$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: izpOWtBcmXb14gq4rxdSj5l42HD1MeMUA6vz3rLw1uc= Subject key identifier: D8:47:8C:2A:CF:18:F7:C4:21:C5:D3:E8:C3:AF:BE:EF:05:12:DB:2D Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 1043 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 100D Signing time: Sat 28 Feb 2026 17:33:22 +0000 Manifest this update: Sat 28 Feb 2026 17:33:21 +0000 Manifest next update: Sat 07 Mar 2026 17:33:21 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: H78xpmk1LPoqAqM1cGDNaG84nHFSjuaAtSv/OUAU9q8=) 2: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ=) 3: B490CD0621C911EB991D562EC4F9AE02.roa (hash: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A=) 4: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: QtpDimKOHqXsxnqa4q87zCBuPpMrfxyNN2d7cp4WlrA=) 5: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: t18G/jUeuq8lptvTyxkqs2wnq4jb4g41EOSptQznrUs=) 6: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI=) 7: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0=) 8: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 6uU1bRzcclFeMC/RnwQZxh3s9UKuJJHVwL7cdGjMFOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4163 (0x1043) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Feb 28 17:33:21 2026 GMT Not After : Mar 7 17:33:21 2026 GMT Subject: CN=69a326e2-de4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:fe:b9:64:f8:ed:b9:86:8e:ab:74:b3:21:ac: 81:38:d5:02:b5:ad:c4:d2:0c:d9:1f:91:14:1d:e2: 67:d2:88:f8:aa:26:c7:ab:83:bd:98:51:c3:83:29: a2:9a:2a:b4:94:d7:94:12:5c:13:eb:64:ab:cc:9a: bd:ea:48:23:ec:52:89:9c:9a:93:e0:7f:7b:b8:3c: 28:fd:20:b4:1c:e9:21:21:c1:cf:e9:9c:e1:cb:a0: 58:f5:60:0a:2f:70:bb:9b:19:34:85:b0:5a:c1:90: 71:c0:46:e3:22:b8:37:0b:79:cb:c6:d7:ab:a1:4a: 22:b0:79:d9:56:82:44:17:a0:53:b1:bb:6d:31:9b: 47:a1:d2:f4:8b:e7:ba:d7:d8:cd:e6:d2:d1:0d:86: e7:e8:17:d2:c8:b0:35:16:cd:6d:bb:72:52:6f:65: 95:29:80:90:2d:a4:6a:78:53:67:74:19:68:a3:18: bf:95:07:02:17:f3:f5:71:1c:f5:82:87:25:cc:53: 5f:ba:5d:f3:4e:77:e4:cf:bf:61:24:85:1e:b8:4b: 06:e4:ed:6b:eb:c0:0c:de:20:9f:00:70:c4:3c:08: de:4d:4f:79:29:1f:33:64:d8:a7:00:fa:4a:e2:50: ae:ed:af:48:38:7b:82:c3:84:27:db:74:30:15:db: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:47:8C:2A:CF:18:F7:C4:21:C5:D3:E8:C3:AF:BE:EF:05:12:DB:2D X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:e9:c4:04:c4:46:54:6b:fd:62:7c:c8:5f:19:66:db:aa:34: 31:c5:70:6e:dd:64:c2:24:81:14:51:3c:bc:f4:9f:7e:dc:8e: aa:1b:9f:e1:7e:aa:78:96:e1:58:33:b3:8f:a5:00:b7:bc:3a: ac:b0:b1:2c:d8:56:e4:b8:b2:f0:b8:99:9b:a4:0c:9d:1c:cd: bc:0d:32:25:b3:a3:31:cb:1c:b2:ab:ad:07:b8:3b:44:61:2a: e2:eb:14:8a:f1:5a:57:ba:56:f3:cd:06:eb:91:45:96:08:75: 4f:96:69:9f:d3:92:e1:d0:07:3c:2d:70:38:8c:74:52:35:05: 4f:77:3a:4f:c5:c4:5a:ea:93:81:1f:f5:67:47:03:67:75:09: 09:e2:53:7e:40:ab:04:70:9b:ea:28:16:82:a1:aa:17:1a:b1: b1:81:9a:38:d0:ff:15:a8:da:2d:f4:a1:2a:c6:e7:64:a9:1c: 54:1c:ac:72:94:2a:30:f8:17:7d:a9:da:02:5f:b8:fa:29:3c: cd:cc:82:af:b6:40:fb:06:f4:12:f1:82:95:96:e5:b2:77:22: b2:2d:90:da:ee:2b:9b:60:55:2e:d4:d8:40:9a:c3:39:80:5f: 18:bc:83:8a:6e:ad:57:50:ae:b7:3d:49:d3:67:59:97:4c:bf: 63:e9:48:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwMjI4MTczMzIxWhcNMjYwMzA3MTczMzIxWjAYMRYwFAYD VQQDDA02OWEzMjZlMi1kZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlP65ZPjtuYaOq3SzIayBONUCta3E0gzZH5EUHeJn0oj4qibHq4O9mFHDgymi miq0lNeUElwT62SrzJq96kgj7FKJnJqT4H97uDwo/SC0HOkhIcHP6Zzhy6BY9WAK L3C7mxk0hbBawZBxwEbjIrg3C3nLxteroUoisHnZVoJEF6BTsbttMZtHodL0i+e6 19jN5tLRDYbn6BfSyLA1Fs1tu3JSb2WVKYCQLaRqeFNndBlooxi/lQcCF/P1cRz1 goclzFNful3zTnfkz79hJIUeuEsG5O1r68AM3iCfAHDEPAjeTU95KR8zZNinAPpK 4lCu7a9IOHuCw4Qn23QwFdth2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNhHjCrP GPfEIcXT6MOvvu8FEtstMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1OnEBMRGVGv9YnzIXxlm26o0McVwbt1kwiSBFFE8vPSfftyOqhuf4X6qeJbh WDOzj6UAt7w6rLCxLNhW5Liy8LiZm6QMnRzNvA0yJbOjMcscsqutB7g7RGEq4usU ivFaV7pW880G65FFlgh1T5Zpn9OS4dAHPC1wOIx0UjUFT3c6T8XEWuqTgR/1Z0cD Z3UJCeJTfkCrBHCb6igWgqGqFxqxsYGaOND/FajaLfShKsbnZKkcVByscpQqMPgX fanaAl+4+ik8zcyCr7ZA+wb0EvGClZblsncisi2Q2u4rm2BVLtTYQJrDOYBfGLyD im6tV1Cutz1J02dZl0y/Y+lIqA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:48 2026 by rpki-client