$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft File: JCmj7lCI89RTcqjjs2g0x16ubSk.mft (raw, json) Hash identifier: 8L1Bld33zK6pfFOIQPpNdWq8HUQNSOVgA7roqTppW00= Subject key identifier: 6D:AB:44:59:0F:E8:57:60:09:1C:0E:2E:6F:CF:FB:2B:5C:6B:A6:4C Authority key identifier: 24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 Certificate issuer: /CN=A91EE96E/serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft Manifest number: C7 Signing time: Sun 01 Mar 2026 08:07:58 +0000 Manifest this update: Sun 01 Mar 2026 08:07:58 +0000 Manifest next update: Sun 08 Mar 2026 08:07:58 +0000 Files and hashes: 1: JCmj7lCI89RTcqjjs2g0x16ubSk.crl (hash: 0nsUV0TMYPbAKokOYn6zDhR3nwVAXnRDBJap5o78mPU=) 2: 92B377C82CB011F0A2E86B16C4F9AE02.roa (hash: FoDHZvXeH5e/XFJzf3AymBW0SIuGnIL2DXJhgfsRixg=) 3: 7F639A182CB011F08B722116C4F9AE02.roa (hash: 8SOJ6SdOtJ/q3NwLkWGRY6LjHM44wHGZjzKG2cwDOuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE96E, serialNumber=2429A3EE5088F3D45372A8E3B36834C75EAE6D29 Validity Not Before: Mar 1 08:07:58 2026 GMT Not After : Mar 8 08:07:58 2026 GMT Subject: CN=69a3f3de-98b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b6:31:20:16:08:1d:65:6c:c9:c2:e8:45:22: 61:df:41:3f:1d:8d:dd:bd:64:3f:f6:f4:d7:ac:ec: f9:b4:07:6a:d4:d5:98:7d:e2:5b:d0:e6:4a:3f:49: 52:3d:61:ea:40:d4:87:9d:4d:f4:89:2a:3b:20:cd: b5:6c:b7:04:b0:1a:a0:96:5e:03:00:41:68:cb:05: fd:f8:2f:38:26:3f:8c:4f:f3:a9:bd:c9:07:b0:d1: 74:0e:b5:a1:7b:85:91:89:6a:6f:69:df:fa:31:b0: 9d:66:0f:94:5f:ed:6e:4d:f6:51:ad:43:1c:b2:ff: 1f:1e:44:84:97:39:7b:12:38:ee:74:7b:03:40:8e: 59:02:da:c8:1f:4b:36:2d:fd:6c:98:4f:7d:d0:33: 17:a1:fa:74:a4:09:8c:0d:ce:5c:7c:b4:b8:50:49: 21:5d:8e:4c:96:72:7d:dd:8a:b3:6b:2b:04:cf:8f: 64:22:06:0e:76:1d:bf:8c:ea:28:76:cc:e7:2d:2e: 98:db:63:f6:60:57:07:e3:ce:76:68:4b:a2:79:1f: 46:9c:8e:3d:1b:92:73:21:56:82:57:c4:12:12:8e: 41:f5:15:c8:e7:f1:a2:8e:2c:2b:f0:1b:06:cf:91: 5d:22:fc:68:f9:cb:d3:bf:d8:7c:62:2f:1f:30:f5: 56:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AB:44:59:0F:E8:57:60:09:1C:0E:2E:6F:CF:FB:2B:5C:6B:A6:4C X509v3 Authority Key Identifier: keyid:24:29:A3:EE:50:88:F3:D4:53:72:A8:E3:B3:68:34:C7:5E:AE:6D:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCmj7lCI89RTcqjjs2g0x16ubSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE96E/23D2F16EEC2111EFA355605FC4F9AE02/JCmj7lCI89RTcqjjs2g0x16ubSk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a9:18:8f:4f:da:85:43:cf:b1:ac:74:00:a7:12:cb:07:95: 