$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: 7fsAghsMhz7VPhDbouYQUEq9UA1HsLw/IBXpUdlzFBo= Subject key identifier: 72:DD:B8:B5:76:D0:36:D0:21:B8:54:1F:71:CD:CB:FC:FE:BA:29:A3 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 0107 Signing time: Sun 01 Mar 2026 07:15:04 +0000 Manifest this update: Sun 01 Mar 2026 07:15:04 +0000 Manifest next update: Sun 08 Mar 2026 07:15:04 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: uO2tldsi9uTTZepL8vhjkpTD6G2hu3/JGdpa3GA45S0=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: QSHo3Aa0gWNvOoXz3ycJVYASR4jo/IsgkpO6k7sJh6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Mar 1 07:15:04 2026 GMT Not After : Mar 8 07:15:04 2026 GMT Subject: CN=69a3e778-eb7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3f:8d:33:30:56:13:21:5f:51:2f:95:89:c6: bf:aa:9a:8b:1d:8b:24:5f:50:7b:1d:19:4c:55:39: 00:3b:b3:81:9b:fe:74:c4:af:01:16:69:b5:b2:f9: f8:f8:9a:17:f9:77:2c:74:59:7f:c8:ff:f9:c9:6b: 4b:59:85:4c:b2:f1:c0:af:5e:52:d1:5d:17:5e:6c: 4a:76:6c:7a:f5:65:e1:b8:16:35:98:fd:92:a6:bf: b4:23:a7:11:cf:64:6d:ac:22:5b:d2:7a:aa:42:e2: 45:5f:88:df:0d:ed:ab:51:79:9c:a3:81:e5:ae:4d: 18:04:2f:66:6b:9f:5d:cc:48:50:05:06:48:2c:63: e2:cd:1e:6a:77:6b:aa:5b:05:a3:99:5d:7e:08:5d: 57:3a:92:8f:6e:65:c7:2c:3d:43:cf:16:51:8b:20: 14:8a:ed:18:0d:1a:42:7e:99:97:cc:b9:87:26:b0: 6f:2d:65:aa:9c:3c:76:3e:5e:db:90:1e:e3:5c:6b: a0:7e:fd:e2:97:9d:7c:d5:8b:cc:95:05:7b:81:dd: e3:8f:a0:cc:14:87:4f:7b:84:b1:d0:fa:5c:be:b9: 6e:1c:56:e4:e2:5f:56:0d:b6:a6:5a:55:74:aa:c5: 53:73:b5:a8:b2:2d:9c:e0:a4:59:dc:7f:b4:06:e5: 47:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DD:B8:B5:76:D0:36:D0:21:B8:54:1F:71:CD:CB:FC:FE:BA:29:A3 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:3a:31:4a:c3:33:20:6d:ec:f3:97:f8:1f:ce:99:fb:06:ea: d8:82:a3:fe:8f:12:25:b4:dc:aa:52:76:c1:8c:d6:ef:87:c3: db:e4:7a:f4:7f:3d:3a:64:ad:a6:bf:bf:0b:32:68:4a:91:b9: f8:b2:25:a1:95:f4:e8:a6:07:92:6c:5d:d9:5b:f6:f0:f2:96: 06:6d:4d:db:44:c1:0f:f0:c8:5b:5d:b7:8a:81:b6:4b:df:2b: a1:32:a8:db:a1:e9:85:61:e6:61:f8:29:49:48:a2:7f:12:1e: 69:17:b4:7f:6f:91:fb:31:c4:71:fa:e2:01:ab:5e:ee:60:28: 41:1a:79:86:7b:b3:81:17:57:b7:f6:80:a2:b8:a8:9b:8f:de: e6:2a:3e:0c:79:1b:ad:f6:77:fe:f5:f1:b4:68:65:5c:4e:fa: 70:79:ea:6d:2d:eb:d6:9d:5d:cf:b1:98:e3:69:d1:b9:f1:05: 2e:00:ee:b1:dd:a7:84:a4:92:f4:e8:f4:27:46:73:74:75:6a: cb:6a:38:e1:78:f4:20:ed:08:75:20:1e:99:08:28:77:b6:1e: d0:91:e7:59:2e:5d:6d:1b:c0:8d:68:ef:ac:48:45:56:78:54: ae:76:8f:9b:3e:d2:9a:67:76:34:59:d3:c4:c4:e6:3d:0a:63: 7c:aa:71:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU1NEExMTAvBgNVBAUTKDEyMUFGMTQ0RDkwM0UzRjg4OTdERjBGRUQyMDcxQTE2 NDc3NUVENEYwHhcNMjYwMzAxMDcxNTA0WhcNMjYwMzA4MDcxNTA0WjAYMRYwFAYD VQQDEw02OWEzZTc3OC1lYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqD+NMzBWEyFfUS+Vica/qpqLHYskX1B7HRlMVTkAO7OBm/50xK8BFmm1svn4 +JoX+XcsdFl/yP/5yWtLWYVMsvHAr15S0V0XXmxKdmx69WXhuBY1mP2Spr+0I6cR z2RtrCJb0nqqQuJFX4jfDe2rUXmco4Hlrk0YBC9ma59dzEhQBQZILGPizR5qd2uq WwWjmV1+CF1XOpKPbmXHLD1DzxZRiyAUiu0YDRpCfpmXzLmHJrBvLWWqnDx2Pl7b kB7jXGugfv3il5181YvMlQV7gd3jj6DMFIdPe4Sx0PpcvrluHFbk4l9WDbamWlV0 qsVTc7Wosi2c4KRZ3H+0BuVHXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHLduLV2 0DbQIbhUH3HNy/z+uimjMB8GA1UdIwQYMBaAFBIa8UTZA+P4iX3w/tIHGhZHde1P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTU0QS83OTVFNzNEMDkx RjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRfaUpmZkQtMGdjYUZrZDE3 VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi9FaHJ4Uk5rRDRf aUpmZkQtMGdjYUZrZDE3VTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXzoxSsMzIG3s85f4H86Z+wbq2IKj/o8SJbTcqlJ2wYzW74fD2+R69H89OmSt pr+/CzJoSpG5+LIloZX06KYHkmxd2Vv28PKWBm1N20TBD/DIW123ioG2S98roTKo 26HphWHmYfgpSUiifxIeaRe0f2+R+zHEcfriAate7mAoQRp5hnuzgRdXt/aAorio m4/e5io+DHkbrfZ3/vXxtGhlXE76cHnqbS3r1p1dz7GY42nRufEFLgDusd2nhKSS 9Oj0J0ZzdHVqy2o44Xj0IO0IdSAemQgod7Ye0JHnWS5dbRvAjWjvrEhFVnhUrnaP mz7Smmd2NFnTxMTmPQpjfKpxBw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:17:57 2026 by rpki-client