$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: L6RP1sj9ejq5kKiv4T12tU3iR3KMsv9e5lmg2r/5NmY= Subject key identifier: 7E:F0:68:EE:E1:CE:9C:59:E2:ED:C9:0A:78:FD:4E:85:0E:66:F8:CD Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 0650 Signing time: Sun 01 Mar 2026 23:24:01 +0000 Manifest this update: Sun 01 Mar 2026 23:23:59 +0000 Manifest next update: Sun 08 Mar 2026 23:23:59 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: 85z09ZoLmw0IZdXkXdhItN2i6oUkmNWm+WlWxswTVjc=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: F2GebCWcaFjXC+R1GW0YWmxK0km0Z1FV+dTDi5Ce6Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Mar 1 23:23:59 2026 GMT Not After : Mar 8 23:23:59 2026 GMT Subject: CN=69a4ca91-b1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ea:03:5a:9c:32:27:61:ce:2d:96:92:ce:f7: 48:60:0a:63:05:1e:e7:ff:a2:d5:1e:77:94:fd:54: 69:0a:0f:ac:ad:cd:49:52:e6:23:8b:f4:15:a5:4a: f7:4f:c5:b9:08:43:04:64:e7:44:5f:9b:09:0b:88: 33:ff:61:98:b8:f7:56:21:41:a5:8a:be:ca:3a:ae: ca:48:0e:46:87:94:86:12:24:44:a3:c8:60:9a:66: 31:f7:c3:78:26:3c:7d:28:4d:8b:51:d8:00:33:2e: ee:bc:1f:6e:f4:08:56:34:8f:8d:80:11:49:4c:22: 16:c0:d3:a5:61:e9:1e:23:e8:84:cc:1e:c3:c0:51: bc:e0:ac:a8:a7:f7:94:0e:be:9f:a7:d8:3d:1b:7f: 57:32:e3:b6:ab:06:5d:9d:62:23:ad:33:a4:78:d7: 94:7c:1e:2f:5d:7a:30:75:4b:b1:5c:43:8c:f6:6e: f3:9a:16:2b:a8:1d:59:33:80:bb:89:e8:53:5f:fb: e2:8b:bb:1b:d8:db:3a:12:e8:53:d8:0c:81:ce:0b: 29:9c:92:77:d6:93:2e:c4:e7:0f:8c:ef:c5:bc:54: 43:36:cb:da:1e:73:fe:18:18:fc:6e:11:6a:14:4c: 04:63:fc:da:c6:ae:93:ed:62:8a:8b:25:03:0c:eb: 27:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F0:68:EE:E1:CE:9C:59:E2:ED:C9:0A:78:FD:4E:85:0E:66:F8:CD X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:55:31:2f:79:f7:cf:df:87:0b:4d:a0:d7:78:0e:41:ed:4e: 3d:9f:23:ea:eb:cf:c8:a7:a8:82:a4:cc:fc:ca:93:d7:62:7e: 66:05:0c:d0:d2:9c:68:37:77:64:f0:3b:08:65:84:d1:13:63: 01:b0:fd:6f:86:bf:a9:0a:bc:c4:3b:6d:34:da:5c:c2:0d:0e: cb:09:46:b5:21:92:ed:a6:64:b9:f8:cf:2f:75:ce:4c:0d:35: 59:5d:97:b4:75:db:7d:14:9e:af:a0:4d:5d:4a:cf:7b:2c:63: ed:0f:7c:05:32:64:76:ba:75:2c:73:65:7c:c2:5b:ec:7c:c3: ea:7e:88:7b:93:8f:a0:30:f8:1a:7c:35:55:08:7f:d3:c3:15: 43:76:02:56:32:eb:de:13:e8:bc:d3:38:1c:6d:54:5d:b0:9d: c4:99:6b:65:de:21:1c:26:90:17:58:32:82:97:e0:21:b9:f9: 2a:d3:26:ae:cf:3d:b2:20:24:ce:b8:c4:bf:4f:3f:5b:c1:aa: 9d:38:71:6a:25:52:60:4c:80:90:06:22:29:47:b1:00:d8:ef: 2c:3a:53:ff:de:a3:a3:d7:09:f1:d4:a8:d3:32:dc:7e:f3:24: aa:20:8a:45:8e:06:a4:c8:e4:58:25:78:cd:26:c3:93:12:dc: f0:85:65:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjYwMzAxMjMyMzU5WhcNMjYwMzA4MjMyMzU5WjAYMRYwFAYD VQQDEw02OWE0Y2E5MS1iMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouoDWpwyJ2HOLZaSzvdIYApjBR7n/6LVHneU/VRpCg+src1JUuYji/QVpUr3 T8W5CEMEZOdEX5sJC4gz/2GYuPdWIUGlir7KOq7KSA5Gh5SGEiREo8hgmmYx98N4 Jjx9KE2LUdgAMy7uvB9u9AhWNI+NgBFJTCIWwNOlYekeI+iEzB7DwFG84Kyop/eU Dr6fp9g9G39XMuO2qwZdnWIjrTOkeNeUfB4vXXowdUuxXEOM9m7zmhYrqB1ZM4C7 iehTX/vii7sb2Ns6EuhT2AyBzgspnJJ31pMuxOcPjO/FvFRDNsvaHnP+GBj8bhFq FEwEY/zaxq6T7WKKiyUDDOsnuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH7waO7h zpxZ4u3JCnj9ToUOZvjNMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhlUxL3n3z9+HC02g13gOQe1OPZ8j6uvPyKeogqTM/MqT12J+ZgUM0NKcaDd3 ZPA7CGWE0RNjAbD9b4a/qQq8xDttNNpcwg0OywlGtSGS7aZkufjPL3XOTA01WV2X tHXbfRSer6BNXUrPeyxj7Q98BTJkdrp1LHNlfMJb7HzD6n6Ie5OPoDD4Gnw1VQh/ 08MVQ3YCVjLr3hPovNM4HG1UXbCdxJlrZd4hHCaQF1gygpfgIbn5KtMmrs89siAk zrjEv08/W8GqnThxaiVSYEyAkAYiKUexANjvLDpT/96jo9cJ8dSo0zLcfvMkqiCK RY4GpMjkWCV4zSbDkxLc8IVlew== -----END CERTIFICATE-----Generated at Mon Mar 2 18:27:08 2026 by rpki-client