$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: oaE3h+TbiV7In0Cp6qHaMl3mja3w6sfwLU6AE0p9LFw= Subject key identifier: 85:90:89:94:BA:40:96:F7:FA:4D:E4:F3:CA:F5:E6:63:B9:44:C0:CE Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0D10 Signing time: Sat 28 Feb 2026 18:14:19 +0000 Manifest this update: Sat 28 Feb 2026 18:14:18 +0000 Manifest next update: Sat 07 Mar 2026 18:14:18 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: wB9MX5aayRsNtUwWnOz9DDxJdIRFnZe56HDDDr8/LZU=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: PKzsRoQOFkH0aPoaShEpuvQ+omyVkcjK/WY8mjX8BEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Feb 28 18:14:18 2026 GMT Not After : Mar 7 18:14:18 2026 GMT Subject: CN=69a3307b-d53c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:57:26:d1:a5:47:c0:b2:71:b2:9e:fc:bc:a1: 5e:b9:6c:89:55:55:a1:18:0b:f9:39:ef:f5:b8:0c: 3b:0d:a3:50:84:43:84:d3:44:75:08:9a:c0:ef:60: fb:f1:d3:c0:e5:09:d0:35:50:e9:de:b7:8a:c3:87: f7:07:da:d9:97:89:49:45:ef:36:1d:60:74:35:ea: 44:cd:00:af:fe:20:4c:17:0e:54:32:1e:e3:e8:b6: a1:a2:0f:80:53:95:b9:c3:db:23:56:cb:6c:2b:5d: 8c:bb:44:9a:0b:b5:d0:3c:f1:2d:2f:34:51:8d:e0: 31:08:ed:92:5f:e8:a0:0a:de:a5:8d:5f:17:2c:1d: ad:d7:13:57:ae:e9:da:68:04:cb:00:88:d8:17:78: c9:4c:28:56:6a:ea:fa:c0:e8:d2:88:65:c1:32:fc: b0:30:ab:94:51:e7:c7:71:27:64:e7:81:7a:44:8b: e7:b9:3c:c1:f4:62:cd:f5:a9:39:03:13:a3:e6:80: da:98:0d:24:e7:8d:b7:25:e5:6e:3d:2c:d9:1e:2a: 2b:69:73:59:55:2a:17:e4:be:88:b8:5a:f3:a5:00: a0:4b:ac:38:49:31:6d:61:a2:1e:fa:d0:bc:10:79: 2d:16:e6:4d:bc:2c:d8:76:80:e7:8d:a5:d2:2a:3b: e8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:90:89:94:BA:40:96:F7:FA:4D:E4:F3:CA:F5:E6:63:B9:44:C0:CE X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e3:f9:ee:57:67:91:17:2e:74:d2:41:5e:3f:fe:56:48:06: 62:66:61:2e:ba:97:a1:55:54:4c:36:50:04:ba:2b:83:46:b8: 48:dc:4c:7a:02:07:83:a9:9f:53:5c:ad:23:ac:33:41:74:3e: 1a:0b:f8:a1:fb:94:7b:a8:39:3d:59:fa:d6:ba:94:a1:c5:af: 13:1f:08:4f:99:cf:b4:ac:15:63:94:30:75:8c:63:e0:27:b1: d0:f7:63:12:31:30:5f:11:89:d1:74:00:fc:7c:dc:df:29:0c: d3:43:6e:61:3b:ce:d4:c8:11:65:0d:e1:0f:ba:bd:2d:90:d8: fb:5b:38:71:7c:31:50:00:ee:cf:a1:a6:6f:6b:76:da:9b:84: 77:84:9a:ed:bb:c8:12:b8:2b:4c:78:8f:e8:83:c1:b8:bf:0e: 00:5d:3f:0a:ef:08:14:8c:4c:cb:67:31:3f:1b:b7:a5:11:c8: 63:66:88:e1:f2:cd:0b:3a:67:e6:76:ee:d3:c3:40:a3:c9:93: dd:71:ee:db:f0:46:7c:7f:be:7b:4d:07:28:72:1a:b3:b0:cb: bc:ce:c5:a7:dc:e4:39:98:39:1f:75:82:f5:0d:f8:26:f0:8e: ff:6f:25:6b:1f:40:1e:f3:09:1d:ff:fe:5a:6e:cc:47:ea:fa: a0:88:48:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwMjI4MTgxNDE4WhcNMjYwMzA3MTgxNDE4WjAYMRYwFAYD VQQDDA02OWEzMzA3Yi1kNTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fcm0aVHwLJxsp78vKFeuWyJVVWhGAv5Oe/1uAw7DaNQhEOE00R1CJrA72D7 8dPA5QnQNVDp3reKw4f3B9rZl4lJRe82HWB0NepEzQCv/iBMFw5UMh7j6Lahog+A U5W5w9sjVstsK12Mu0SaC7XQPPEtLzRRjeAxCO2SX+igCt6ljV8XLB2t1xNXruna aATLAIjYF3jJTChWaur6wOjSiGXBMvywMKuUUefHcSdk54F6RIvnuTzB9GLN9ak5 AxOj5oDamA0k5423JeVuPSzZHioraXNZVSoX5L6IuFrzpQCgS6w4STFtYaIe+tC8 EHktFuZNvCzYdoDnjaXSKjvoUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIWQiZS6 QJb3+k3k88r15mO5RMDOMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAluP57ldnkRcudNJBXj/+VkgGYmZhLrqXoVVUTDZQBLorg0a4SNxMegIHg6mf U1ytI6wzQXQ+Ggv4ofuUe6g5PVn61rqUocWvEx8IT5nPtKwVY5QwdYxj4Cex0Pdj EjEwXxGJ0XQA/Hzc3ykM00NuYTvO1MgRZQ3hD7q9LZDY+1s4cXwxUADuz6Gmb2t2 2puEd4Sa7bvIErgrTHiP6IPBuL8OAF0/Cu8IFIxMy2cxPxu3pRHIY2aI4fLNCzpn 5nbu08NAo8mT3XHu2/BGfH++e00HKHIas7DLvM7Fp9zkOZg5H3WC9Q34JvCO/28l ax9AHvMJHf/+Wm7MR+r6oIhIhA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:10 2026 by rpki-client