$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft File: JD5IKavy-QnBLdoET-XTa4IQU5I.mft (raw, json) Hash identifier: ohg/0lDqIeXaVqXWI/NWfss2bOCDG+9wF2vtgThazLU= Subject key identifier: EE:C9:64:DC:89:60:43:24:94:8C:C8:DF:BF:D6:2E:C4:F4:0F:AA:72 Authority key identifier: 24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 Certificate issuer: /CN=A91F2152/serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Certificate serial: 0CEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft Manifest number: 0CDA Signing time: Sat 28 Feb 2026 18:29:29 +0000 Manifest this update: Sat 28 Feb 2026 18:29:28 +0000 Manifest next update: Sat 07 Mar 2026 18:29:28 +0000 Files and hashes: 1: JD5IKavy-QnBLdoET-XTa4IQU5I.crl (hash: +Lw8iRQgVH19fjbiJiHUlz1D1PqhMmoejsSt3N07kD8=) 2: 2CF214DC93A611F0B9B44571C4F9AE02.roa (hash: gDTlO8JdKBOhrYpdJ9YbTAbJbDClxcUd9QV6sNxI620=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3307 (0xceb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2152, serialNumber=243E4829ABF2F909C12DDA044FE5D36B82105392 Validity Not Before: Feb 28 18:29:28 2026 GMT Not After : Mar 7 18:29:28 2026 GMT Subject: CN=69a33408-3686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:7c:4f:bd:a8:3b:e8:b2:84:bd:99:78:a7: ef:24:37:53:f9:03:83:1c:81:88:b6:bf:5e:3b:69: ba:83:8c:89:f7:1e:c2:8a:36:13:b9:39:63:39:b8: 85:e6:c6:32:1f:63:31:fa:e4:07:9f:0c:28:06:ca: 7c:19:7e:0b:d2:23:8f:e1:84:f1:29:5c:f6:92:ac: 8c:36:db:63:40:cf:7e:dc:2e:e6:93:e2:fb:8a:11: c1:aa:9b:5a:89:25:cf:24:da:58:e8:7c:76:e2:1f: aa:bb:c9:34:e2:fb:23:e2:e7:8f:c0:67:40:b6:84: 48:e1:3a:49:aa:13:0b:c8:e7:94:9f:3c:f8:59:4e: 42:28:be:2c:94:5c:33:07:cf:4a:f7:6d:ef:44:72: a6:5f:f6:bc:cf:a3:57:f1:78:05:df:83:2d:46:8d: fc:ea:85:df:2a:57:60:6d:9e:1a:f6:62:c7:d9:78: 90:28:1d:4c:5c:ee:05:08:e8:ee:b3:e1:ae:e3:d4: 8f:70:18:3a:ab:82:16:15:4c:18:d4:34:08:cd:d9: 90:24:14:3c:1c:94:7a:8d:8e:08:ec:04:fa:12:d0: 14:20:19:2c:72:1c:5c:da:31:6f:85:d2:46:44:a5: 55:45:6c:cd:15:60:d0:b3:cb:f9:91:8b:21:9f:17: 63:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C9:64:DC:89:60:43:24:94:8C:C8:DF:BF:D6:2E:C4:F4:0F:AA:72 X509v3 Authority Key Identifier: keyid:24:3E:48:29:AB:F2:F9:09:C1:2D:DA:04:4F:E5:D3:6B:82:10:53:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD5IKavy-QnBLdoET-XTa4IQU5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2152/B7C6C60006D211EA8AAC9344C4F9AE02/JD5IKavy-QnBLdoET-XTa4IQU5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:59:77:47:10:54:75:43:d5:d9:fc:b9:a0:76:9d:a1:9d:5d: 