$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: fseAcK6l2Hr+dqVlRJ3ln+nm2dQJ5eWITtxeHRTyk/M= Subject key identifier: FA:F5:A2:37:FD:E9:80:7B:F3:62:11:0E:67:B7:16:A3:2E:1E:69:17 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1473 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 144D Signing time: Mon 02 Mar 2026 15:31:45 +0000 Manifest this update: Mon 02 Mar 2026 15:31:45 +0000 Manifest next update: Mon 09 Mar 2026 15:31:45 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: 2MEJenw5ET1q9Bjmxo1ezhTlIMvZL/QwG7qh5KZDx38=) 2: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0=) 3: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: Ahq8pAmeUbi/UnTEDIDcD1i65MG+Vf7huahab+3HR9s=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: w2NWjfabvdQFP3C4IwPEM+fGnRuZMPns4zEDrwbMyxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5235 (0x1473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Mar 2 15:31:45 2026 GMT Not After : Mar 9 15:31:45 2026 GMT Subject: CN=69a5ad61-ebdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a8:e9:c8:ed:9a:9f:20:ad:57:18:83:37:e6: 35:96:f6:a7:17:38:46:d6:91:b1:41:8b:9d:b8:1f: c4:d7:b8:5e:db:cf:07:1c:0e:a6:17:46:25:c1:4e: ad:7f:78:02:9c:aa:c3:e2:42:89:f0:d4:a2:a8:ee: bc:dc:42:8b:76:d5:3d:30:b2:cb:b3:c4:9c:62:84: 10:7a:c7:85:ce:42:90:f1:54:23:2e:0e:84:e8:d3: f3:75:75:d8:84:55:dd:f6:ec:f6:85:d2:43:4e:cf: d2:f9:00:c8:33:70:05:07:d7:2a:33:d4:de:7f:8c: 6f:4b:c8:be:1f:25:6b:53:c8:0d:11:c0:27:ec:3c: d4:0d:d1:41:cd:e1:5f:8d:f6:e9:81:f9:39:aa:af: b3:ba:59:23:96:96:72:91:5d:dd:7b:4d:91:ad:86: db:cc:f2:3d:ef:ac:ef:48:33:f6:3f:38:39:2f:65: 31:b4:f2:ae:e3:68:e7:33:66:21:45:27:d8:b9:14: 37:db:5f:52:a5:ba:cb:f9:aa:05:4a:b2:18:3c:d0: 31:7c:80:ae:a9:be:05:a2:1b:0a:4a:d2:a9:ad:e9: 89:81:fe:f6:d8:fb:fc:a1:d8:8b:df:b7:d3:23:b5: a1:8a:2c:db:5f:bc:eb:2d:ea:6e:38:03:7b:f9:c5: 57:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F5:A2:37:FD:E9:80:7B:F3:62:11:0E:67:B7:16:A3:2E:1E:69:17 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:00:e1:eb:44:48:06:f6:9d:fc:1a:ac:4d:1d:72:d0:c9:4a: 44:26:c3:48:cb:d3:24:c7:5b:f8:de:63:31:f4:da:b1:c3:e0: 96:c7:99:d2:62:b5:f6:4a:0b:2e:fc:0e:5b:bb:4b:85:82:87: 58:83:53:25:f2:1c:0a:37:16:6c:f6:22:2d:63:2d:f1:79:03: ad:4d:6a:1e:07:97:5e:09:3e:f8:58:12:0d:a9:ec:bd:2d:59: 85:54:01:40:c1:92:84:ec:76:cd:b9:24:d5:80:2a:14:c9:c0: 94:17:2e:61:79:f6:5b:a0:86:80:d7:ba:bc:ff:6c:cf:0f:cc: 5c:ab:46:f9:78:bb:f0:63:ef:8f:b9:dd:9a:0c:2c:1b:9f:40: 2f:e7:bd:c7:ff:ea:98:6d:e6:13:ea:70:f2:41:64:78:cf:8d: 60:4d:9d:ab:a4:fa:25:1c:07:43:04:97:06:2c:f0:2a:c3:3d: 5c:99:c0:13:43:e9:0e:49:0c:0f:32:4c:ca:4d:e3:07:01:63: 20:79:46:6e:19:89:56:a8:b8:a9:47:93:56:2d:e4:b7:fa:ff: 8a:77:bd:1a:53:b0:40:5a:e0:85:91:e0:6b:11:bc:ea:92:75: 5e:ab:77:8b:c6:f3:4e:33:cc:78:cd:f6:e9:f0:76:01:1f:c5: 1b:44:5d:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjYwMzAyMTUzMTQ1WhcNMjYwMzA5MTUzMTQ1WjAYMRYwFAYD VQQDEw02OWE1YWQ2MS1lYmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqjpyO2anyCtVxiDN+Y1lvanFzhG1pGxQYuduB/E17he288HHA6mF0YlwU6t f3gCnKrD4kKJ8NSiqO683EKLdtU9MLLLs8ScYoQQeseFzkKQ8VQjLg6E6NPzdXXY hFXd9uz2hdJDTs/S+QDIM3AFB9cqM9Tef4xvS8i+HyVrU8gNEcAn7DzUDdFBzeFf jfbpgfk5qq+zulkjlpZykV3de02RrYbbzPI976zvSDP2Pzg5L2UxtPKu42jnM2Yh RSfYuRQ3219SpbrL+aoFSrIYPNAxfICuqb4FohsKStKpremJgf722Pv8odiL37fT I7WhiizbX7zrLepuOAN7+cVX1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPr1ojf9 6YB782IRDme3FqMuHmkXMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqgDh60RIBvad/BqsTR1y0MlKRCbDSMvTJMdb+N5jMfTascPglseZ0mK19koL LvwOW7tLhYKHWINTJfIcCjcWbPYiLWMt8XkDrU1qHgeXXgk++FgSDansvS1ZhVQB QMGShOx2zbkk1YAqFMnAlBcuYXn2W6CGgNe6vP9szw/MXKtG+Xi78GPvj7ndmgws G59AL+e9x//qmG3mE+pw8kFkeM+NYE2dq6T6JRwHQwSXBizwKsM9XJnAE0PpDkkM DzJMyk3jBwFjIHlGbhmJVqi4qUeTVi3kt/r/ine9GlOwQFrghZHgaxG86pJ1Xqt3 i8bzTjPMeM326fB2AR/FG0Rdkw== -----END CERTIFICATE-----Generated at Tue Mar 3 05:30:02 2026 by rpki-client