$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: lM+yE6U2/JjUTFk/tT5pqHp/gMyOVx90317WyvpNWV8= Subject key identifier: 53:0F:CD:BE:78:0E:2B:5A:B8:1D:4A:04:04:62:AD:A7:CC:B2:BA:6D Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0CAE Signing time: Mon 02 Mar 2026 00:53:16 +0000 Manifest this update: Mon 02 Mar 2026 00:53:15 +0000 Manifest next update: Mon 09 Mar 2026 00:53:15 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: EaPeNqIckvAP0tTfaPAdr8MALsvobRpKk1TBZS4jMXw=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: NdHvCz04ygMhEdy3te9H+OifuIBwvEnTvTRWLq7jQEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806, serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Mar 2 00:53:15 2026 GMT Not After : Mar 9 00:53:15 2026 GMT Subject: CN=69a4df7c-e1c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:8e:b2:9b:3e:0a:c3:3c:0c:d4:9a:4f:82:72: 0c:11:1c:5d:e1:00:c5:08:14:4c:ca:d4:17:41:0e: e2:43:bf:84:18:c6:6e:12:ac:61:82:00:d2:18:47: e1:29:6f:b0:12:54:9e:72:b2:ba:70:a5:f5:74:41: ba:7f:5f:02:c7:77:ba:33:ef:22:8a:18:ee:7f:5b: 12:e4:ad:6b:3f:ce:09:00:03:94:2a:f9:87:dc:b4: c1:6f:0a:69:9b:dc:27:98:04:39:35:c9:92:7f:62: a7:72:46:df:f0:3e:3d:7c:05:5b:a4:c0:c9:5d:11: 28:c9:c8:3a:16:6d:71:8e:d1:21:9e:9a:96:8a:e4: eb:bf:21:53:92:03:7b:c5:8a:ba:ff:0c:1e:fd:9a: d0:08:39:19:07:fb:22:66:ed:ac:3f:be:03:18:7f: f0:b6:ea:68:e9:73:27:43:ba:2d:b4:ee:bd:64:7c: 1f:a3:5b:37:01:70:91:f1:35:92:36:47:e9:06:92: 43:fc:27:d5:7c:ad:3c:1d:a9:63:40:eb:29:a0:36: 8f:7c:7a:b9:28:73:59:4c:7f:60:a9:12:19:39:eb: 2c:b7:9a:ab:4b:08:0d:e6:97:c8:c7:c4:fd:47:19: 39:5b:d4:de:06:9f:f6:91:c0:64:4c:02:49:b7:76: 0c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0F:CD:BE:78:0E:2B:5A:B8:1D:4A:04:04:62:AD:A7:CC:B2:BA:6D X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a2:c0:f8:c8:ee:41:a9:87:76:f9:65:b3:7e:a6:12:cf:5b: 98:28:a0:b8:d5:dc:38:b3:11:26:48:39:ba:36:1b:86:ce:05: 5d:8a:90:80:e2:6d:6a:45:a9:e0:07:77:9a:0d:b9:4d:11:e1: e1:8c:a0:e7:3d:12:9e:47:3f:13:b0:89:60:28:6b:5e:0d:d7: 40:86:cf:a2:e2:4c:ec:4b:d9:64:14:ca:7f:7d:03:94:74:e1: e6:d0:15:15:9d:cf:62:b1:b5:cb:06:f1:c9:d3:d7:45:81:b9: c5:b0:b4:9f:c4:00:db:17:a1:e8:2d:19:28:f4:d3:31:ae:89: af:26:d2:c3:9f:c4:4c:47:e4:09:27:9e:c4:8f:45:3d:cd:0d: f3:aa:6d:b7:f1:ed:d9:b9:d3:f1:ef:54:0d:75:20:35:1a:44: 96:f0:0f:e6:9f:72:fe:8a:f0:f7:cd:b2:5d:4a:da:dd:ee:61: 43:b9:21:55:5b:a6:64:5d:ad:16:a4:9d:76:f7:53:b1:0e:96: 2d:16:85:43:22:2c:46:a8:b2:6d:2f:ef:4e:02:87:28:94:80: 9d:4b:a8:92:ff:c9:1f:c7:f5:90:14:d2:88:1d:50:0e:17:2f: 72:66:44:c8:41:8c:e1:46:ef:31:fc:c5:32:dd:58:bc:aa:a8: 8f:f1:bc:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjYwMzAyMDA1MzE1WhcNMjYwMzA5MDA1MzE1WjAYMRYwFAYD VQQDEw02OWE0ZGY3Yy1lMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi46ymz4KwzwM1JpPgnIMERxd4QDFCBRMytQXQQ7iQ7+EGMZuEqxhggDSGEfh KW+wElSecrK6cKX1dEG6f18Cx3e6M+8iihjuf1sS5K1rP84JAAOUKvmH3LTBbwpp m9wnmAQ5NcmSf2Knckbf8D49fAVbpMDJXREoycg6Fm1xjtEhnpqWiuTrvyFTkgN7 xYq6/wwe/ZrQCDkZB/siZu2sP74DGH/wtupo6XMnQ7ottO69ZHwfo1s3AXCR8TWS NkfpBpJD/CfVfK08HaljQOspoDaPfHq5KHNZTH9gqRIZOesst5qrSwgN5pfIx8T9 Rxk5W9TeBp/2kcBkTAJJt3YMewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFMPzb54 DitauB1KBARirafMsrptMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgKLA+MjuQamHdvlls36mEs9bmCiguNXcOLMRJkg5ujYbhs4FXYqQgOJtakWp 4Ad3mg25TRHh4Yyg5z0Snkc/E7CJYChrXg3XQIbPouJM7EvZZBTKf30DlHTh5tAV FZ3PYrG1ywbxydPXRYG5xbC0n8QA2xeh6C0ZKPTTMa6JrybSw5/ETEfkCSeexI9F Pc0N86ptt/Ht2bnT8e9UDXUgNRpElvAP5p9y/orw982yXUra3e5hQ7khVVumZF2t FqSddvdTsQ6WLRaFQyIsRqiybS/vTgKHKJSAnUuokv/JH8f1kBTSiB1QDhcvcmZE yEGM4UbvMfzFMt1YvKqoj/G8Gg== -----END CERTIFICATE-----Generated at Mon Mar 2 13:54:22 2026 by rpki-client