTcNXm9aU6r4/aKhNdIVjQ68UbAP7S/0E4vg=) 2: 1E008B864B7411F09B3DF33BC4F9AE02.roa (hash: /zMdVLhGNollmYFXdF4G2YH+XX/SiRIlk1GXQ7DqDSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Mar 1 08:56:20 2026 GMT Not After : Mar 8 08:56:20 2026 GMT Subject: CN=69a3ff35-d567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6b:ea:95:36:d5:25:e4:62:a5:f1:1f:d7:1f: a7:ba:be:5a:d7:94:30:6c:36:a3:9b:f9:7b:3c:51: 98:9b:44:25:81:f3:32:b7:d3:26:37:de:5b:39:46: 91:ff:67:68:88:fa:01:c7:fd:ad:fa:b0:d9:3a:c0: 54:d8:15:a0:23:7d:3a:d7:9a:a1:56:9c:a1:80:bd: ae:ea:79:9c:a6:ef:50:a2:6f:45:6c:1c:98:c1:76: 9f:e9:f1:65:de:bf:2a:7d:24:50:0e:81:4e:4d:38: 87:18:84:63:d9:66:61:78:92:91:81:cf:5c:07:34: 9f:d8:4d:0f:57:f6:ff:3d:b0:b5:af:b8:3b:1e:16: ab:f5:f6:cc:c5:bc:72:72:51:f3:3f:36:9d:16:5c: d1:b5:48:a0:73:7c:c0:9c:0b:40:a6:91:3a:ef:c5: 53:36:33:6f:18:f7:c8:68:5d:20:24:f8:33:81:73: 4f:6a:60:58:80:8b:5e:f8:d3:45:c3:b9:4f:31:4c: 8c:3b:3a:fd:ee:41:73:dc:99:08:76:26:88:60:04: 8b:25:70:04:fc:ad:3d:29:29:20:d4:19:43:f0:95: 51:ea:de:b0:9b:04:8a:07:0f:14:69:a8:4f:2e:47: 37:ca:36:f9:d8:a8:4a:0b:3a:d9:6c:06:5c:20:c6: 52:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:75:6D:22:F4:49:48:46:42:15:48:46:AF:34:12:34:E0:84:F1:93 X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:30:59:dd:6c:d8:b1:79:dc:e1:e8:09:c1:5d:2f:0d:4f:a3: 2c:4c:81:e5:ff:b0:25:64:6d:ad:ec:01:8e:11:61:7d:58:c6: 55:07:44:b6:a6:6b:2e:4c:ba:60:f7:f6:d1:2b:da:90:f8:f1: e4:e5:49:ba:c7:23:3a:21:24:fd:38:ac:c5:21:85:dc:3b:8f: 6a:13:5a:4a:50:b7:30:38:0a:0f:8e:c1:e5:a8:e4:eb:9a:62: 55:0d:9c:c5:cd:f3:6f:4a:86:c4:78:a0:35:b9:9d:86:45:89: 21:b0:c1:e0:7e:2c:87:8e:d0:bc:2b:73:17:a7:cc:b9:5a:27: 91:67:3b:41:23:c2:0b:1f:6a:e9:4a:d9:ba:b3:dd:df:55:2d: 2a:15:1e:1a:da:0e:c0:f7:49:98:ce:72:14:e3:bd:b5:ba:12: 9c:95:d2:70:9b:3c:65:2f:5c:b3:a3:d2:0f:37:49:9a:16:0a: 39:36:2f:ae:7a:df:6a:f5:ab:f4:d3:bf:dd:d5:54:a4:c6:17: 70:bd:14:d2:93:2f:04:dc:3a:e4:3e:34:5d:af:c9:7c:0d:3a: 61:59:bb:a0:0b:a2:34:d0:ab:ed:86:1b:34:c7:88:ce:fd:27: 0a:0c:b0:8b:6f:4c:9e:6a:4a:a9:e9:26:01:99:85:e1:80:30: f3:c7:1c:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFODAxMTAvBgNVBAUTKDlBNTg3RTRFQ0Y2OEVDNzcyOUQ4REU0MzVGRkRBQURD RUE1QjQ5MzkwHhcNMjYwMzAxMDg1NjIwWhcNMjYwMzA4MDg1NjIwWjAYMRYwFAYD VQQDEw02OWEzZmYzNS1kNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mvqlTbVJeRipfEf1x+nur5a15QwbDajm/l7PFGYm0QlgfMyt9MmN95bOUaR /2doiPoBx/2t+rDZOsBU2BWgI30615qhVpyhgL2u6nmcpu9Qom9FbByYwXaf6fFl 3r8qfSRQDoFOTTiHGIRj2WZheJKRgc9cBzSf2E0PV/b/PbC1r7g7Hhar9fbMxbxy clHzPzadFlzRtUigc3zAnAtAppE678VTNjNvGPfIaF0gJPgzgXNPamBYgIte+NNF w7lPMUyMOzr97kFz3JkIdiaIYASLJXAE/K09KSkg1BlD8JVR6t6wmwSKBw8UaahP Lkc3yjb52KhKCzrZbAZcIMZSAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOl1bSL0 SUhGQhVIRq80EjTghPGTMB8GA1UdIwQYMBaAFJpYfk7PaOx3KdjeQ1/9qtzqW0k5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0U4MC8zNTQzM0YyMjRC NjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdIY3AyTjVEWF8ycTNPcGJT VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0U4MC8zNTQzM0YyMjRCNjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdI Y3AyTjVEWF8ycTNPcGJTVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWDBZ3WzYsXnc4egJwV0vDU+jLEyB5f+wJWRtrewBjhFhfVjGVQdEtqZrLky6 YPf20SvakPjx5OVJuscjOiEk/TisxSGF3DuPahNaSlC3MDgKD47B5ajk65piVQ2c xc3zb0qGxHigNbmdhkWJIbDB4H4sh47QvCtzF6fMuVonkWc7QSPCCx9q6UrZurPd 31UtKhUeGtoOwPdJmM5yFOO9tboSnJXScJs8ZS9cs6PSDzdJmhYKOTYvrnrfavWr 9NO/3dVUpMYXcL0U0pMvBNw65D40Xa/JfA06YVm7oAuiNNCr7YYbNMeIzv0nCgyw i29MnmpKqekmAZmF4YAw88ccFg== -----END CERTIFICATE-----Generated at Mon Mar 2 13:18:37 2026 by rpki-client