$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft File: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft (raw, json) Hash identifier: Xqh/hmLT3XFFS6j3pAbflhWGtpNwI/hDgQ6AqYfX4t0= Subject key identifier: 70:F9:8C:55:9A:C1:41:C9:3A:48:40:78:69:4E:18:6A:39:3C:11:87 Authority key identifier: B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 Certificate issuer: /CN=A91F3099/serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft Manifest number: 0540 Signing time: Sun 01 Mar 2026 00:07:07 +0000 Manifest this update: Sun 01 Mar 2026 00:07:07 +0000 Manifest next update: Sun 08 Mar 2026 00:07:07 +0000 Files and hashes: 1: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl (hash: ppLuNorhOrlYbxqIZ/Ct8YE5uwpyBmlSs4uB37K76/s=) 2: 99961F74315E11EC953A8215C4F9AE02.roa (hash: OEZzXzknZfZ5+s266LCfZPiCa3g7F7GJ2hmeU6hbgO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3099, serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Validity Not Before: Mar 1 00:07:07 2026 GMT Not After : Mar 8 00:07:07 2026 GMT Subject: CN=69a3832b-bb5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:1a:b8:00:b8:5f:c9:13:9b:09:be:1f:80: 4d:dc:8d:51:10:61:83:8b:ec:4f:41:cd:08:d0:c4: d0:dc:08:6a:e0:5f:ca:9a:8f:db:67:4c:78:2c:29: 0c:23:97:66:f8:da:c1:34:f7:68:a2:3c:f9:6a:d8: be:4c:75:b5:44:4d:9f:0b:0a:7e:cd:75:49:00:09: 86:c0:6d:0b:97:54:5a:35:f3:ea:2e:0a:29:06:4c: 32:29:78:b6:87:14:1f:19:6f:07:19:54:07:08:b5: 22:30:25:9c:2b:70:d8:31:ef:6e:85:a5:54:dd:2b: 75:44:43:d0:f8:af:18:4b:5e:ac:62:39:40:70:18: fe:c0:ae:5e:ac:33:d2:5b:b4:c1:11:66:c0:e7:aa: 65:f7:6f:54:ec:7d:22:57:bf:65:02:6d:b4:83:90: 8e:ae:27:6a:5d:64:bf:02:67:1e:0c:32:1c:7e:cf: 98:68:72:f4:07:d6:20:d5:5c:23:92:cc:19:0c:0e: b3:21:ef:16:76:9a:87:fd:79:58:08:02:b6:79:fe: af:2c:86:34:b7:34:c7:22:cf:6a:c9:16:db:b2:0f: 8b:72:01:73:c5:e4:fb:55:fc:13:e2:58:09:c8:58: 1f:d3:3c:1b:85:c1:be:af:86:38:89:5c:fb:14:c3: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F9:8C:55:9A:C1:41:C9:3A:48:40:78:69:4E:18:6A:39:3C:11:87 X509v3 Authority Key Identifier: keyid:B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:78:42:dd:74:11:f4:d6:66:45:b1:15:eb:84:b2:68:dd:c8: 92:bc:84:82:57:7a:cd:06:63:34:5c:73:93:a8:4b:7d:39:b2: 29:36:ba:fe:3d:aa:21:3d:a8:69:1d:40:aa:8c:db:d8:cb:cb: 9e:4b:bc:7f:a5:1c:02:cb:68:da:ef:c0:40:dc:a1:74:8c:fc: ec:9a:2c:36:4f:dc:71:e7:9b:17:37:f1:1a:20:73:8e:9e:28: 78:1c:fa:b9:77:d5:e5:00:38:9f:af:25:cd:59:2d:40:58:87: fd:43:3d:cc:cd:35:f5:4d:c0:e2:37:ba:41:16:9c:26:23:2e: 62:13:1b:3e:d8:a1:8e:c1:05:7a:61:fa:53:2b:f7:55:4c:c6: 97:32:df:17:5e:61:6f:30:e5:65:a7:c4:70:e4:61:06:0f:86: 36:f9:a3:6a:f1:59:a6:98:2c:2b:b0:89:a3:a0:a9:e2:e1:a6: 97:7e:00:80:1e:1c:d7:5d:99:7f:6c:e3:3a:fd:62:fe:fd:05: ba:b9:f3:f3:8f:d8:ab:d5:2e:c0:60:a8:b4:9a:62:e9:81:43: 13:ef:65:1d:56:7d:55:c7:50:22:a5:46:41:1c:ec:7c:1a:3f: ff:b0:3e:dc:f5:1a:6b:60:b7:20:95:d9:e7:1c:e2:4c:f8:3d: cf:93:bd:83 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwOTkxMTAvBgNVBAUTKEIwRjQ3QTY5NkFDRDc3Qzc0QTM0NzNDNENEMTcxREEz NzIxQ0VDRDAwHhcNMjYwMzAxMDAwNzA3WhcNMjYwMzA4MDAwNzA3WjAYMRYwFAYD VQQDDA02OWEzODMyYi1iYjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7EauAC4X8kTmwm+H4BN3I1REGGDi+xPQc0I0MTQ3Ahq4F/Kmo/bZ0x4LCkM I5dm+NrBNPdoojz5ati+THW1RE2fCwp+zXVJAAmGwG0Ll1RaNfPqLgopBkwyKXi2 hxQfGW8HGVQHCLUiMCWcK3DYMe9uhaVU3St1REPQ+K8YS16sYjlAcBj+wK5erDPS W7TBEWbA56pl929U7H0iV79lAm20g5COridqXWS/AmceDDIcfs+YaHL0B9Yg1Vwj kswZDA6zIe8WdpqH/XlYCAK2ef6vLIY0tzTHIs9qyRbbsg+LcgFzxeT7VfwT4lgJ yFgf0zwbhcG+r4Y4iVz7FMMqLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHD5jFWa wUHJOkhAeGlOGGo5PBGHMB8GA1UdIwQYMBaAFLD0emlqzXfHSjRzxM0XHaNyHOzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA5OS9FQjRFRkJDNjMx NUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4ZEtOSFBFelJjZG8zSWM3 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NQUjZhV3JOZDhkS05IUEV6UmNkbzNJYzdOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzA5OS9FQjRFRkJDNjMxNUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4 ZEtOSFBFelJjZG8zSWM3TkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADXhC3XQR9NZmRbEV64SyaN3IkryEgld6zQZjNFxzk6hLfTmyKTa6/j2qIT2o aR1Aqozb2MvLnku8f6UcAsto2u/AQNyhdIz87JosNk/cceebFzfxGiBzjp4oeBz6 uXfV5QA4n68lzVktQFiH/UM9zM019U3A4je6QRacJiMuYhMbPtihjsEFemH6Uyv3 VUzGlzLfF15hbzDlZafEcORhBg+GNvmjavFZppgsK7CJo6Cp4uGml34AgB4c112Z f2zjOv1i/v0Furnz84/Yq9UuwGCotJpi6YFDE+9lHVZ9VcdQIqVGQRzsfBo//7A+ 3PUaa2C3IJXZ5xziTPg9z5O9gw== -----END CERTIFICATE-----Generated at Sun Mar 1 23:54:31 2026 by rpki-client