$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: ulNdlzymH8gdk/xMaJ5A+VqMl5fPx3uv5rBYNeoMnZk= Subject key identifier: 07:91:AB:8C:AF:1D:9A:6D:F9:B0:36:89:39:35:E1:27:F1:CD:57:23 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0C9D Signing time: Sun 01 Mar 2026 23:07:56 +0000 Manifest this update: Sun 01 Mar 2026 23:07:56 +0000 Manifest next update: Sun 08 Mar 2026 23:07:56 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: UwheJhUPqIV5Da5d1Y7kW1Yg9yEOei+C4v1KlqVuoHs=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: JsMxuAz2clvL8td5dPv4MoycNcApjVpvYRYlrs8BPh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA, serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: Mar 1 23:07:56 2026 GMT Not After : Mar 8 23:07:56 2026 GMT Subject: CN=69a4c6cc-5e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ca:a8:b1:48:c2:86:19:ee:32:c0:a4:3e:02: b3:4a:eb:8c:1a:81:7e:5f:bb:b6:dc:cc:26:f5:9d: 65:e0:fe:2a:4c:65:ea:64:0a:d7:34:47:af:6c:82: e1:e8:cb:39:5f:12:98:00:67:6b:aa:b3:bd:9c:99: c6:86:a3:2f:d2:69:99:83:02:37:c0:14:ef:71:6c: cc:7d:b0:d3:4b:5c:bd:71:fb:92:c1:54:01:2a:60: 16:95:92:e5:68:51:d0:0b:30:2c:cc:0b:b5:f4:6b: 33:98:e4:6f:ba:0b:25:85:0a:88:d0:5b:50:22:02: 44:70:e5:b2:32:69:d7:e7:45:ce:19:d6:ec:0f:b6: 2d:73:89:d7:cd:8f:6f:55:58:20:3a:b8:96:2a:85: fa:53:3c:58:00:93:7f:cb:78:03:5b:d8:c2:ac:b9: 8b:08:b9:ec:9b:5e:b6:c8:ee:1c:fe:d9:e2:f5:ec: bb:06:bc:8f:0a:c9:c2:d1:07:21:6c:29:35:78:b9: 30:dc:e3:27:0f:37:f6:52:91:6e:43:d1:4f:e9:5c: 54:c8:3c:73:a1:e3:e1:2d:84:b7:84:86:f2:c4:60: 2e:a8:94:11:56:a2:1b:3a:cf:f6:dc:0b:42:74:d2: c8:f3:5d:94:a2:64:42:4f:b7:82:2a:62:39:ac:c9: ae:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:91:AB:8C:AF:1D:9A:6D:F9:B0:36:89:39:35:E1:27:F1:CD:57:23 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:a5:81:6c:c6:83:4d:80:49:7e:75:9d:6c:22:f9:82:b7:a5: 1e:44:bf:04:60:26:fa:26:34:df:36:ad:f2:2a:6b:2d:40:59: 6f:87:af:73:d9:2e:ad:e9:ab:f8:8a:93:a5:3c:1a:b9:06:c4: 00:ae:88:de:fd:c4:bc:41:06:44:83:c1:53:de:f3:1f:0d:7e: 32:9f:24:37:fd:c6:00:52:f8:0a:1a:d6:ce:e9:41:f3:e2:d6: 36:d8:63:bc:11:ae:90:de:02:3b:bf:3a:52:9e:a6:82:36:f3: 69:6c:a7:30:cd:9c:97:83:2b:ae:01:fe:be:6a:cc:2b:7c:c0: 25:34:74:ad:03:c3:30:8c:44:b3:7c:fe:e5:e4:a2:21:96:8c: b6:2e:b3:29:b2:3e:17:d0:96:23:c0:4a:e6:d2:90:cb:79:0f: e6:0a:9e:4d:2a:de:41:22:69:57:cb:87:21:f1:68:36:0e:3c: 84:f9:24:09:7f:ca:65:b2:6d:0e:06:5b:02:bc:fb:4b:ec:48: 70:2e:e1:fb:36:07:e5:bc:05:b9:c3:0e:6a:94:30:92:2c:db: d4:d6:57:36:a3:13:f9:11:d9:d0:38:de:9b:ab:f0:5f:1c:d7: 50:0f:95:9c:3f:11:0e:1c:bd:d3:a7:cc:fb:ea:ac:c5:3b:67: b8:3e:3a:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjYwMzAxMjMwNzU2WhcNMjYwMzA4MjMwNzU2WjAYMRYwFAYD VQQDEw02OWE0YzZjYy01ZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8qosUjChhnuMsCkPgKzSuuMGoF+X7u23Mwm9Z1l4P4qTGXqZArXNEevbILh 6Ms5XxKYAGdrqrO9nJnGhqMv0mmZgwI3wBTvcWzMfbDTS1y9cfuSwVQBKmAWlZLl aFHQCzAszAu19GszmORvugslhQqI0FtQIgJEcOWyMmnX50XOGdbsD7Ytc4nXzY9v VVggOriWKoX6UzxYAJN/y3gDW9jCrLmLCLnsm162yO4c/tni9ey7BryPCsnC0Qch bCk1eLkw3OMnDzf2UpFuQ9FP6VxUyDxzoePhLYS3hIbyxGAuqJQRVqIbOs/23AtC dNLI812UomRCT7eCKmI5rMmu9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeRq4yv HZpt+bA2iTk14SfxzVcjMB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArqWBbMaDTYBJfnWdbCL5grelHkS/BGAm+iY03zat8iprLUBZb4evc9kuremr +IqTpTwauQbEAK6I3v3EvEEGRIPBU97zHw1+Mp8kN/3GAFL4ChrWzulB8+LWNthj vBGukN4CO786Up6mgjbzaWynMM2cl4MrrgH+vmrMK3zAJTR0rQPDMIxEs3z+5eSi IZaMti6zKbI+F9CWI8BK5tKQy3kP5gqeTSreQSJpV8uHIfFoNg48hPkkCX/KZbJt DgZbArz7S+xIcC7h+zYH5bwFucMOapQwkizb1NZXNqMT+RHZ0Djem6vwXxzXUA+V nD8RDhy906fM++qsxTtnuD46tw== -----END CERTIFICATE-----Generated at Mon Mar 2 07:17:16 2026 by rpki-client