$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: W4IUG3GOQ+EO/b5LRWiizBx2efg+UwpO7qiKyMY3MkQ= Subject key identifier: 6F:18:50:C6:99:BB:88:66:47:8D:6C:39:9D:14:D6:78:6B:C6:B5:36 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3537 Signing time: Sun 01 Mar 2026 23:44:01 +0000 Manifest this update: Sun 01 Mar 2026 23:43:59 +0000 Manifest next update: Sun 08 Mar 2026 23:43:59 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: s4i/v/pEV+r5yYdHA2CVr9G2NxezLPVa0iS4NAtSixE=) 2: E404430CB0F811E595E0F761C4F9AE02.roa (hash: owZAiKzsMVZHcu5y/uvghCfcRo2W0WEoElBFnrF91Ts=) 3: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: wULzE/YcKLKygpTy9Qm31PPUJvQ48rS9tgycJrdEzjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13657 (0x3559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Mar 1 23:43:59 2026 GMT Not After : Mar 8 23:43:59 2026 GMT Subject: CN=69a4cf41-f384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d9:f1:0f:c0:b6:38:76:de:7a:5e:a7:42:49: 0b:5a:7e:c1:de:a2:09:57:e9:81:94:65:fc:91:6c: 11:61:2f:91:39:b9:c4:e3:15:54:9e:42:08:c3:68: 61:d7:44:81:58:07:79:0a:21:4e:da:25:2a:b9:e9: f7:1e:03:3c:a2:00:6d:ae:a3:5f:6d:03:51:d5:dc: 6e:e3:6f:ee:35:52:00:b9:17:e0:3d:ef:3b:c0:ff: 61:79:c7:4a:88:2a:83:72:20:29:41:c7:dd:b7:d8: c2:45:45:ab:3f:3d:14:6b:17:36:3b:cd:77:f4:6c: d2:40:91:46:2c:fc:31:57:0a:fb:b0:8c:e3:87:00: b0:e4:cd:ab:f9:05:b9:33:c5:e7:5a:0a:77:47:f6: ea:98:74:80:4e:c8:b0:d0:57:fe:32:45:9a:e6:ac: f3:80:59:d7:6b:84:03:b9:07:0a:3d:ab:7f:ef:a6: f6:07:4e:28:1c:d8:32:bc:bd:1d:90:41:ba:8f:33: 50:11:d8:94:1c:ea:8c:a8:9e:39:ce:c2:2b:8a:70: f7:d3:e5:cd:1f:6e:f7:e2:60:53:23:35:46:1b:ba: 1e:71:4d:29:f2:ec:b8:d4:8a:eb:06:89:76:28:fd: 08:a2:0e:c1:44:7b:cf:06:51:ea:bd:79:9c:e1:41: 16:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:18:50:C6:99:BB:88:66:47:8D:6C:39:9D:14:D6:78:6B:C6:B5:36 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:7e:dc:65:78:ce:85:03:4c:10:af:10:5a:14:60:49:71:51: d9:7d:e6:ad:33:3b:59:24:ff:f3:13:2d:96:a5:c0:47:16:24: 08:6c:0e:73:4e:10:39:40:89:b7:db:b2:46:26:14:3e:c9:30: fd:3a:19:be:ad:09:3c:f9:05:57:3b:e8:cb:5a:85:a7:7b:9b: ff:5f:89:bb:e5:5b:a0:6c:91:cd:6f:10:a3:e9:f6:68:ef:75: e9:4e:7e:9d:d8:6f:1e:a8:07:98:60:8a:98:c2:18:81:c4:9a: e2:a9:74:6b:4c:3e:a5:23:46:4c:bb:15:90:1a:5d:84:3d:e0: 07:ab:56:0e:a8:8a:6a:cd:21:6b:69:b0:37:0c:cd:7b:08:61: fa:73:8f:40:76:a1:8e:5d:62:5e:f4:15:f6:66:ad:b6:7e:50: 87:b1:1d:8e:10:4e:a5:00:c4:4f:9f:63:47:98:64:1e:6b:a2: f0:4e:6e:5b:81:11:df:cb:f7:a3:4e:0c:3e:4b:f7:c0:31:15: 00:4b:39:37:41:f7:e6:a5:99:74:98:ba:fc:e9:83:6f:cb:1d: f2:77:79:be:7f:b5:2a:53:13:b2:fe:7e:d1:e1:6c:0a:af:d0: 77:cb:40:ca:18:d5:9f:ca:45:b7:58:6b:2b:94:43:56:74:35: cc:07:ef:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjYwMzAxMjM0MzU5WhcNMjYwMzA4MjM0MzU5WjAYMRYwFAYD VQQDEw02OWE0Y2Y0MS1mMzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19nxD8C2OHbeel6nQkkLWn7B3qIJV+mBlGX8kWwRYS+RObnE4xVUnkIIw2hh 10SBWAd5CiFO2iUquen3HgM8ogBtrqNfbQNR1dxu42/uNVIAuRfgPe87wP9hecdK iCqDciApQcfdt9jCRUWrPz0Uaxc2O8139GzSQJFGLPwxVwr7sIzjhwCw5M2r+QW5 M8XnWgp3R/bqmHSATsiw0Ff+MkWa5qzzgFnXa4QDuQcKPat/76b2B04oHNgyvL0d kEG6jzNQEdiUHOqMqJ45zsIrinD30+XNH2734mBTIzVGG7oecU0p8uy41IrrBol2 KP0Iog7BRHvPBlHqvXmc4UEWTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG8YUMaZ u4hmR41sOZ0U1nhrxrU2MB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAn7cZXjOhQNMEK8QWhRgSXFR2X3mrTM7WST/8xMtlqXARxYkCGwOc04QOUCJ t9uyRiYUPskw/ToZvq0JPPkFVzvoy1qFp3ub/1+Ju+VboGyRzW8Qo+n2aO916U5+ ndhvHqgHmGCKmMIYgcSa4ql0a0w+pSNGTLsVkBpdhD3gB6tWDqiKas0ha2mwNwzN ewhh+nOPQHahjl1iXvQV9mattn5Qh7EdjhBOpQDET59jR5hkHmui8E5uW4ER38v3 o04MPkv3wDEVAEs5N0H35qWZdJi6/OmDb8sd8nd5vn+1KlMTsv5+0eFsCq/Qd8tA yhjVn8pFt1hrK5RDVnQ1zAfvzQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:03:16 2026 by rpki-client