$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: Q+5XFSlZOF72dn8yUM2BB3RnQKP4A59DVt+Ze6msy3k= Subject key identifier: 4B:59:EB:7F:3D:81:2B:FE:16:74:1B:E2:9E:72:ED:4A:0D:8A:53:DE Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 0121 Signing time: Sun 01 Mar 2026 06:41:30 +0000 Manifest this update: Sun 01 Mar 2026 06:41:29 +0000 Manifest next update: Sun 08 Mar 2026 06:41:29 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: FwUw4qvRbwUP7ziH/kzdjyop1L8211XCi+K5Z8ftpT8=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Mar 1 06:41:29 2026 GMT Not After : Mar 8 06:41:29 2026 GMT Subject: CN=69a3df9a-b0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:cb:40:3b:b3:69:1a:14:3e:56:5d:1a:19: 08:e1:40:a8:b6:29:f9:33:d4:98:a4:e4:a5:d3:85: 47:2f:db:f5:02:fb:5e:43:7b:bf:83:73:28:66:b1: aa:a6:e8:02:44:51:32:5c:cd:63:fc:3a:dd:17:07: b6:4f:50:ff:f8:1d:e3:fd:b4:d1:89:3e:99:a4:46: fc:81:3c:fa:69:c2:27:28:8e:82:2f:e6:02:33:b8: 4c:3f:ca:7e:4e:46:6a:59:d0:bc:81:1a:e6:08:8a: 65:9c:80:ac:bd:38:6d:f0:88:38:9e:bd:ab:2a:32: f7:82:2f:c4:08:5b:84:b0:70:b1:34:e2:30:2b:2b: 26:af:67:c0:a5:23:72:83:e0:04:51:36:9d:10:1f: b6:db:5c:85:f8:ec:a3:4f:a7:ce:30:01:6a:36:4d: 6a:59:f7:13:d4:b2:3f:78:a2:39:e6:d6:9a:c6:60: f3:1c:b0:ab:43:a6:e8:96:db:2a:35:38:e1:99:ee: cc:f8:19:0c:95:2a:83:39:a7:28:da:4e:73:0e:71: 1a:9f:c1:96:bd:46:d0:94:8f:0c:9c:7a:ea:42:a9: 24:59:65:cc:fd:5b:52:8f:f8:5b:01:6f:ce:26:22: 7b:f3:c0:35:a2:d9:5b:f8:d4:98:e9:dc:b7:55:87: 23:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:59:EB:7F:3D:81:2B:FE:16:74:1B:E2:9E:72:ED:4A:0D:8A:53:DE X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:12:c4:14:5d:4c:44:12:97:88:5c:7c:d8:72:1c:e5:04:19: 9d:fc:7e:43:3e:da:9f:03:26:65:49:29:62:76:4a:8a:cf:a6: 3f:af:ee:26:6a:1a:94:3c:1b:e3:3f:5b:92:d0:a6:12:8e:11: 52:1f:6d:23:9e:ea:e0:2c:f8:30:3f:e2:9b:68:cb:8f:f4:c3: 6a:cc:66:d9:79:c3:ca:c0:d4:9a:63:23:fb:92:0b:2e:2f:e9: 82:3e:7b:48:14:35:cc:76:43:c0:f1:76:6d:ee:de:9f:cc:d6: 4c:e7:b3:3a:06:71:f6:5f:fa:a1:7d:fd:f9:1b:a0:5b:58:1c: ba:11:df:73:c7:de:07:cd:f1:d8:05:96:dd:6f:b6:38:5d:53: 22:56:54:5a:9a:cd:cc:e9:c7:d8:1c:d7:5d:79:ee:3c:da:f7: 30:ca:4f:99:f8:71:6a:14:3c:56:58:21:c0:6f:81:51:67:b0: e8:6f:14:d6:bd:03:b6:77:f0:57:97:5e:e4:d6:37:a5:75:c2: 40:23:08:0d:21:eb:dd:52:9c:34:f2:13:2f:a0:f5:d3:de:28: 74:15:b9:34:10:f2:39:9f:22:76:a8:71:f7:82:4b:97:e1:b8: f8:6b:fa:9b:41:8b:f9:e6:4c:3c:19:4a:6a:26:b0:0a:f5:8f: 27:6f:d5:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjYwMzAxMDY0MTI5WhcNMjYwMzA4MDY0MTI5WjAYMRYwFAYD VQQDEw02OWEzZGY5YS1iMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt3LQDuzaRoUPlZdGhkI4UCotin5M9SYpOSl04VHL9v1AvteQ3u/g3MoZrGq pugCRFEyXM1j/DrdFwe2T1D/+B3j/bTRiT6ZpEb8gTz6acInKI6CL+YCM7hMP8p+ TkZqWdC8gRrmCIplnICsvTht8Ig4nr2rKjL3gi/ECFuEsHCxNOIwKysmr2fApSNy g+AEUTadEB+221yF+OyjT6fOMAFqNk1qWfcT1LI/eKI55taaxmDzHLCrQ6boltsq NTjhme7M+BkMlSqDOaco2k5zDnEan8GWvUbQlI8MnHrqQqkkWWXM/VtSj/hbAW/O JiJ788A1otlb+NSY6dy3VYcjNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEtZ6389 gSv+FnQb4p5y7UoNilPeMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvxLEFF1MRBKXiFx82HIc5QQZnfx+Qz7anwMmZUkpYnZKis+mP6/uJmoalDwb 4z9bktCmEo4RUh9tI57q4Cz4MD/im2jLj/TDasxm2XnDysDUmmMj+5ILLi/pgj57 SBQ1zHZDwPF2be7en8zWTOezOgZx9l/6oX39+RugW1gcuhHfc8feB83x2AWW3W+2 OF1TIlZUWprNzOnH2BzXXXnuPNr3MMpPmfhxahQ8VlghwG+BUWew6G8U1r0Dtnfw V5de5NY3pXXCQCMIDSHr3VKcNPITL6D1094odBW5NBDyOZ8idqhx94JLl+G4+Gv6 m0GL+eZMPBlKaiawCvWPJ2/VeA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:46:47 2026 by rpki-client