$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: 9dCyhP++BgVoE6y4c4WxFB0QzX+IWW/oU7BBjilHWRI= Subject key identifier: A5:38:79:DC:B0:9F:EF:BF:D0:F9:0D:DD:11:75:B2:91:25:19:2C:B5 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 0219 Signing time: Sun 01 Mar 2026 22:27:14 +0000 Manifest this update: Sun 01 Mar 2026 22:27:13 +0000 Manifest next update: Sun 08 Mar 2026 22:27:13 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: ly63N8IDWCC1PmF88Wq+Ggt2DPAN43pU/wzMWK/zH/4=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: uBvCvr/fH3fM04LrLo8yLQnVCBWXatqmkz7SGocGSOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F, serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Mar 1 22:27:13 2026 GMT Not After : Mar 8 22:27:13 2026 GMT Subject: CN=69a4bd42-a818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3e:8f:b4:82:91:6b:51:c0:cc:4e:c4:71:55: d0:01:23:21:d1:1e:53:49:bf:5e:65:7e:ff:f7:be: 2c:7c:3a:9a:67:c6:75:7e:2a:75:56:7c:09:b0:aa: 55:ef:54:ed:1d:e3:79:1e:3b:fb:66:83:c4:a8:d8: 93:3c:52:20:a8:43:3b:ca:bc:34:e2:f8:7f:25:a8: 3c:b3:69:77:3c:2e:db:e7:c4:72:1c:5b:b9:ac:36: 07:d1:46:7c:a4:66:47:92:42:63:c4:34:6c:fb:52: 0e:cf:94:fa:8f:f2:ca:3e:24:08:0f:fa:46:c0:b1: 70:c6:e8:22:d1:bc:d8:77:e0:27:91:43:2d:ab:1d: 38:14:2b:90:8d:f2:4a:0c:6d:19:9b:1f:0e:3f:e6: fa:ad:af:0f:f4:ef:2a:72:64:72:62:7f:83:ee:4b: 85:e5:79:3b:16:b5:84:d1:c7:3d:03:07:95:2a:d5: 0d:59:73:14:be:73:1e:99:82:f9:81:f3:f1:b5:2f: 21:f9:de:c6:45:7e:f8:7d:31:ca:15:f2:da:ea:35: 35:e7:51:37:f6:cb:ec:23:29:51:14:87:5e:e1:77: 17:0a:14:a6:3d:bc:0a:2a:96:f7:58:c3:25:6f:f9: 70:91:44:bd:97:41:eb:be:d7:bf:51:b8:ef:ff:a8: 38:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:38:79:DC:B0:9F:EF:BF:D0:F9:0D:DD:11:75:B2:91:25:19:2C:B5 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:95:2f:6e:19:a2:f4:b6:28:63:89:0c:b1:b6:ae:e2:cf:52: b0:16:73:82:57:fb:20:5a:94:a4:e0:3c:60:85:f9:ca:c9:28: 77:03:00:51:0f:cf:37:99:6a:54:2e:1b:55:66:73:2d:b8:ac: 6d:3f:01:27:ee:10:d9:c4:59:ff:09:59:dc:48:df:88:b7:e1: aa:15:41:37:97:bc:3e:f2:2c:dd:aa:33:7d:f9:e3:e7:be:86: 8d:c2:bd:9a:bb:c4:80:77:ab:bb:70:ef:cb:78:21:75:b1:20: 5a:f9:3b:70:6d:30:25:98:2d:f9:da:83:71:96:a8:4e:f2:66: 41:d1:89:c5:74:90:d4:0c:f3:08:92:38:a2:1e:6a:72:81:cd: 92:a2:b8:89:43:4d:9c:98:9c:82:bb:54:9e:93:54:39:a4:5d: 5a:30:26:4b:6b:d5:f0:d8:39:c8:8f:5d:da:89:87:2f:df:5c: ba:a8:70:c3:d7:75:55:4e:0c:f2:a2:af:b1:f9:69:b7:f5:66: 9a:66:4f:5d:26:d6:ba:43:a2:f9:de:49:f8:18:7a:60:fa:11: 14:c5:bf:87:94:ee:35:6b:c6:2e:3d:13:19:3a:da:7d:7d:90: 41:dd:f4:29:43:3e:0e:47:b3:da:4c:86:43:6f:93:48:c4:8b: 9c:f6:74:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjYwMzAxMjIyNzEzWhcNMjYwMzA4MjIyNzEzWjAYMRYwFAYD VQQDEw02OWE0YmQ0Mi1hODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2z6PtIKRa1HAzE7EcVXQASMh0R5TSb9eZX7/974sfDqaZ8Z1fip1VnwJsKpV 71TtHeN5Hjv7ZoPEqNiTPFIgqEM7yrw04vh/Jag8s2l3PC7b58RyHFu5rDYH0UZ8 pGZHkkJjxDRs+1IOz5T6j/LKPiQID/pGwLFwxugi0bzYd+AnkUMtqx04FCuQjfJK DG0Zmx8OP+b6ra8P9O8qcmRyYn+D7kuF5Xk7FrWE0cc9AweVKtUNWXMUvnMemYL5 gfPxtS8h+d7GRX74fTHKFfLa6jU151E39svsIylRFIde4XcXChSmPbwKKpb3WMMl b/lwkUS9l0Hrvte/Ubjv/6g41wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKU4edyw n++/0PkN3RF1spElGSy1MB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT5Uvbhmi9LYoY4kMsbau4s9SsBZzglf7IFqUpOA8YIX5yskodwMAUQ/PN5lq VC4bVWZzLbisbT8BJ+4Q2cRZ/wlZ3EjfiLfhqhVBN5e8PvIs3aozffnj576GjcK9 mrvEgHeru3Dvy3ghdbEgWvk7cG0wJZgt+dqDcZaoTvJmQdGJxXSQ1AzzCJI4oh5q coHNkqK4iUNNnJicgrtUnpNUOaRdWjAmS2vV8Ng5yI9d2omHL99cuqhww9d1VU4M 8qKvsflpt/VmmmZPXSbWukOi+d5J+Bh6YPoRFMW/h5TuNWvGLj0TGTrafX2QQd30 KUM+Dkez2kyGQ2+TSMSLnPZ0Sg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:15:02 2026 by rpki-client