$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: G9XKq36GB+BBBNpfKXSueQtNIRZ/F2MbfCUwvJuZONA= Subject key identifier: 70:1B:B3:1D:BB:84:74:34:C3:9F:56:CD:AC:A5:47:A5:10:06:85:17 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1353 Signing time: Sat 28 Feb 2026 17:04:05 +0000 Manifest this update: Sat 28 Feb 2026 17:04:05 +0000 Manifest next update: Sat 07 Mar 2026 17:04:05 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: x15OTuLKrbIwikW4v+ca0/BxJXzrmxgfGCiVwSIktgY=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: 0/XyD86MMGDFZWji3u5g4rHGi/klL7pxbtniJ4b3GEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:04:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4965 (0x1365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Feb 28 17:04:05 2026 GMT Not After : Mar 7 17:04:05 2026 GMT Subject: CN=69a32005-1bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:9f:da:4a:ea:b5:6b:31:ae:82:e2:03:b6: 1c:3b:84:a8:4c:3a:b6:40:08:ac:6c:a9:b8:e3:a1: 35:05:37:05:8f:c7:7c:60:1a:4e:6d:52:26:29:15: 07:15:e4:7e:a4:91:3b:f8:f7:e3:72:4e:6e:2a:77: b7:76:14:44:54:e3:c8:99:f3:5b:87:8e:b5:ff:97: 9b:43:c1:eb:b5:81:75:43:84:e1:91:e0:c9:fb:dd: e1:96:65:e8:36:e7:83:ee:51:2a:e8:21:9c:68:90: 81:69:b0:eb:c1:e5:30:65:b8:8d:6f:4a:e3:ac:c8: 03:66:26:71:87:23:29:7b:4a:a8:61:fb:9c:31:0c: 67:30:55:7c:9a:f4:20:ad:f6:59:e8:e0:1c:8a:35: 43:1b:10:8f:c0:b2:c4:ab:ed:12:00:63:d3:5d:ee: 10:9b:c8:28:38:52:f7:34:7a:b4:aa:bd:b6:61:79: a3:cf:1d:b5:af:5e:4b:ef:8f:75:95:1f:de:94:e4: ff:a0:e3:66:12:88:5c:55:1d:89:c3:b5:ef:10:74: dd:e2:6a:34:0e:3c:be:34:a9:00:39:a1:4f:7e:f0: 0e:78:02:6e:8d:5b:d3:d2:79:7c:be:3e:f7:9b:a9: 5f:aa:69:61:e3:18:f0:dd:50:a7:6e:e6:94:a4:3c: 18:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1B:B3:1D:BB:84:74:34:C3:9F:56:CD:AC:A5:47:A5:10:06:85:17 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:65:05:9f:1c:66:b7:7a:15:ef:7e:d2:34:4c:98:ce:a7:aa: c8:ab:c4:a8:e1:b9:19:12:62:c9:11:ec:81:67:04:06:6f:aa: 55:f1:82:1b:9d:38:3d:20:d5:a9:ba:41:3a:eb:62:c4:a6:a5: c8:65:94:79:a5:5a:63:93:4e:e9:98:55:e7:34:d5:7d:f6:4a: a5:cc:ea:05:69:f9:03:0d:83:1f:e8:bc:0b:6b:87:d9:5f:90: 1e:79:d4:39:98:b5:ad:86:0b:d4:0b:17:b0:49:eb:19:6e:e7: c3:92:e3:fd:7c:7d:22:94:2a:d6:4b:5c:d9:aa:b8:7e:33:36: d7:44:9b:64:6d:33:26:13:40:36:76:c2:03:24:1f:0e:3d:d1: 3c:a4:a5:7b:da:00:c4:ea:bf:ef:64:9d:e7:84:64:5c:4d:b3: 7c:73:6b:7c:ff:01:71:e2:69:6c:c2:92:4c:3d:18:ce:9e:eb: 13:8a:cc:3e:55:4f:e1:0a:1d:54:0b:3e:94:d4:b0:dd:ae:ca: 26:b8:c7:c9:f7:0f:50:98:d8:c6:0d:83:78:d6:7e:c3:5f:c2: e0:41:7a:46:92:d8:ee:e3:27:38:fa:40:fa:08:68:08:d5:a9: 80:72:21:41:7e:70:af:a2:cf:ee:aa:04:43:3d:14:f3:12:b2: 5c:56:4b:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjYwMjI4MTcwNDA1WhcNMjYwMzA3MTcwNDA1WjAYMRYwFAYD VQQDDA02OWEzMjAwNS0xYmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzESf2krqtWsxroLiA7YcO4SoTDq2QAisbKm446E1BTcFj8d8YBpObVImKRUH FeR+pJE7+Pfjck5uKne3dhREVOPImfNbh461/5ebQ8HrtYF1Q4ThkeDJ+93hlmXo NueD7lEq6CGcaJCBabDrweUwZbiNb0rjrMgDZiZxhyMpe0qoYfucMQxnMFV8mvQg rfZZ6OAcijVDGxCPwLLEq+0SAGPTXe4Qm8goOFL3NHq0qr22YXmjzx21r15L7491 lR/elOT/oONmEohcVR2Jw7XvEHTd4mo0Djy+NKkAOaFPfvAOeAJujVvT0nl8vj73 m6lfqmlh4xjw3VCnbuaUpDwYnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHAbsx27 hHQ0w59WzaylR6UQBoUXMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX2UFnxxmt3oV737SNEyYzqeqyKvEqOG5GRJiyRHsgWcEBm+qVfGCG504PSDV qbpBOutixKalyGWUeaVaY5NO6ZhV5zTVffZKpczqBWn5Aw2DH+i8C2uH2V+QHnnU OZi1rYYL1AsXsEnrGW7nw5Lj/Xx9IpQq1ktc2aq4fjM210SbZG0zJhNANnbCAyQf Dj3RPKSle9oAxOq/72Sd54RkXE2zfHNrfP8BceJpbMKSTD0Yzp7rE4rMPlVP4Qod VAs+lNSw3a7KJrjHyfcPUJjYxg2DeNZ+w1/C4EF6RpLY7uMnOPpA+ghoCNWpgHIh QX5wr6LP7qoEQz0U8xKyXFZL/Q== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:35 2026 by rpki-client