$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: dv+y5M/82k3YYMYvyDSvh4eS7GBXxGXgjyRF0si6udw= Subject key identifier: 65:10:64:5B:54:6A:B8:5F:CC:BA:AA:1F:9A:AC:75:2F:5F:57:D1:04 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 0587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 057B Signing time: Sat 28 Feb 2026 23:53:56 +0000 Manifest this update: Sat 28 Feb 2026 23:53:56 +0000 Manifest next update: Sat 07 Mar 2026 23:53:56 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: /Rvy4oZ3MJ5yKmyMPiyrJgPT7lftnI8JP/F5pu4jWBw=) 2: 6D506318F1E711F0A2FD0FF1416F56BC.roa (hash: mQcImRO4WHDBeg3hYUSQht+fqF5qfBOe9KqwrJnunlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Feb 28 23:53:56 2026 GMT Not After : Mar 7 23:53:56 2026 GMT Subject: CN=69a38014-1c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:43:22:9d:d1:06:fd:26:35:3f:30:24:39:9d: 41:cb:ac:56:35:2c:02:28:53:69:63:ed:60:ee:ab: 4d:f6:53:77:bf:6a:84:61:ab:58:e7:0c:6b:21:d1: e9:47:42:c5:12:55:a6:9b:09:dc:43:77:0f:fc:e3: ed:1d:3b:4f:7c:b6:d5:b5:ac:36:2e:2f:99:5f:eb: aa:21:c5:38:99:44:29:4c:a3:fb:eb:28:96:b1:2e: d4:38:ce:b0:e6:32:90:2a:af:4b:b2:e3:a4:88:72: 4f:86:42:cb:6f:34:cb:93:fa:ff:f1:6f:15:43:07: 4e:5c:6c:ab:25:51:87:5c:c8:ce:81:cb:71:ac:01: 00:cd:60:61:b9:3b:62:62:a1:bb:b6:f4:76:5b:1e: 90:98:6f:95:2d:57:20:83:93:7b:fb:94:6c:33:0a: 0a:e0:90:2a:57:7e:3f:30:37:07:3d:6e:91:4e:73: 4e:5d:17:f6:29:fe:89:7b:56:0d:35:5d:0c:0d:fe: d4:58:fa:22:65:6c:62:56:b3:2d:ee:28:d2:ba:fe: a9:a3:d7:3d:f5:3e:cb:16:23:44:87:1b:42:ac:16: 39:34:0a:aa:74:79:07:9f:0e:a5:ee:8f:c9:93:c7: 0b:2f:19:b9:eb:d3:85:b9:2c:d5:f0:34:a2:14:ad: 74:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:10:64:5B:54:6A:B8:5F:CC:BA:AA:1F:9A:AC:75:2F:5F:57:D1:04 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3d:56:8b:cb:23:75:f1:36:5f:e1:81:be:e2:ea:4d:6c:03: d3:d0:d7:f4:8e:dc:c6:9d:f0:7f:51:20:e9:26:ea:a4:f4:e8: 69:ce:29:0f:d1:2b:d2:68:f7:6e:ee:8b:16:16:4b:f3:c2:65: 71:ab:27:db:b7:32:34:3d:22:09:ca:dd:61:bf:82:45:b1:b8: a0:af:6f:23:01:4b:2b:01:69:15:70:a2:66:48:e7:db:fd:73: 8f:ef:96:45:25:b3:42:f7:8e:f4:63:e5:58:c9:87:a0:84:3b: c4:e0:93:31:a1:e8:78:76:db:c0:da:c2:1a:e1:05:2c:21:dc: de:44:0c:9e:df:95:5a:1c:a1:a4:36:92:a3:c4:b7:e4:8a:a2: 53:f6:e2:08:8e:a3:93:1b:1f:f1:37:a9:80:dc:a1:f8:a6:58: 9b:11:97:86:56:c7:f1:c0:64:59:a2:5a:b8:f9:d4:79:51:d6: 4d:69:f8:05:5f:e9:c3:56:c2:e0:1b:8b:db:df:7d:33:66:fa: 22:7e:b3:37:a1:8a:8e:69:41:5f:27:00:83:32:41:e3:64:65: 64:75:1b:16:dc:cf:e3:ad:bb:30:8a:8e:55:a1:f2:78:a1:c8: b9:74:fd:61:6e:bb:a2:a9:f1:c0:85:4d:a8:2f:00:72:b8:00: be:48:82:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjYwMjI4MjM1MzU2WhcNMjYwMzA3MjM1MzU2WjAYMRYwFAYD VQQDDA02OWEzODAxNC0xYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEMindEG/SY1PzAkOZ1By6xWNSwCKFNpY+1g7qtN9lN3v2qEYatY5wxrIdHp R0LFElWmmwncQ3cP/OPtHTtPfLbVtaw2Li+ZX+uqIcU4mUQpTKP76yiWsS7UOM6w 5jKQKq9LsuOkiHJPhkLLbzTLk/r/8W8VQwdOXGyrJVGHXMjOgctxrAEAzWBhuTti YqG7tvR2Wx6QmG+VLVcgg5N7+5RsMwoK4JAqV34/MDcHPW6RTnNOXRf2Kf6Je1YN NV0MDf7UWPoiZWxiVrMt7ijSuv6po9c99T7LFiNEhxtCrBY5NAqqdHkHnw6l7o/J k8cLLxm569OFuSzV8DSiFK10awIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGUQZFtU arhfzLqqH5qsdS9fV9EEMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALT1Wi8sjdfE2X+GBvuLqTWwD09DX9I7cxp3wf1Eg6SbqpPToac4pD9Er0mj3 bu6LFhZL88Jlcasn27cyND0iCcrdYb+CRbG4oK9vIwFLKwFpFXCiZkjn2/1zj++W RSWzQveO9GPlWMmHoIQ7xOCTMaHoeHbbwNrCGuEFLCHc3kQMnt+VWhyhpDaSo8S3 5IqiU/biCI6jkxsf8TepgNyh+KZYmxGXhlbH8cBkWaJauPnUeVHWTWn4BV/pw1bC 4BuL2999M2b6In6zN6GKjmlBXycAgzJB42RlZHUbFtzP4627MIqOVaHyeKHIuXT9 YW67oqnxwIVNqC8AcrgAvkiCKA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:16:34 2026 by rpki-client