$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft File: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft (raw, json) Hash identifier: 8ZxUQcx7KonDDbfIt3+/mx9/VXh8U4qDIfArAASfK3o= Subject key identifier: E4:E3:57:44:58:79:27:1A:41:9F:C6:98:9F:9A:AA:C7:B2:1A:0B:4B Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 0813 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft Manifest number: 080B Signing time: Mon 02 Mar 2026 00:39:53 +0000 Manifest this update: Mon 02 Mar 2026 00:39:52 +0000 Manifest next update: Mon 09 Mar 2026 00:39:52 +0000 Files and hashes: 1: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl (hash: hLe30f6ihJvvZenjPZkSTIN94+tc7s52u0E7cTfxukA=) 2: 65D706B213FA11EB92A6FE61C4F9AE02.roa (hash: uOMbohBjqYkrJACqTf93OXW7s4M6jLEwG//Jh6twRk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Mar 2 00:39:52 2026 GMT Not After : Mar 9 00:39:52 2026 GMT Subject: CN=69a4dc59-c201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:3d:61:4d:0c:19:0e:cc:ca:d7:43:64:c8: c1:78:ab:d8:fd:74:65:d2:c8:8e:d6:bb:54:84:da: 32:98:79:d2:8f:b0:50:ba:e6:f1:91:a5:d9:75:c5: da:ff:e9:67:11:79:6b:f2:e3:52:d4:75:b5:74:7a: 0c:85:d3:38:5a:59:43:94:15:f7:d3:a5:6e:d7:44: ee:c9:71:f0:1d:2a:86:4d:fe:a2:5d:4d:5c:5b:36: 8e:4b:8f:8b:9d:70:71:1b:16:55:82:94:0e:0c:78: 59:db:11:42:b4:4a:af:39:5e:36:4d:cf:0a:46:23: e2:f4:e1:8e:b5:63:e4:1e:0b:43:9a:e0:ad:fd:b7: fd:b7:76:45:78:72:f5:0c:77:9b:f9:21:f2:d4:82: 93:f8:91:2c:40:f9:4f:df:68:b1:2c:00:18:a0:74: f7:1f:8b:18:f4:27:81:69:44:1d:a0:07:e7:9e:ee: 31:95:36:3c:f9:e6:13:70:72:d7:0d:70:45:43:91: e0:54:fa:8a:8e:30:27:31:6a:cb:ea:8b:28:ad:70: 87:3d:27:a2:f2:82:ee:87:f6:08:85:7d:d9:5c:56: f3:e3:e7:cf:fc:d8:46:88:40:8f:be:a1:42:dc:bf: 28:33:7f:0b:32:1e:16:91:f9:93:fa:31:cc:19:8a: 48:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E3:57:44:58:79:27:1A:41:9F:C6:98:9F:9A:AA:C7:B2:1A:0B:4B X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2e:c7:ad:4e:84:44:40:ac:af:e5:db:59:d3:1c:af:8d:c7: 2a:5d:4f:5e:e7:aa:92:1b:f6:2c:69:ee:79:86:f3:20:56:c5: 1a:51:a5:e1:62:6e:7f:62:f9:bc:b0:06:8c:f6:e2:bd:5c:c0: bb:c5:a2:c0:3d:43:3b:16:a6:e0:36:ec:71:9a:db:41:23:42: a5:3f:13:3b:4a:64:02:6b:1e:33:d5:c4:7c:ee:ad:64:a6:dc: 15:1a:c3:4f:a7:bd:55:2b:6c:a2:a0:bf:4e:cb:d9:00:ee:63: ca:70:17:61:79:3d:97:11:bf:12:f1:b8:4c:85:3d:9f:cb:2f: e6:ff:d8:77:a3:37:60:61:b1:03:a9:b5:87:ef:8e:84:8b:b4: d7:ea:fa:08:c5:3f:39:ff:c6:b9:cf:c2:46:6d:1a:54:a3:32: 17:c9:be:4e:a6:d0:2c:e5:fe:5c:d1:ab:06:4b:be:51:87:ef: f0:d1:c9:42:7e:92:62:46:a2:90:ed:c2:a0:1f:4c:41:35:06: 80:32:2e:e5:19:85:34:f7:4c:ae:c4:e0:ed:b9:63:4e:44:b8: 4f:54:d8:db:6d:de:b9:4e:53:56:59:07:85:60:dd:85:6f:21: aa:31:8d:85:e8:4c:9a:5e:e9:9e:8b:44:be:3c:28:1b:e6:23: 1e:2f:3e:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjYwMzAyMDAzOTUyWhcNMjYwMzA5MDAzOTUyWjAYMRYwFAYD VQQDEw02OWE0ZGM1OS1jMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsE49YU0MGQ7MytdDZMjBeKvY/XRl0siO1rtUhNoymHnSj7BQuubxkaXZdcXa /+lnEXlr8uNS1HW1dHoMhdM4WllDlBX306Vu10TuyXHwHSqGTf6iXU1cWzaOS4+L nXBxGxZVgpQODHhZ2xFCtEqvOV42Tc8KRiPi9OGOtWPkHgtDmuCt/bf9t3ZFeHL1 DHeb+SHy1IKT+JEsQPlP32ixLAAYoHT3H4sY9CeBaUQdoAfnnu4xlTY8+eYTcHLX DXBFQ5HgVPqKjjAnMWrL6osorXCHPSei8oLuh/YIhX3ZXFbz4+fP/NhGiECPvqFC 3L8oM38LMh4WkfmT+jHMGYpILQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOTjV0RY eScaQZ/GmJ+aqseyGgtLMB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0M1Mi82NTI4MzZFODEzOEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19Y UUhhMUNYY0FFeXg2eUc1aUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKy7HrU6ERECsr+XbWdMcr43HKl1PXueqkhv2LGnueYbzIFbFGlGl4WJuf2L5 vLAGjPbivVzAu8WiwD1DOxam4DbscZrbQSNCpT8TO0pkAmseM9XEfO6tZKbcFRrD T6e9VStsoqC/TsvZAO5jynAXYXk9lxG/EvG4TIU9n8sv5v/Yd6M3YGGxA6m1h++O hIu01+r6CMU/Of/Guc/CRm0aVKMyF8m+TqbQLOX+XNGrBku+UYfv8NHJQn6SYkai kO3CoB9MQTUGgDIu5RmFNPdMrsTg7bljTkS4T1TY223euU5TVlkHhWDdhW8hqjGN hehMml7pnotEvjwoG+YjHi8+ow== -----END CERTIFICATE-----Generated at Mon Mar 2 17:13:06 2026 by rpki-client