$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: 7oXkeKAKX+GmnpGID8EZ8JI7YhOQztARxw3v+WL7PBQ= Subject key identifier: BC:3E:C7:FE:34:6F:24:45:86:1A:CC:4B:8F:E0:BD:3B:FB:AD:0E:46 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0E03 Signing time: Sat 28 Feb 2026 18:01:49 +0000 Manifest this update: Sat 28 Feb 2026 18:01:49 +0000 Manifest next update: Sat 07 Mar 2026 18:01:49 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: 9VXkYxDqj6WygIIjV6+edQshWmKVlfCDqCF73h2zJbA=) 2: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: 8GqRcBdeIrCjHp76PdQs0lq30x3d/NDBmszoGklxVM4=) 3: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: VagJtSbt+OkPIw7vpH3Q5YpkNJJ5Gh6B/MRvzREI18M=) 4: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (hash: 8R5uh7x6V8pvBla2Bmxfwk8flqX3fLEl492SUiDmrZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3651 (0xe43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Feb 28 18:01:49 2026 GMT Not After : Mar 7 18:01:49 2026 GMT Subject: CN=69a32d8d-fb40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:87:81:91:e3:b8:21:5b:61:4e:b1:1c:82:71: 46:a2:60:c0:1d:f7:8c:ee:95:00:bc:47:6c:c9:ca: b6:50:c7:26:d7:88:01:8b:7f:c0:9e:e5:51:f6:43: 11:f3:94:5f:84:31:35:70:23:a9:39:a0:0f:28:23: fa:79:75:55:54:43:30:9a:86:43:52:13:72:d8:5e: 80:af:ec:1d:c3:58:dd:b8:c3:c2:3a:e1:59:a2:da: ac:42:41:90:bf:95:dd:c7:4b:56:d2:ec:2f:cd:6a: 16:1f:25:4e:dc:71:90:25:7a:e2:0d:ee:df:f5:c0: ed:54:57:94:d2:73:04:a3:2f:ed:e2:f5:99:9d:55: 35:9c:a2:ed:6f:2a:36:bc:29:df:16:77:0d:29:74: 00:94:c8:ef:fb:d4:b7:0c:f4:ae:e8:89:0d:0a:8c: df:46:19:58:01:1f:a7:b3:b1:d8:da:32:9c:f0:25: a9:f7:6e:09:9a:b4:72:9e:36:67:98:17:09:c3:46: 32:54:49:31:a3:76:b7:b2:e4:aa:b3:30:f1:d6:be: ff:e5:26:e9:53:95:aa:7a:d3:f0:84:0c:e3:41:9b: cb:e5:ab:5e:09:4c:c2:6f:fb:65:2f:d2:a8:99:be: ae:7c:09:2a:b3:63:af:ea:95:79:b0:21:63:82:cd: b4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3E:C7:FE:34:6F:24:45:86:1A:CC:4B:8F:E0:BD:3B:FB:AD:0E:46 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:52:22:2b:45:a4:dc:78:d3:fe:36:7c:d6:be:4c:69:57:62: d7:cc:06:20:7b:9a:86:48:88:28:89:b4:19:d7:ad:2b:6d:b8: 84:24:26:76:d7:82:ae:95:4c:6b:bf:61:35:4c:fb:78:ff:d3: ba:0e:e8:29:b4:af:39:8f:c6:f1:e5:3a:62:22:d9:29:9a:f7: 7e:31:45:b7:58:3b:f9:d8:c7:47:e3:8c:35:2f:81:88:6c:2d: 09:3f:6a:4a:12:84:b3:99:fe:40:9a:9a:8b:3b:2d:f2:4e:b9: 6c:5a:8e:ca:63:3e:1f:83:e8:c2:1b:42:9b:e0:80:b4:67:09: 16:44:68:41:e5:a0:d2:72:11:f4:d9:1e:46:88:b1:7c:9a:d5: c1:24:76:b5:da:24:56:00:cc:3d:fa:dd:c0:98:8f:c1:b3:55: 95:e2:a8:eb:fb:62:45:8d:4e:ec:e0:3a:1d:cf:74:12:65:cd: 09:c0:a7:95:f5:d4:b6:b9:78:cf:71:7e:a0:64:6f:b7:13:7b: ca:09:d5:8c:7d:f0:58:e2:fa:4d:8b:88:04:65:65:db:74:2c: 6a:75:eb:f2:55:5c:7f:0a:27:b0:dc:3d:78:6c:10:59:1d:b2: 25:9c:3f:c2:54:a2:ec:86:52:ba:fa:ee:96:66:37:80:6b:1f: 82:90:f2:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwMjI4MTgwMTQ5WhcNMjYwMzA3MTgwMTQ5WjAYMRYwFAYD VQQDDA02OWEzMmQ4ZC1mYjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYeBkeO4IVthTrEcgnFGomDAHfeM7pUAvEdsycq2UMcm14gBi3/AnuVR9kMR 85RfhDE1cCOpOaAPKCP6eXVVVEMwmoZDUhNy2F6Ar+wdw1jduMPCOuFZotqsQkGQ v5Xdx0tW0uwvzWoWHyVO3HGQJXriDe7f9cDtVFeU0nMEoy/t4vWZnVU1nKLtbyo2 vCnfFncNKXQAlMjv+9S3DPSu6IkNCozfRhlYAR+ns7HY2jKc8CWp924JmrRynjZn mBcJw0YyVEkxo3a3suSqszDx1r7/5SbpU5WqetPwhAzjQZvL5ateCUzCb/tlL9Ko mb6ufAkqs2Ov6pV5sCFjgs20WwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLw+x/40 byRFhhrMS4/gvTv7rQ5GMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiFIiK0Wk3HjT/jZ81r5MaVdi18wGIHuahkiIKIm0GdetK224hCQmdteCrpVM a79hNUz7eP/Tug7oKbSvOY/G8eU6YiLZKZr3fjFFt1g7+djHR+OMNS+BiGwtCT9q ShKEs5n+QJqaizst8k65bFqOymM+H4PowhtCm+CAtGcJFkRoQeWg0nIR9NkeRoix fJrVwSR2tdokVgDMPfrdwJiPwbNVleKo6/tiRY1O7OA6Hc90EmXNCcCnlfXUtrl4 z3F+oGRvtxN7ygnVjH3wWOL6TYuIBGVl23QsanXr8lVcfwonsNw9eGwQWR2yJZw/ wlSi7IZSuvrulmY3gGsfgpDyuA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:35:42 2026 by rpki-client