5d:92:8b:1f:76:00:55:12:ab:a2:c2:cb:2d:a8:96:17:f6:1a: ab:a2:f6:a9:a4:16:f4:bf:a3:e9:c9:da:28:3d:b2:27:91:73: 91:9e:f4:71:af:11:09:b0:c1:98:4d:1b:a4:24:23:d8:07:cf: 91:ae:aa:ec:38:73:10:9b:ec:59:c4:0c:bf:98:a9:f5:b0:a2: 5a:b9:8a:54:5f:f8:01:4a:18:69:a3:07:5c:9e:06:bf:14:9f: bc:76:e8:d1:3a:e6:05:08:e9:f7:3b:d6:5d:b1:e4:9a:29:02: 45:9f:bf:8f:c7:ed:bc:c7:9f:39:77:74:d1:47:90:d7:a7:ee: 45:65:d3:44:80:be:88:30:23:68:41:a9:b7:6e:47:1c:41:ce: b5:cf:09:bb:92:a0:48:6e:6f:02:62:12:81:7e:4f:f1:9c:74: 9a:b0:fc:3d:2b:29:b2:1a:3f:c4:cf:29:cb:d2:d3:06:01:ec: 44:fd:dc:05:5d:21:b3:35:96:e6:d5:58:ab:55:cc:f1:af:80: f7:32:04:d4:ab:05:44:b7:13:26:84:1f:6f:a5:a7:7f:a6:76: cf:e9:a2:d4:99:85:c0:5b:2f:e8:19:a9:6c:02:b5:67:8d:3e: ce:e5:62:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5NkUxMTAvBgNVBAUTKDI0MjlBM0VFNTA4OEYzRDQ1MzcyQThFM0IzNjgzNEM3 NUVBRTZEMjkwHhcNMjYwMzAxMDgwNzU4WhcNMjYwMzA4MDgwNzU4WjAYMRYwFAYD VQQDEw02OWEzZjNkZS05OGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLYxIBYIHWVsycLoRSJh30E/HY3dvWQ/9vTXrOz5tAdq1NWYfeJb0OZKP0lS PWHqQNSHnU30iSo7IM21bLcEsBqgll4DAEFoywX9+C84Jj+MT/OpvckHsNF0DrWh e4WRiWpvad/6MbCdZg+UX+1uTfZRrUMcsv8fHkSElzl7EjjudHsDQI5ZAtrIH0s2 Lf1smE990DMXofp0pAmMDc5cfLS4UEkhXY5MlnJ93YqzaysEz49kIgYOdh2/jOoo dsznLS6Y22P2YFcH4852aEuieR9GnI49G5JzIVaCV8QSEo5B9RXI5/Gijiwr8BsG z5FdIvxo+cvTv9h8Yi8fMPVW1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG2rRFkP 6FdgCRwOLm/P+ytca6ZMMB8GA1UdIwQYMBaAFCQpo+5QiPPUU3Ko47NoNMderm0p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTk2RS8yM0QyRjE2RUVD MjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5UlRjcWpqczJnMHgxNnVi U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDbWo3bENJODlSVGNxampzMmcweDE2dWJTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTk2RS8yM0QyRjE2RUVDMjExMUVGQTM1NTYwNUZDNEY5QUUwMi9KQ21qN2xDSTg5 UlRjcWpqczJnMHgxNnViU2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXKkYj0/ahUPPsax0AKcSyweVXZKLH3YAVRKrosLLLaiWF/Yaq6L2qaQW9L+j 6cnaKD2yJ5FzkZ70ca8RCbDBmE0bpCQj2AfPka6q7DhzEJvsWcQMv5ip9bCiWrmK VF/4AUoYaaMHXJ4GvxSfvHbo0TrmBQjp9zvWXbHkmikCRZ+/j8ftvMefOXd00UeQ 16fuRWXTRIC+iDAjaEGpt25HHEHOtc8Ju5KgSG5vAmISgX5P8Zx0mrD8PSspsho/ xM8py9LTBgHsRP3cBV0hszWW5tVYq1XM8a+A9zIE1KsFRLcTJoQfb6Wnf6Z2z+mi 1JmFwFsv6BmpbAK1Z40+zuVijw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:20 2026 by rpki-client