$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: xzzCZVpQjWWTw1dGITWIU0zykLvX5qb33da+6Q7NbF4= Subject key identifier: 5C:C9:14:36:6D:84:74:54:0E:83:5C:DF:A6:F2:7D:80:23:17:AA:90 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 2A9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 2A8F Signing time: Sun 01 Mar 2026 23:21:17 +0000 Manifest this update: Sun 01 Mar 2026 23:21:15 +0000 Manifest next update: Sun 08 Mar 2026 23:21:15 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: 5HAsD/X7tP0jqRzVsHfHyvsz+9Dg1ySDW7iG9Bre9oA=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: qeOImN/OPXFrmVSnTa/uFkjmKzAD8SUjcGoXbzqtLu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10908 (0x2a9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Mar 1 23:21:15 2026 GMT Not After : Mar 8 23:21:15 2026 GMT Subject: CN=69a4c9ec-c16e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:43:29:9a:96:7f:6d:c7:da:3f:6a:9c:89:a0: f2:58:30:ea:18:d8:c4:dc:c3:5a:3a:d1:58:c4:f7: 2d:21:d8:02:a3:d4:e4:20:74:3d:fa:b2:48:9f:23: e0:90:0d:f7:26:1a:90:cd:0e:7e:0d:cb:bd:06:5c: 1f:de:46:2d:31:9d:04:4e:01:21:e8:40:3d:27:ca: 9f:bc:97:43:68:0c:e8:84:d4:ab:7f:be:72:38:e7: 5e:4e:b1:4f:34:49:82:79:4d:84:5b:47:1f:c9:18: 02:59:b4:6a:5c:76:9b:be:74:49:d0:6b:51:20:7d: 40:e2:37:25:04:77:0b:93:16:30:ae:d5:5c:f5:48: 8f:a2:31:47:b2:51:71:14:a5:d7:fd:5f:ee:40:9a: 3d:40:3f:03:97:5f:35:23:c4:d1:04:ee:66:19:1d: a8:0c:e1:ae:54:95:72:85:4c:56:03:67:69:1e:0b: d9:bc:87:b2:77:cc:3e:d4:38:07:cb:8a:08:46:53: d8:3c:9e:00:c3:48:d8:f6:11:b7:26:51:93:fd:67: 62:94:84:bc:85:ff:2c:f8:96:56:e9:f1:d5:ab:eb: b5:f8:da:d7:c9:52:95:ac:a3:88:ff:b2:a7:0d:da: 25:73:90:16:31:b3:86:5a:30:37:3c:7f:09:e6:7e: 5f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C9:14:36:6D:84:74:54:0E:83:5C:DF:A6:F2:7D:80:23:17:AA:90 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:22:45:48:3c:ae:96:28:30:53:48:62:a9:af:f1:a8:50:49: 7e:29:92:60:90:98:94:2e:bb:6a:0f:d4:3e:ef:3b:06:e8:42: 67:67:a5:3f:be:ff:b1:ae:19:c6:49:b6:83:66:3e:ff:75:dd: 06:8f:d6:77:81:fd:15:b7:ae:21:cf:15:2a:ba:40:ac:84:18: 99:87:6b:34:a7:61:af:78:7a:9f:5d:76:f4:2e:17:d4:7c:b2: c8:ac:d0:d2:12:2e:46:6d:83:d4:ef:fc:2f:48:bd:13:7b:e2: 78:57:99:b2:24:bc:d0:1d:4a:53:65:98:5a:5f:fe:81:f8:db: 20:7e:89:e5:0c:15:b4:af:26:7a:75:81:97:29:95:a0:97:73: 9b:dd:db:15:fe:83:f6:ce:1a:b9:90:5c:90:f8:a7:8a:f4:a4: e6:d2:48:a5:14:55:c6:a9:35:b4:f1:b8:c7:cb:27:cb:b8:f2: 95:82:2d:03:ec:69:d1:15:a5:7d:2c:d5:21:1b:7e:b7:f9:04: 3f:c3:4a:1f:25:19:2f:ec:ca:7f:be:42:44:1c:05:f9:49:3f: 90:87:d4:b1:15:c7:99:cf:cf:b4:c9:c8:22:d9:7e:12:6b:f8: 0f:3d:9b:6a:20:6b:0c:ee:55:df:3f:f6:90:34:4f:98:77:84: 99:57:8b:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjYwMzAxMjMyMTE1WhcNMjYwMzA4MjMyMTE1WjAYMRYwFAYD VQQDEw02OWE0YzllYy1jMTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kMpmpZ/bcfaP2qciaDyWDDqGNjE3MNaOtFYxPctIdgCo9TkIHQ9+rJInyPg kA33JhqQzQ5+Dcu9Blwf3kYtMZ0ETgEh6EA9J8qfvJdDaAzohNSrf75yOOdeTrFP NEmCeU2EW0cfyRgCWbRqXHabvnRJ0GtRIH1A4jclBHcLkxYwrtVc9UiPojFHslFx FKXX/V/uQJo9QD8Dl181I8TRBO5mGR2oDOGuVJVyhUxWA2dpHgvZvIeyd8w+1DgH y4oIRlPYPJ4Aw0jY9hG3JlGT/WdilIS8hf8s+JZW6fHVq+u1+NrXyVKVrKOI/7Kn Ddolc5AWMbOGWjA3PH8J5n5fWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFzJFDZt hHRUDoNc36byfYAjF6qQMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiCJFSDyuligwU0hiqa/xqFBJfimSYJCYlC67ag/UPu87BuhCZ2elP77/sa4Z xkm2g2Y+/3XdBo/Wd4H9FbeuIc8VKrpArIQYmYdrNKdhr3h6n1129C4X1HyyyKzQ 0hIuRm2D1O/8L0i9E3vieFeZsiS80B1KU2WYWl/+gfjbIH6J5QwVtK8menWBlymV oJdzm93bFf6D9s4auZBckPinivSk5tJIpRRVxqk1tPG4x8sny7jylYItA+xp0RWl fSzVIRt+t/kEP8NKHyUZL+zKf75CRBwF+Uk/kIfUsRXHmc/PtMnIItl+Emv4Dz2b aiBrDO5V3z/2kDRPmHeEmVeLzQ== -----END CERTIFICATE-----Generated at Mon Mar 2 14:43:47 2026 by rpki-client