76:35:13:74:4f:cd:8d:8d:82:76:b9:80:99:7a:98:7b:18:a6: b5:3d:94:84:16:be:7e:fd:08:f3:ca:eb:40:94:42:48:92:6d: 9c:cd:23:69:8b:b6:3d:42:75:cd:df:af:a4:44:74:a5:43:80: 14:68:8d:3d:f4:16:bf:08:a7:ff:fc:a8:8e:11:00:53:1a:fa: 5e:0a:89:d1:af:da:f8:0a:41:4a:28:3c:7f:2c:e7:bd:e0:b0: 42:7a:d1:e2:d1:50:fc:2a:f9:72:75:e9:23:b4:f3:ee:a3:49: a3:a5:af:ab:ad:0b:8b:01:fe:6f:0a:df:6b:ee:34:80:97:26: f0:67:a3:fa:16:ba:be:e8:73:31:00:a0:ac:51:4f:a0:5d:64: 50:c7:09:83:84:e2:ac:ec:bd:20:5d:c5:a6:4b:ea:fb:f0:68: bd:64:40:6d:86:53:cd:74:29:99:a4:bf:37:21:46:9b:81:c5: 02:90:12:f1:fe:2d:12:e6:e1:a4:09:2f:9e:37:e9:07:42:47: 50:90:26:7d:ac:d4:54:50:a3:64:0d:36:29:b4:20:8d:d3:e4: 3a:c3:c3:93:65:d4:09:35:9a:45:cd:25:da:d4:e6:c6:dd:66: 3f:9f:03:e6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIxNTIxMTAvBgNVBAUTKDI0M0U0ODI5QUJGMkY5MDlDMTJEREEwNDRGRTVEMzZC ODIxMDUzOTIwHhcNMjYwMjI4MTgyOTI4WhcNMjYwMzA3MTgyOTI4WjAYMRYwFAYD VQQDDA02OWEzMzQwOC0zNjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Yd8T72oO+iyhL2ZeKfvJDdT+QODHIGItr9eO2m6g4yJ9x7CijYTuTljObiF 5sYyH2Mx+uQHnwwoBsp8GX4L0iOP4YTxKVz2kqyMNttjQM9+3C7mk+L7ihHBqpta iSXPJNpY6Hx24h+qu8k04vsj4uePwGdAtoRI4TpJqhMLyOeUnzz4WU5CKL4slFwz B89K923vRHKmX/a8z6NX8XgF34MtRo386oXfKldgbZ4a9mLH2XiQKB1MXO4FCOju s+Gu49SPcBg6q4IWFUwY1DQIzdmQJBQ8HJR6jY4I7AT6EtAUIBkschxc2jFvhdJG RKVVRWzNFWDQs8v5kYshnxdjGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO7JZNyJ YEMklIzI37/WLsT0D6pyMB8GA1UdIwQYMBaAFCQ+SCmr8vkJwS3aBE/l02uCEFOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjE1Mi9CN0M2QzYwMDA2 RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1RbkJMZG9FVC1YVGE0SVFV NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pENUlLYXZ5LVFuQkxkb0VULVhUYTRJUVU1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjE1Mi9CN0M2QzYwMDA2RDIxMUVBOEFBQzkzNDRDNEY5QUUwMi9KRDVJS2F2eS1R bkJMZG9FVC1YVGE0SVFVNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcFl3RxBUdUPV2fy5oHadoZ1ddjUTdE/NjY2CdrmAmXqYeximtT2UhBa+fv0I 88rrQJRCSJJtnM0jaYu2PUJ1zd+vpER0pUOAFGiNPfQWvwin//yojhEAUxr6XgqJ 0a/a+ApBSig8fyznveCwQnrR4tFQ/Cr5cnXpI7Tz7qNJo6Wvq60LiwH+bwrfa+40 gJcm8Gej+ha6vuhzMQCgrFFPoF1kUMcJg4TirOy9IF3Fpkvq+/BovWRAbYZTzXQp maS/NyFGm4HFApAS8f4tEubhpAkvnjfpB0JHUJAmfazUVFCjZA02KbQgjdPkOsPD k2XUCTWaRc0l2tTmxt1mP58D5g== -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:53 2026 by rpki-client