$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: a/RrgUzguPJJmqbAHTIBrat16YISSq3HbtI4NCRoZSM= Subject key identifier: 16:75:29:A2:B9:A8:D4:5D:B7:57:5D:2A:0E:CB:DF:0A:5A:3D:99:ED Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 22EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 2298 Signing time: Sun 01 Mar 2026 23:41:48 +0000 Manifest this update: Sun 01 Mar 2026 23:41:46 +0000 Manifest next update: Sun 08 Mar 2026 23:41:46 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: peDC42zkxapLYnOA0dv4uqh9btkI/zDB5SEljT/VNg4=) 2: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: qG9igdUpXB7wk8yx/k2tOuq/gYueDRGW4t5eH6cDkms=) 3: F4B9363CD97C11F0998DA3C49DD3641D.roa (hash: VfJC1uL3SDtxI0jb1ThMloxDt/b6TXqC47eyeyvo+WI=) 4: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: fekDwvX/Pg2YZ9Fe3QZAnU92TpFpbncEnNKE83KMH+M=) 5: 083D60F0EFC311F0ADB9FC6F726F56BC.roa (hash: fF8JE+CeDWGa0Zd7+3JcEIODMXv324fSErOhGifycP8=) 6: 05302944D38811F096791A31C4F9AE02.roa (hash: 0TpazCbbP+eq5jbcmOC+QEukwM8XRQa407MbLaS5Vso=) 7: 0ECE3EC6F36011F0BF2DB960646F56BC.roa (hash: QtoNirbotX7R4qD1r9ev9ywMdIdpJySoQAcu/MYpiqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8939 (0x22eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Mar 1 23:41:46 2026 GMT Not After : Mar 8 23:41:46 2026 GMT Subject: CN=69a4cebc-b061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5d:87:7c:0e:90:79:ec:db:ca:9d:92:bc:74: 72:7d:e6:f5:e8:c8:44:2a:04:25:1e:cf:df:2a:4c: 10:cc:da:7d:31:35:aa:83:18:da:14:b3:14:f0:99: 2a:7c:de:ae:ca:ee:e2:57:4b:40:6f:06:de:60:b4: e8:fe:1e:da:8c:3a:4d:6c:d8:0b:1a:3b:16:2e:bb: 15:72:f3:28:25:59:61:d3:bc:90:13:9a:fc:93:80: 2c:32:b9:ea:35:42:04:f4:26:96:01:d8:5d:b3:d9: e6:31:e2:65:bb:40:39:7e:33:33:20:ba:8e:13:b1: 53:6a:4e:ea:6f:0a:30:df:ad:19:40:36:ab:f0:e3: 6d:b3:4d:59:26:8d:80:3e:b0:67:73:fd:dc:66:66: db:46:6f:02:b7:9b:59:2e:93:be:22:fe:0f:0d:eb: bf:f5:c4:f8:95:64:87:c2:eb:79:5a:aa:a7:5e:cd: 94:47:04:88:c6:64:e7:12:17:ee:05:90:67:48:02: 01:91:c3:e2:6b:c5:23:0b:3e:d1:9a:65:06:a1:1c: a1:db:30:9c:e7:e7:79:65:22:d9:49:d8:a1:fd:75: 32:59:dd:2f:34:7b:ef:75:85:e4:49:f2:86:6e:31: 7c:5e:15:8a:ec:90:d6:5b:b7:1f:62:b4:d7:32:af: 50:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:75:29:A2:B9:A8:D4:5D:B7:57:5D:2A:0E:CB:DF:0A:5A:3D:99:ED X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:3c:c0:62:6b:4c:24:b3:d7:a7:2b:cc:91:7f:8e:ad:15:ea: 4e:09:54:94:d0:79:0c:d7:16:8a:2a:fb:62:27:e6:ae:e9:6f: 4a:2e:19:85:01:95:5f:25:09:75:9a:bb:58:e9:8e:4f:06:a7: df:83:77:2c:cd:f6:9a:45:a6:ba:f0:35:85:01:92:88:80:7d: 63:89:e7:ef:e5:5a:8f:1a:b6:55:a9:e5:56:59:1e:56:99:a2: b4:28:21:9a:03:4f:77:5e:8d:00:e3:3f:6b:07:bb:63:18:6a: 20:56:cf:ca:1b:af:e5:2b:e2:67:67:4b:79:47:35:fb:29:f8: 7f:49:f6:72:6f:5c:11:5c:7f:aa:46:46:6e:c0:4c:e0:a4:9e: ba:f3:63:7a:d5:2a:a3:19:98:8c:7d:2d:1a:9f:df:09:b7:fe: 93:73:c2:22:6b:41:26:44:1c:e4:98:44:d8:9b:3a:f1:b0:96: 36:a6:c5:85:43:9e:7b:48:51:40:1c:f4:9f:a6:c9:b2:4a:44: c5:70:1d:fe:dd:66:65:45:7a:e7:f7:d2:c5:d2:f5:d2:96:53: 7f:4e:d6:a2:1c:35:da:7f:82:4f:c0:2d:57:0e:0b:eb:4b:f0: b7:8e:ff:2d:43:b6:d9:31:16:85:68:ec:92:ac:1d:44:60:44: b8:5f:ee:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjYwMzAxMjM0MTQ2WhcNMjYwMzA4MjM0MTQ2WjAYMRYwFAYD VQQDEw02OWE0Y2ViYy1iMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApF2HfA6Qeezbyp2SvHRyfeb16MhEKgQlHs/fKkwQzNp9MTWqgxjaFLMU8Jkq fN6uyu7iV0tAbwbeYLTo/h7ajDpNbNgLGjsWLrsVcvMoJVlh07yQE5r8k4AsMrnq NUIE9CaWAdhds9nmMeJlu0A5fjMzILqOE7FTak7qbwow360ZQDar8ONts01ZJo2A PrBnc/3cZmbbRm8Ct5tZLpO+Iv4PDeu/9cT4lWSHwut5WqqnXs2URwSIxmTnEhfu BZBnSAIBkcPia8UjCz7RmmUGoRyh2zCc5+d5ZSLZSdih/XUyWd0vNHvvdYXkSfKG bjF8XhWK7JDWW7cfYrTXMq9QNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBZ1KaK5 qNRdt1ddKg7L3wpaPZntMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmjzAYmtMJLPXpyvMkX+OrRXqTglUlNB5DNcWiir7YifmrulvSi4ZhQGVXyUJ dZq7WOmOTwan34N3LM32mkWmuvA1hQGSiIB9Y4nn7+Vajxq2VanlVlkeVpmitCgh mgNPd16NAOM/awe7YxhqIFbPyhuv5SviZ2dLeUc1+yn4f0n2cm9cEVx/qkZGbsBM 4KSeuvNjetUqoxmYjH0tGp/fCbf+k3PCImtBJkQc5JhE2Js68bCWNqbFhUOee0hR QBz0n6bJskpExXAd/t1mZUV65/fSxdL10pZTf07Wohw12n+CT8AtVw4L60vwt47/ LUO22TEWhWjskqwdRGBEuF/usg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:38:01 2026 by rpki-client