$ rpki-client -vvf rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft File: o0Zki0rfT8W0d8faLPBbFoQ3210.mft (raw, json) Hash identifier: kbR4ZP7QPAOoxNQ8r37ioGRBcUJOhteHpspal1GUPhI= Subject key identifier: 41:CC:A0:E7:5C:57:86:37:7C:FE:82:68:CE:0B:D6:7B:84:57:85:82 Authority key identifier: A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D Certificate issuer: /CN=A91F78E2/serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft Manifest number: 0E Signing time: Mon 02 Mar 2026 01:58:30 +0000 Manifest this update: Mon 02 Mar 2026 01:58:29 +0000 Manifest next update: Mon 09 Mar 2026 01:58:29 +0000 Files and hashes: 1: o0Zki0rfT8W0d8faLPBbFoQ3210.crl (hash: NupjllwK6dfLoKcLmLf8yxXVGhd/h3FqkbjO6b5J9Cg=) 2: 825697D20F7911F1809984312C3D8C67.roa (hash: rbNykPxn1JWQ3fKHnhWCpovQLbFYi4heoE/xhRriRtU=) 3: 82DA388A0F7911F1809984312C3D8C67.roa (hash: D8E9+bFiSKX3p+kP7zFnOwnBndanTL1+PNFTvncBE2Y=) 4: 836B482A0F7911F1809984312C3D8C67.roa (hash: b3etVMT7mdKDCtZqe2XK41CSLxf7LJ4L7nX9TREkb+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F78E2, serialNumber=A346648B4ADF4FC5B477C7DA2CF05B168437DB5D Validity Not Before: Mar 2 01:58:29 2026 GMT Not After : Mar 9 01:58:29 2026 GMT Subject: CN=69a4eec6-12ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:26:20:d3:d2:df:de:12:7a:93:bf:b8:5b: d1:4d:9c:7d:65:68:8e:19:de:9f:bb:b5:43:9e:ce: 68:2e:17:78:21:ed:ef:dd:32:69:54:bb:51:ca:fa: 55:21:88:8a:8a:c1:63:76:0e:93:ee:df:bb:97:e0: 5a:a8:65:d0:25:0f:2e:9c:08:3d:fc:79:40:a2:7e: ff:e9:3d:03:2d:4c:91:b5:6b:36:82:25:e9:13:67: fc:29:f6:fd:53:59:9d:f4:05:7c:2e:ef:43:b9:52: 63:8c:3e:f8:38:47:55:a4:16:a8:ed:ef:af:01:8e: 0e:e4:57:97:2f:3c:0e:a1:d2:a0:5c:e6:c8:67:68: 71:55:2f:d2:00:d7:06:72:d7:96:14:0b:f2:b6:c6: aa:6f:52:99:ad:9f:4d:b6:f0:06:4c:df:d9:10:f7: 30:57:db:13:96:9f:72:58:54:6e:31:dc:9f:ca:be: 98:46:43:29:68:23:74:bf:44:83:5c:7c:91:cf:71: 8c:72:dd:12:de:c4:16:68:ab:f1:0a:d8:ce:c9:e6: 60:71:5d:b3:17:04:54:2c:3e:05:cb:bd:a8:96:08: 81:46:24:2e:84:ff:3e:70:5d:e7:e0:52:ba:46:d1: 37:9c:5d:de:18:bb:c9:66:73:cf:03:c5:cc:d0:c9: 7d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CC:A0:E7:5C:57:86:37:7C:FE:82:68:CE:0B:D6:7B:84:57:85:82 X509v3 Authority Key Identifier: keyid:A3:46:64:8B:4A:DF:4F:C5:B4:77:C7:DA:2C:F0:5B:16:84:37:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0Zki0rfT8W0d8faLPBbFoQ3210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F78E2/C8F4A8E2079911F1A5AE9A1B0E3D8C67/o0Zki0rfT8W0d8faLPBbFoQ3210.