$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: ttF1NaLXbZwQG/vh/3vzc/f43sqg64VhKoVKvqD+Y4U= Subject key identifier: 7C:29:6D:92:2E:55:75:F6:B3:F5:AA:0A:5E:A3:F2:44:60:3C:2E:F1 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: B2 Signing time: Sun 01 Mar 2026 08:23:43 +0000 Manifest this update: Sun 01 Mar 2026 08:23:43 +0000 Manifest next update: Sun 08 Mar 2026 08:23:43 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: A0DNNsfdjDzvQxNTr9XUIA/1GYkkaWBRW3XR+LvDkPw=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: mmIU8UeudAKZrTx8s6Nxy2r+SAdWHS9FcLl5he11RrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Mar 1 08:23:43 2026 GMT Not After : Mar 8 08:23:43 2026 GMT Subject: CN=69a3f78f-a070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:69:9b:c7:b9:db:61:1d:ea:ee:07:74:df:41: 23:e3:b8:27:77:f4:02:44:93:de:14:5b:39:1c:b5: 4c:be:f2:26:7e:1b:60:77:97:d3:86:82:a3:a8:0e: 16:a2:21:3b:cc:4d:04:89:9a:1c:1f:3c:5c:24:a7: 80:31:5d:9c:da:c1:f7:4e:d0:60:e9:5b:c6:6f:f1: df:f6:f9:4d:16:43:55:74:22:07:f9:3f:5b:f0:80: e0:47:4a:bd:49:de:92:e7:81:38:66:9f:1d:71:bf: 76:6c:1f:70:4f:d6:3f:3d:ca:1a:b4:db:7f:8d:2f: 80:d2:bb:86:d7:7a:14:d6:0f:9e:df:31:bd:b2:a3: 48:0b:5a:19:04:5e:63:e9:54:21:ce:7a:23:e0:09: 96:76:2f:42:7b:4a:0d:72:cc:8e:9d:4c:b7:cd:36: ab:d4:30:1a:4a:31:19:8a:86:77:15:38:be:db:00: c3:f4:aa:c8:bc:fb:16:2d:71:f3:02:41:c0:bf:4f: 6a:44:a0:4f:6d:ec:16:c7:7f:30:c1:04:ba:f1:5c: 27:1a:8a:a1:9b:7d:7b:54:80:29:9e:f0:80:02:f3: e8:f8:ac:84:ec:2b:91:4d:57:f8:13:46:ea:64:83: 0d:94:52:2e:42:a2:53:f9:38:ea:74:28:77:39:1b: 49:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:29:6D:92:2E:55:75:F6:B3:F5:AA:0A:5E:A3:F2:44:60:3C:2E:F1 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:45:ea:04:60:29:0d:90:43:1b:00:32:f7:77:21:4c:26:18: 45:3c:c8:84:40:c0:e7:b4:50:46:e7:0b:51:ea:33:70:c1:f3: c1:a9:ef:b5:1b:db:8e:fd:cc:45:19:fc:17:f1:c2:f4:5c:9f: 47:8f:96:44:25:0d:4e:55:3c:06:67:2f:b0:de:f7:1c:90:0a: dc:99:8b:d9:7d:01:83:e4:1e:43:9d:d3:d6:f6:24:b9:e7:0e: 20:8e:df:8d:8f:9c:29:ab:d3:6e:cb:55:c3:3f:e1:8a:94:17: 8e:c9:a5:78:d7:db:87:12:97:97:21:c7:3d:d3:00:e0:9a:d1: ea:e9:23:76:96:c5:1b:56:ea:64:65:f4:90:cb:71:e0:d8:e3: 1f:b0:9a:30:a1:52:d2:d7:ca:df:d4:5f:10:65:63:f8:8b:dc: 73:cd:a8:bf:82:c2:79:3a:72:4c:e5:d1:48:16:d2:4e:a6:f6: de:44:28:a4:3c:af:68:db:b9:cd:6d:24:1b:84:a0:9a:b7:a0: 6e:4b:1a:43:9c:d9:b0:bc:f5:7d:7d:c7:89:3f:58:e6:27:1e: b8:4d:d9:6f:be:e1:75:8c:fc:53:18:a9:fc:3f:fd:81:b3:e4: 12:4d:66:7a:c4:23:40:be:ec:c4:7d:94:cb:f9:4b:b1:a6:5f: b1:8a:05:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCQjAxMTAvBgNVBAUTKEZFRDg0RTlGRTAxNTlBOTkzN0EyMTkzQTBCN0RCQTIz QjZDMjY1QjgwHhcNMjYwMzAxMDgyMzQzWhcNMjYwMzA4MDgyMzQzWjAYMRYwFAYD VQQDEw02OWEzZjc4Zi1hMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmmbx7nbYR3q7gd030Ej47gnd/QCRJPeFFs5HLVMvvImfhtgd5fThoKjqA4W oiE7zE0EiZocHzxcJKeAMV2c2sH3TtBg6VvGb/Hf9vlNFkNVdCIH+T9b8IDgR0q9 Sd6S54E4Zp8dcb92bB9wT9Y/PcoatNt/jS+A0ruG13oU1g+e3zG9sqNIC1oZBF5j 6VQhznoj4AmWdi9Ce0oNcsyOnUy3zTar1DAaSjEZioZ3FTi+2wDD9KrIvPsWLXHz AkHAv09qRKBPbewWx38wwQS68VwnGoqhm317VIApnvCAAvPo+KyE7CuRTVf4E0bq ZIMNlFIuQqJT+TjqdCh3ORtJTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwpbZIu VXX2s/WqCl6j8kRgPC7xMB8GA1UdIwQYMBaAFP7YTp/gFZqZN6IZOgt9uiO2wmW4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREJCMC9FNjUzRTUxMjA3 RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1wazNvaGs2QzMyNkk3YkNa YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1piZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REJCMC9FNjUzRTUxMjA3RUQxMUYwQjBBNjg3NjRDNEY5QUUwMi9fdGhPbi1BVm1w azNvaGs2QzMyNkk3YkNaYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArkXqBGApDZBDGwAy93chTCYYRTzIhEDA57RQRucLUeozcMHzwanvtRvbjv3M RRn8F/HC9FyfR4+WRCUNTlU8BmcvsN73HJAK3JmL2X0Bg+QeQ53T1vYkuecOII7f jY+cKavTbstVwz/hipQXjsmleNfbhxKXlyHHPdMA4JrR6ukjdpbFG1bqZGX0kMtx 4NjjH7CaMKFS0tfK39RfEGVj+Ivcc82ov4LCeTpyTOXRSBbSTqb23kQopDyvaNu5 zW0kG4SgmregbksaQ5zZsLz1fX3HiT9Y5iceuE3Zb77hdYz8Uxip/D/9gbPkEk1m esQjQL7sxH2Uy/lLsaZfsYoFxA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:10 2026 by rpki-client