$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft File: 8ghPeg88CpH4Jf79nxA18zVBWEw.mft (raw, json) Hash identifier: ZdMGTHke+LEoNbqG1WCV8Ac24jfGHRHSzhwta4J8Fzo= Subject key identifier: 5D:E6:74:F1:71:85:87:F0:DA:8F:A1:ED:ED:0F:83:38:1D:C7:16:1E Authority key identifier: F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C Certificate issuer: /CN=A91EAEAF/serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft Manifest number: 02A3 Signing time: Sun 01 Mar 2026 02:20:53 +0000 Manifest this update: Sun 01 Mar 2026 02:20:52 +0000 Manifest next update: Sun 08 Mar 2026 02:20:52 +0000 Files and hashes: 1: 8ghPeg88CpH4Jf79nxA18zVBWEw.crl (hash: FMQlykxK8nU5LbDz3wKsz5imHY9D6y8Qs4Vfl4/MfVM=) 2: EF0EFF5833F511EDA5C4F37DC4F9AE02.roa (hash: fi9xuBK43cEhmF28kvwaKFEKLhEO9BGiHXkRK7I94Hw=) 3: C5BEFEE204AC11F1AA081403413D8C67.roa (hash: GCvY7Xqw5Q1NiMXjaZcB2sOJUIAvbubqgrlHiVc6yN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAEAF, serialNumber=F2084F7A0F3C0A91F825FEFD9F1035F33541584C Validity Not Before: Mar 1 02:20:52 2026 GMT Not After : Mar 8 02:20:52 2026 GMT Subject: CN=69a3a285-e139 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:9b:92:9f:a4:2a:d9:7f:78:2c:f2:e2:38:05: 34:a8:78:4b:6a:cf:6f:c0:94:b9:f8:06:66:ae:59: 1d:c2:dc:6a:7d:10:a1:b6:0b:49:37:e8:12:25:61: dd:6f:c9:e5:eb:d5:fe:f1:72:f9:e7:51:33:ed:a2: 0c:48:7e:5c:f1:44:a9:fc:e5:ca:6f:6e:df:54:37: 1e:99:f8:c9:03:4f:46:fa:da:23:19:91:2d:e7:f9: 8a:60:27:da:4e:0d:f3:64:9a:4a:55:d1:4f:02:dd: a4:5c:99:ac:82:45:da:b7:fe:bc:7b:d7:7f:b6:8f: 70:0c:c4:f6:f8:ed:bf:b1:63:ce:fb:8f:4f:d9:1f: d0:82:8d:ee:ab:f9:04:dd:48:a3:ea:d6:03:7f:97: d4:00:da:46:d4:29:9e:8d:76:22:23:75:8f:75:09: 66:f0:d3:60:90:b0:07:d0:97:4c:5e:f3:b0:83:38: c3:d8:98:e3:13:50:9c:b3:ea:c4:3b:ca:8c:79:e0: 5e:30:03:44:09:ec:98:53:3b:66:85:58:dc:28:59: 8f:54:22:4c:df:54:5b:16:98:13:76:93:2f:44:cc: 37:37:64:b3:75:0c:b0:8e:44:4e:73:a8:7f:bc:8a: 8f:f3:fe:23:cf:5f:0f:2f:e6:ed:c0:ea:bb:4d:ab: aa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E6:74:F1:71:85:87:F0:DA:8F:A1:ED:ED:0F:83:38:1D:C7:16:1E X509v3 Authority Key Identifier: keyid:F2:08:4F:7A:0F:3C:0A:91:F8:25:FE:FD:9F:10:35:F3:35:41:58:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ghPeg88CpH4Jf79nxA18zVBWEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAEAF/BE3521B833F111EDB8361086C4F9AE02/8ghPeg88CpH4Jf79nxA18zVBWEw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:dd:a5:20:57:f3:f6:eb:40:83:8e:32:ba:bc:52:4a:0a:8c: