$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: tFnkQk4MLoDQBByZJqrI4srSGnDRcfBTR0H1wojfJ1Q= Subject key identifier: 08:7F:54:24:43:78:08:72:F6:3E:D4:05:1D:14:D3:58:47:A9:CA:87 Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 5A Signing time: Sun 01 Mar 2026 09:29:56 +0000 Manifest this update: Sun 01 Mar 2026 09:29:55 +0000 Manifest next update: Sun 08 Mar 2026 09:29:55 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: SDOHF8P6m/joEbc4Vx6ZSTvTvV58grgplTtjsAEb3vw=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: TEkM5L9gYDSbXl7l7QCjyJ+tRJyP8a0ZBB6nUCwEyKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Mar 1 09:29:55 2026 GMT Not After : Mar 8 09:29:55 2026 GMT Subject: CN=69a40714-17ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:47:4a:e9:c6:77:08:54:ff:34:ca:ea:9e:6d: ef:48:0d:1c:bb:bf:4c:44:ff:9f:76:cd:b6:1b:07: ee:5b:35:84:fd:aa:d8:be:68:2e:b0:09:59:6f:10: 39:a4:0f:fa:0a:5a:b2:0a:da:37:b7:5e:6b:48:14: 3c:b8:7e:52:48:24:77:4c:58:ca:9c:23:dd:cf:10: 36:9c:38:7a:55:d8:c0:8d:cd:b5:99:3e:e5:b3:c0: bd:ae:0a:d5:32:20:22:8b:92:bd:da:a3:13:89:7c: b7:79:e4:5a:85:68:ba:77:ce:6a:73:a5:a3:3d:99: f1:83:29:21:8c:48:6f:54:eb:f7:b9:f6:05:04:9c: eb:f6:24:af:15:46:8d:3b:ea:23:b0:72:d7:59:8d: 7b:6a:22:90:a0:e8:68:c9:68:0c:f9:14:19:8b:57: e7:bf:88:77:49:e2:0e:62:b1:7f:0b:c2:7a:5c:b8: 37:8a:45:1f:bb:ed:d4:20:6b:f6:04:5f:ff:a4:e0: eb:0e:80:5b:39:59:7f:d8:96:78:84:f9:85:84:71: fb:57:f3:fd:7b:8f:b4:ae:4d:00:6f:b9:a0:f4:c7: f3:2c:21:1b:26:e0:9c:cb:f6:2c:b8:9a:60:84:bb: ca:65:e9:95:8e:7d:f8:12:78:8d:f0:74:a3:22:8b: 9b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7F:54:24:43:78:08:72:F6:3E:D4:05:1D:14:D3:58:47:A9:CA:87 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:1b:7a:0b:13:79:db:5d:11:d2:80:64:61:53:92:07:fd:74: 67:22:b7:1e:55:96:2c:e7:20:23:e6:98:e9:63:c3:0c:c2:ab: c0:2b:9a:ca:27:47:92:2a:5f:b4:7e:53:1e:9f:28:e5:60:46: b4:7c:58:8b:cb:34:51:85:7c:ea:3e:cd:94:a2:46:02:16:80: a4:83:cb:0f:53:85:4e:de:10:cb:d1:04:74:9c:fb:30:4a:7e: 15:a6:c2:e8:35:b7:2b:08:5d:2e:f1:d0:e0:9b:11:cb:1c:fc: ba:dc:f2:1c:3f:1e:97:13:88:59:f9:36:e5:66:03:40:5d:da: c1:35:97:d1:40:37:bc:f7:5b:0b:19:51:5f:24:7f:a7:c2:a0: cf:b3:5c:6d:bc:a9:e7:e5:d7:30:60:c7:b3:b7:8a:12:28:3e: 43:21:1d:7a:f2:55:93:18:29:d9:56:3f:e7:78:dc:59:b9:79: 81:3f:05:a5:6e:3a:fd:f0:b6:ab:af:ab:c8:cc:70:a0:8d:f6: 41:46:0a:d7:a6:7a:70:23:22:27:d2:2b:b7:bb:5d:9c:0c:e0: 82:21:b2:f3:ac:c0:7f:17:45:5f:35:d8:0c:cd:d6:93:6e:4b: 8d:ed:ba:af:de:be:03:50:ac:2a:82:6e:e7:aa:7d:d3:c1:ff: 3d:26:23:4e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNjAzMDEwOTI5NTVaFw0yNjAzMDgwOTI5NTVaMBgxFjAUBgNV BAMTDTY5YTQwNzE0LTE3Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZR0rpxncIVP80yuqebe9IDRy7v0xE/592zbYbB+5bNYT9qti+aC6wCVlvEDmk D/oKWrIK2je3XmtIFDy4flJIJHdMWMqcI93PEDacOHpV2MCNzbWZPuWzwL2uCtUy ICKLkr3aoxOJfLd55FqFaLp3zmpzpaM9mfGDKSGMSG9U6/e59gUEnOv2JK8VRo07 6iOwctdZjXtqIpCg6GjJaAz5FBmLV+e/iHdJ4g5isX8LwnpcuDeKRR+77dQga/YE X/+k4OsOgFs5WX/YlniE+YWEcftX8/17j7SuTQBvuaD0x/MsIRsm4JzL9iy4mmCE u8pl6ZWOffgSeI3wdKMii5s7AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCH9UJEN4 CHL2PtQFHRTTWEepyocwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBKG3oLE3nbXRHSgGRhU5IH/XRnIrceVZYs5yAj5pjpY8MMwqvAK5rKJ0eSKl+0 flMenyjlYEa0fFiLyzRRhXzqPs2UokYCFoCkg8sPU4VO3hDL0QR0nPswSn4VpsLo NbcrCF0u8dDgmxHLHPy63PIcPx6XE4hZ+TblZgNAXdrBNZfRQDe891sLGVFfJH+n wqDPs1xtvKnn5dcwYMezt4oSKD5DIR168lWTGCnZVj/neNxZuXmBPwWlbjr98Lar r6vIzHCgjfZBRgrXpnpwIyIn0iu3u12cDOCCIbLzrMB/F0VfNdgMzdaTbkuN7bqv 3r4DUKwqgm7nqn3Twf89JiNO -----END CERTIFICATE-----Generated at Sun Mar 1 23:58:12 2026 by rpki-client