$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: Wq2+B1044As49oLZxi4t3gPWoH1QugSKW1EcXVwvP8I= Subject key identifier: B8:BF:04:B0:C0:C4:81:DE:E9:08:54:F0:9D:3D:82:B1:19:17:BC:30 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1472 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 144C Signing time: Sun 01 Mar 2026 22:46:19 +0000 Manifest this update: Sun 01 Mar 2026 22:46:18 +0000 Manifest next update: Sun 08 Mar 2026 22:46:18 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: Zd0JPNRAVrjIrf8NficPZP+wN8c8zeb3cg5qSTay2qE=) 2: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=) 4: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5234 (0x1472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Mar 1 22:46:18 2026 GMT Not After : Mar 8 22:46:18 2026 GMT Subject: CN=69a4c1bb-c2af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:50:01:0f:0b:7e:53:62:d8:e1:54:ea:ea: 70:b4:0c:01:4c:de:91:5c:d2:7a:5d:03:ee:73:ae: 9d:29:c4:5c:9b:93:fb:84:5d:49:7b:4e:01:d1:fa: 95:80:a6:9e:0c:0c:7d:ca:f2:88:e3:a5:d6:f2:86: 2b:da:fc:e0:fb:6e:dd:3d:0b:53:e5:11:56:11:1c: 6e:89:2e:7c:79:a1:98:14:d7:ca:7f:68:9b:a8:4c: af:df:a7:2d:61:32:02:79:73:5e:27:5b:5f:0c:35: 74:55:6c:15:52:5a:7a:e1:88:4f:cd:57:09:8c:ef: 43:c6:70:70:a0:cf:e5:18:09:91:6b:76:14:ab:c0: 79:e9:53:cb:45:2c:37:f6:9b:5b:70:7b:87:8e:67: 05:f3:e5:bd:6f:91:e6:d9:50:c4:68:08:91:fd:fd: 7b:a0:39:94:f2:19:52:64:25:6f:8c:bb:90:c7:e1: 47:d3:c1:b8:ab:5a:ac:7d:bd:63:49:45:4f:b5:a2: f2:1d:48:88:da:3a:48:21:0a:c9:0f:d8:32:3d:8a: 5c:a5:08:bf:bc:ec:f1:fa:b2:4d:eb:b3:87:0c:92: df:f4:df:71:03:ab:ff:d6:0c:79:3b:0a:2c:42:f8: 7e:9b:4b:95:77:1b:44:d5:c8:67:3f:b9:bb:62:e4: d2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BF:04:B0:C0:C4:81:DE:E9:08:54:F0:9D:3D:82:B1:19:17:BC:30 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ed:a1:44:5a:a9:1a:a8:a7:6a:11:95:27:9a:73:4a:f6:ba: d4:2f:84:31:a8:a9:a3:1a:7d:31:b4:4d:4d:d1:16:60:50:c8: f4:02:db:80:3c:da:0a:59:cd:3d:de:4a:78:c8:aa:6d:93:41: 72:49:25:5a:39:cd:7a:25:8e:e5:90:1b:d6:64:dd:9c:d2:ed: 47:e5:4e:7b:06:db:54:00:53:07:e9:a1:b9:e3:2c:cf:84:82: 74:bf:b5:e1:2a:26:ff:31:62:fc:c6:80:20:91:20:a7:71:74: 4e:f8:6e:2c:7e:a7:73:ab:f3:70:61:f3:7d:e2:09:d6:e9:c4: 90:6b:38:26:74:18:12:60:01:d6:b9:c9:2b:1e:55:ca:13:76: cd:d1:06:22:5d:d8:7f:8c:46:30:60:0a:ba:53:32:87:42:bc: b5:1b:1e:4c:4a:be:e6:b9:a5:bc:6a:41:e8:69:48:15:41:b6: 8a:26:3d:6e:eb:ef:66:07:0b:c8:57:f7:ba:24:d6:7d:4a:72: a9:55:20:07:05:0d:c6:4d:fa:a7:09:44:e3:bb:0d:ce:0b:16: de:4e:34:06:fd:df:8c:d5:00:32:51:29:3b:85:23:9b:1c:4b: bf:38:7a:26:98:52:eb:83:ad:7b:5b:83:e6:fd:d9:d0:cd:fd: 14:0a:12:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjYwMzAxMjI0NjE4WhcNMjYwMzA4MjI0NjE4WjAYMRYwFAYD VQQDEw02OWE0YzFiYi1jMmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7tQAQ8LflNi2OFU6upwtAwBTN6RXNJ6XQPuc66dKcRcm5P7hF1Je04B0fqV gKaeDAx9yvKI46XW8oYr2vzg+27dPQtT5RFWERxuiS58eaGYFNfKf2ibqEyv36ct YTICeXNeJ1tfDDV0VWwVUlp64YhPzVcJjO9DxnBwoM/lGAmRa3YUq8B56VPLRSw3 9ptbcHuHjmcF8+W9b5Hm2VDEaAiR/f17oDmU8hlSZCVvjLuQx+FH08G4q1qsfb1j SUVPtaLyHUiI2jpIIQrJD9gyPYpcpQi/vOzx+rJN67OHDJLf9N9xA6v/1gx5Owos Qvh+m0uVdxtE1chnP7m7YuTSGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLi/BLDA xIHe6QhU8J09grEZF7wwMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM+2hRFqpGqinahGVJ5pzSva61C+EMaipoxp9MbRNTdEWYFDI9ALbgDzaClnN Pd5KeMiqbZNBckklWjnNeiWO5ZAb1mTdnNLtR+VOewbbVABTB+mhueMsz4SCdL+1 4Som/zFi/MaAIJEgp3F0TvhuLH6nc6vzcGHzfeIJ1unEkGs4JnQYEmAB1rnJKx5V yhN2zdEGIl3Yf4xGMGAKulMyh0K8tRseTEq+5rmlvGpB6GlIFUG2iiY9buvvZgcL yFf3uiTWfUpyqVUgBwUNxk36pwlE47sNzgsW3k40Bv3fjNUAMlEpO4UjmxxLvzh6 JphS64Ote1uD5v3Z0M39FAoSzw== -----END CERTIFICATE-----Generated at Mon Mar 2 15:52:21 2026 by rpki-client