c6:f6:a7:0a:01:5d:5e:69:4e:0b:36:9b:9b:bf:d2:e7:43:94: f8:1a:d8:aa:48:89:10:3e:36:a5:1c:49:2f:e2:4e:3e:d3:c8: f7:ff:c1:6e:2b:ca:d6:3b:27:84:7a:24:f9:da:fb:03:9d:fe: 8c:e0:ba:d3:5d:40:5e:d5:9c:30:d6:a2:69:7d:38:02:b0:90: 2f:1d:b6:62:42:29:11:92:97:25:a4:aa:7a:2d:ed:ca:43:df: 58:b5:be:00:34:ed:ec:5f:0a:8f:35:52:c9:2e:43:af:f4:eb: 3a:ca:6c:23:13:99:3d:29:45:6f:28:f6:ae:5b:62:28:44:4d: 0f:8e:73:30:4b:7a:8f:73:d1:73:89:fe:80:13:bb:9a:e8:cc: 26:5b:d0:14:69:3f:fd:d1:04:db:75:1d:e6:59:81:22:1e:6a: f9:93:f8:d3:14:0f:af:b4:68:5b:44:47:f9:21:79:82:b0:4e: 62:e0:77:97:c2:6b:7f:7c:61:09:e1:55:a2:f2:da:99:45:a3: e4:10:61:7a:dd:9a:cf:bc:e9:8a:ec:6e:68:a2:dc:bf:9f:da: eb:f3:a2:05:9a:f4:75:2b:84:be:e8:20:11:99:54:31:24:83: 52:ad:4e:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFQUYxMTAvBgNVBAUTKEYyMDg0RjdBMEYzQzBBOTFGODI1RkVGRDlGMTAzNUYz MzU0MTU4NEMwHhcNMjYwMzAxMDIyMDUyWhcNMjYwMzA4MDIyMDUyWjAYMRYwFAYD VQQDDA02OWEzYTI4NS1lMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA95uSn6Qq2X94LPLiOAU0qHhLas9vwJS5+AZmrlkdwtxqfRChtgtJN+gSJWHd b8nl69X+8XL551Ez7aIMSH5c8USp/OXKb27fVDcemfjJA09G+tojGZEt5/mKYCfa Tg3zZJpKVdFPAt2kXJmsgkXat/68e9d/to9wDMT2+O2/sWPO+49P2R/Qgo3uq/kE 3Uij6tYDf5fUANpG1CmejXYiI3WPdQlm8NNgkLAH0JdMXvOwgzjD2JjjE1Ccs+rE O8qMeeBeMANECeyYUztmhVjcKFmPVCJM31RbFpgTdpMvRMw3N2SzdQywjkROc6h/ vIqP8/4jz18PL+btwOq7TauqsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3mdPFx hYfw2o+h7e0PgzgdxxYeMB8GA1UdIwQYMBaAFPIIT3oPPAqR+CX+/Z8QNfM1QVhM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUVBRi9CRTM1MjFCODMz RjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENwSDRKZjc5bnhBMTh6VkJX RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnaFBlZzg4Q3BINEpmNzlueEExOHpWQldFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUVBRi9CRTM1MjFCODMzRjExMUVEQjgzNjEwODZDNEY5QUUwMi84Z2hQZWc4OENw SDRKZjc5bnhBMTh6VkJXRXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS92lIFfz9utAg44yurxSSgqMxvanCgFdXmlOCzabm7/S50OU+BrYqkiJED42 pRxJL+JOPtPI9//BbivK1jsnhHok+dr7A53+jOC6011AXtWcMNaiaX04ArCQLx22 YkIpEZKXJaSqei3tykPfWLW+ADTt7F8KjzVSyS5Dr/TrOspsIxOZPSlFbyj2rlti KERND45zMEt6j3PRc4n+gBO7mujMJlvQFGk//dEE23Ud5lmBIh5q+ZP40xQPr7Ro W0RH+SF5grBOYuB3l8Jrf3xhCeFVovLamUWj5BBhet2az7zpiuxuaKLcv5/a6/Oi BZr0dSuEvuggEZlUMSSDUq1OKg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:09 2026 by rpki-client