$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: K77OzmP6uHytwABhkYockqF/aSjwNGbmWv7pOVPCWH0= Subject key identifier: 0E:2C:60:E1:D7:6B:91:C7:ED:55:C3:AE:BD:AD:AD:D7:BA:94:9B:17 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0D09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1EA3 Signing time: Mon 02 Mar 2026 00:38:44 +0000 Manifest this update: Mon 02 Mar 2026 00:38:41 +0000 Manifest next update: Mon 09 Mar 2026 00:38:41 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: CEHzMf66HHTWGp2cqON8HKJXuvZwMblQ7cm2XkMQy80=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: pVllpqaYkicaFIWTL2XyjS6RmEOfq4yPCoNoR4rIsP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Mar 2 00:38:41 2026 GMT Not After : Mar 9 00:38:41 2026 GMT Subject: CN=69a4dc14-1934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:44:3f:ba:c7:d1:8f:72:7d:b5:16:41:37:d7: 51:f4:46:cc:1f:8d:f3:1a:c5:f3:d4:ec:5b:a8:31: 31:c9:27:b9:28:67:5b:48:cc:72:91:f1:bd:0e:8e: 14:dd:a0:73:79:b8:61:1e:2c:4f:71:05:24:03:34: 56:77:ea:0f:51:b8:c1:ee:f5:55:1b:5b:d3:70:42: ab:82:b7:af:df:89:e8:db:f1:f1:9f:08:52:10:29: c6:2c:d3:0f:78:30:69:42:de:07:6c:66:17:c7:d6: 24:63:bd:26:62:ae:98:3e:93:9c:b4:22:56:ee:1b: e4:f8:07:64:a8:d1:60:96:20:3d:a6:d9:a4:dd:1a: 24:b0:39:7e:3d:e2:a0:cf:29:29:f4:49:85:9d:d5: 57:7a:0c:54:14:9a:3c:12:a1:77:fd:0e:8f:e3:c5: a5:b6:8a:7b:c5:9b:34:2b:c7:e1:1b:c6:a5:a5:6e: f0:2c:54:89:ff:fe:d1:d0:86:4c:67:28:d7:40:f6: 86:7c:69:50:27:91:4a:b2:53:22:a1:9f:56:d2:3a: 87:ec:45:57:8d:61:d2:bb:ee:50:05:c0:b0:10:04: 9e:ea:40:79:e9:f3:29:fc:93:ee:00:78:a4:6b:ce: f1:f9:a9:51:31:91:4c:3e:5d:f8:07:e2:f2:80:2d: 69:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2C:60:E1:D7:6B:91:C7:ED:55:C3:AE:BD:AD:AD:D7:BA:94:9B:17 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ad:0d:4c:c5:5b:17:20:d0:32:35:8c:9f:1c:d2:fb:db:c3: ff:c4:8e:58:a9:a1:a7:8b:21:eb:b6:66:44:4b:ee:47:22:7f: e7:7b:63:0a:df:44:b4:1b:bc:6d:01:92:12:d2:d2:23:e5:e2: c2:ba:bc:9e:45:a2:15:ea:ac:67:a7:04:df:f8:77:a1:b2:42: a0:c7:2a:bf:e7:2c:79:a9:ac:39:1d:8a:61:71:59:73:72:ee: 55:19:80:b0:d2:2f:d2:cf:f6:13:93:50:22:26:38:a7:a5:79: 67:d1:4c:4d:1d:07:85:45:ee:fa:11:94:5e:ff:a4:b9:71:33: 0e:ba:5f:03:77:6f:01:30:a3:c1:71:c4:a0:9b:7f:38:54:80: eb:80:3b:5c:38:79:62:40:a7:fb:c4:df:11:d1:da:ec:6b:1f: 54:54:cf:38:b5:0e:7d:24:3d:10:ea:09:0a:ae:19:db:51:94: 85:4f:86:8e:5d:f6:22:97:34:0b:f1:78:59:a6:ab:24:e6:13: 2d:26:85:0a:67:c6:ba:6e:a9:e9:f6:0f:8a:b0:da:ad:f9:f5: 33:2a:ee:0d:43:6e:fa:e5:b0:8a:b6:bd:23:e2:56:e7:4d:84: 43:0f:c1:bd:f1:cf:1c:56:d6:65:02:41:c9:4f:3a:97:66:be: be:07:e9:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjYwMzAyMDAzODQxWhcNMjYwMzA5MDAzODQxWjAYMRYwFAYD VQQDEw02OWE0ZGMxNC0xOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUQ/usfRj3J9tRZBN9dR9EbMH43zGsXz1OxbqDExySe5KGdbSMxykfG9Do4U 3aBzebhhHixPcQUkAzRWd+oPUbjB7vVVG1vTcEKrgrev34no2/HxnwhSECnGLNMP eDBpQt4HbGYXx9YkY70mYq6YPpOctCJW7hvk+AdkqNFgliA9ptmk3RoksDl+PeKg zykp9EmFndVXegxUFJo8EqF3/Q6P48Wltop7xZs0K8fhG8alpW7wLFSJ//7R0IZM ZyjXQPaGfGlQJ5FKslMioZ9W0jqH7EVXjWHSu+5QBcCwEASe6kB56fMp/JPuAHik a87x+alRMZFMPl34B+LygC1pewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4sYOHX a5HH7VXDrr2trde6lJsXMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAda0NTMVbFyDQMjWMnxzS+9vD/8SOWKmhp4sh67ZmREvuRyJ/53tjCt9EtBu8 bQGSEtLSI+Xiwrq8nkWiFeqsZ6cE3/h3obJCoMcqv+cseamsOR2KYXFZc3LuVRmA sNIv0s/2E5NQIiY4p6V5Z9FMTR0HhUXu+hGUXv+kuXEzDrpfA3dvATCjwXHEoJt/ OFSA64A7XDh5YkCn+8TfEdHa7GsfVFTPOLUOfSQ9EOoJCq4Z21GUhU+Gjl32Ipc0 C/F4WaarJOYTLSaFCmfGum6p6fYPirDarfn1MyruDUNu+uWwira9I+JW502EQw/B vfHPHFbWZQJByU86l2a+vgfp2Q== -----END CERTIFICATE-----Generated at Mon Mar 2 05:50:07 2026 by rpki-client