$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: oRXkxTAe6ul8vPGcfyYIN2tshk/94dpAH720rxzfWcI= Subject key identifier: 97:1A:35:A2:D6:65:12:24:08:F2:31:09:C8:D4:74:13:54:3E:48:B2 Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 1511 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14FA Signing time: Sun 01 Mar 2026 23:45:08 +0000 Manifest this update: Sun 01 Mar 2026 23:45:07 +0000 Manifest next update: Sun 08 Mar 2026 23:45:07 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: YaRRDvPvILXv2xLC3l6RXexL1fiz0jTuTaq3LszXIGo=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: YMv0r7cgJCxpk4HSp8I/SfGyxuRnawMQX2mraCd5KmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5393 (0x1511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Mar 1 23:45:07 2026 GMT Not After : Mar 8 23:45:07 2026 GMT Subject: CN=69a4cf84-c032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:c7:07:9f:36:fa:17:db:79:d3:8e:88:41: 08:8d:c9:47:6f:86:a0:e1:cd:48:f0:a2:aa:3c:b4: c8:f0:00:c7:07:87:68:24:d4:9e:8e:d9:65:4a:b6: b9:89:be:0b:a1:4d:e1:07:c5:cc:fd:a9:3c:0f:51: 59:94:52:67:07:10:ef:84:49:04:a0:a5:92:e9:00: c7:a1:27:10:61:96:b1:c8:c5:e1:a0:60:88:1d:ba: 27:bb:8a:95:47:ea:37:b6:49:ff:59:b9:83:63:1a: 17:d9:9b:24:f0:70:e4:e6:21:10:0a:c4:77:50:34: 23:ee:69:d7:86:d0:58:5b:2b:e3:c7:eb:69:ed:61: 36:76:6b:d0:fb:04:fa:0a:a3:7c:c3:68:22:4f:ee: 45:ed:48:5d:1d:af:0d:0c:31:88:f2:c9:af:56:4c: c8:44:0d:e5:cc:8d:28:ee:92:6d:51:a1:85:63:94: 03:bc:16:3a:b3:a7:aa:d8:b7:e8:fb:97:2a:d6:9c: 4a:33:55:c9:09:cc:59:ee:1b:1a:ef:71:e5:2f:50: 06:53:ff:9b:fe:f0:19:44:69:72:96:db:60:a0:3f: 09:c5:a0:a3:b2:1f:c9:ea:9b:30:8b:86:6b:3f:aa: 9d:82:e3:36:30:47:49:9e:4b:16:fb:5c:fc:05:3d: b2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1A:35:A2:D6:65:12:24:08:F2:31:09:C8:D4:74:13:54:3E:48:B2 X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ad:57:49:35:80:c3:fa:08:8b:62:c8:3b:43:6f:bd:5a:8d: 2f:ad:b5:45:69:48:00:27:0b:8c:22:24:65:d6:7c:ef:cd:8b: 03:6b:7a:e9:49:02:6b:5f:ef:a9:0d:cf:3e:e4:88:98:38:c5: 3d:17:f4:c0:b7:af:11:41:82:e8:40:56:f9:d8:60:42:8f:59: b7:9a:3c:af:9d:d3:a4:cb:16:65:c5:c7:5e:1f:8c:30:63:44: e3:61:0a:36:3a:9b:9b:20:c7:0f:62:2a:92:34:0e:6a:a8:e3: fb:8d:68:7b:18:dd:41:a5:ae:e9:ee:8d:db:12:04:09:83:15: d1:25:da:c4:33:45:79:31:ab:cc:d9:c1:ed:90:63:3c:2f:55: e0:5f:90:07:92:82:77:6b:d0:96:14:79:1d:cb:10:17:ec:a1: bf:89:5b:74:ed:cc:c2:74:d4:ee:4c:10:45:53:a4:47:b1:ae: 7e:2b:77:03:43:b6:3b:d9:c5:9a:8e:c6:24:b9:3d:84:b3:0c: 43:d9:f7:d9:7f:dd:ae:0c:82:c7:61:7c:34:64:84:7a:dd:b0: a5:35:88:be:99:c1:70:a9:de:a6:fd:f3:b1:39:7e:db:2d:7c: 53:29:e6:12:1c:24:54:45:35:e3:6d:e8:8d:7d:45:b7:49:f2: 96:12:69:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjYwMzAxMjM0NTA3WhcNMjYwMzA4MjM0NTA3WjAYMRYwFAYD VQQDEw02OWE0Y2Y4NC1jMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY3HB582+hfbedOOiEEIjclHb4ag4c1I8KKqPLTI8ADHB4doJNSejtllSra5 ib4LoU3hB8XM/ak8D1FZlFJnBxDvhEkEoKWS6QDHoScQYZaxyMXhoGCIHbonu4qV R+o3tkn/WbmDYxoX2Zsk8HDk5iEQCsR3UDQj7mnXhtBYWyvjx+tp7WE2dmvQ+wT6 CqN8w2giT+5F7UhdHa8NDDGI8smvVkzIRA3lzI0o7pJtUaGFY5QDvBY6s6eq2Lfo +5cq1pxKM1XJCcxZ7hsa73HlL1AGU/+b/vAZRGlylttgoD8JxaCjsh/J6pswi4Zr P6qdguM2MEdJnksW+1z8BT2yXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJcaNaLW ZRIkCPIxCcjUdBNUPkiyMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP61XSTWAw/oIi2LIO0NvvVqNL621RWlIACcLjCIkZdZ8782LA2t66UkCa1/v qQ3PPuSImDjFPRf0wLevEUGC6EBW+dhgQo9Zt5o8r53TpMsWZcXHXh+MMGNE42EK NjqbmyDHD2IqkjQOaqjj+41oexjdQaWu6e6N2xIECYMV0SXaxDNFeTGrzNnB7ZBj PC9V4F+QB5KCd2vQlhR5HcsQF+yhv4lbdO3MwnTU7kwQRVOkR7Gufit3A0O2O9nF mo7GJLk9hLMMQ9n32X/drgyCx2F8NGSEet2wpTWIvpnBcKnepv3zsTl+2y18Uynm EhwkVEU1423ojX1Ft0nylhJpsA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:38:26 2026 by rpki-client