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:16:95:87:65:89:52:64:44:7d:81:1e:b7:7a:f4:ac:b2:e8: d0:33:fd:09:5b:92:17:b1:1d:1e:72:ad:20:fa:32:b2:13:82: 05:3d:05:5b:27:7b:c4:f2:d5:e8:f9:f4:61:b9:54:b2:cf:d0: cf:9c:5b:79:16:ad:cd:aa:36:bb:be:35:66:fb:48:e9:77:f5: 76:4c:64:fc:23:91:78:76:65:5a:8f:7e:84:41:b8:f1:45:cb: df:8f:90:d1:35:2d:60:12:d0:9b:98:e4:e2:3d:04:6d:90:c0: e6:0c:22:c7:2a:27:02:4b:da:86:52:d6:7b:4a:43:ae:7a:e7: 7b:99:63:01:16:0d:6a:84:a9:f3:86:c9:40:f8:4d:39:19:53: 5a:9b:b8:6c:c8:c9:b6:69:7a:c4:82:69:59:d0:be:7f:99:18: 57:af:14:a9:02:5e:48:3f:3f:cf:f8:fb:dd:b3:66:c2:a3:48: f2:04:fa:b0:88:ce:7e:57:e9:1a:96:1f:42:0e:0f:7b:4b:87: 04:0d:90:31:40:2f:ab:1c:57:80:eb:b4:74:66:45:6b:11:83: 69:91:d4:37:e4:c8:90:00:82:b7:66:e7:0d:e1:ee:6f:b8:00: a8:57:73:94:03:a3:14:0c:a2:a1:74:bf:0c:20:cc:c1:c4:97: 3a:79:c5:b3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzhFMjExMC8GA1UEBRMoQTM0NjY0OEI0QURGNEZDNUI0NzdDN0RBMkNGMDVCMTY4 NDM3REI1RDAeFw0yNjAzMDIwMTU4MjlaFw0yNjAzMDkwMTU4MjlaMBgxFjAUBgNV BAMTDTY5YTRlZWM2LTEyY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8YyYg09Lf3hJ6k7+4W9FNnH1laI4Z3p+7tUOezmguF3gh7e/dMmlUu1HK+lUh iIqKwWN2DpPu37uX4FqoZdAlDy6cCD38eUCifv/pPQMtTJG1azaCJekTZ/wp9v1T WZ30BXwu70O5UmOMPvg4R1WkFqjt768Bjg7kV5cvPA6h0qBc5shnaHFVL9IA1wZy 15YUC/K2xqpvUpmtn0228AZM39kQ9zBX2xOWn3JYVG4x3J/KvphGQyloI3S/RINc fJHPcYxy3RLexBZoq/EK2M7J5mBxXbMXBFQsPgXLvaiWCIFGJC6E/z5wXefgUrpG 0TecXd4Yu8lmc88DxczQyX1hAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUQcyg51xX hjd8/oJozgvWe4RXhYIwHwYDVR0jBBgwFoAUo0Zki0rfT8W0d8faLPBbFoQ3210w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OEUyL0M4RjRBOEUyMDc5 OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhXMGQ4ZmFMUEJiRm9RMzIx MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzBaa2kwcmZUOFcwZDhmYUxQQmJGb1EzMjEwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 OEUyL0M4RjRBOEUyMDc5OTExRjFBNUFFOUExQjBFM0Q4QzY3L28wWmtpMHJmVDhX MGQ4ZmFMUEJiRm9RMzIxMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAtFpWHZYlSZER9gR63evSssujQM/0JW5IXsR0ecq0g+jKyE4IFPQVbJ3vE8tXo +fRhuVSyz9DPnFt5Fq3Nqja7vjVm+0jpd/V2TGT8I5F4dmVaj36EQbjxRcvfj5DR NS1gEtCbmOTiPQRtkMDmDCLHKicCS9qGUtZ7SkOueud7mWMBFg1qhKnzhslA+E05 GVNam7hsyMm2aXrEgmlZ0L5/mRhXrxSpAl5IPz/P+Pvds2bCo0jyBPqwiM5+V+ka lh9CDg97S4cEDZAxQC+rHFeA67R0ZkVrEYNpkdQ35MiQAIK3ZucN4e5vuACoV3OU A6MUDKKhdL8MIMzBxJc6ecWz -----END CERTIFICATE-----Generated at Mon Mar 2 10:05:54 2026 by rpki-client