$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: NgczsqcghCoV/D4KGqsKDyJTCwu6HrGuptk9OoII0LA= Subject key identifier: E3:45:18:59:46:B7:B9:FB:E8:96:0B:82:7C:04:B1:A8:D5:77:A0:AE Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 02C1 Signing time: Sun 01 Mar 2026 02:16:14 +0000 Manifest this update: Sun 01 Mar 2026 02:16:14 +0000 Manifest next update: Sun 08 Mar 2026 02:16:14 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: lm2nEs27uBEoI0WUcepJwGOm6H4JThAjuQnzk4reCyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Mar 1 02:16:14 2026 GMT Not After : Mar 8 02:16:14 2026 GMT Subject: CN=69a3a16e-f2b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:59:4a:0c:76:57:72:b7:48:fb:79:b2:d9:bb: dd:dd:53:89:ae:db:e5:cb:04:90:a1:de:fc:f9:6f: ad:a4:a6:2b:27:ae:2d:bd:e5:95:fe:76:63:8d:2a: 7b:ca:41:21:6e:74:76:e3:d9:0d:5c:a5:99:6e:70: 8e:76:60:c8:22:ee:ef:3a:92:92:46:52:3c:c4:69: c0:35:19:4c:39:69:1d:e4:8d:77:4a:1c:44:9c:09: 5b:43:0b:83:da:f4:13:9d:a4:84:5b:5f:b1:61:51: 3a:08:fa:ce:99:d4:1c:25:22:d7:60:45:c8:7a:78: 5c:74:51:8d:42:63:7a:88:f5:cd:39:ba:39:bf:2e: d8:6c:82:87:49:c0:e1:02:3f:f3:65:eb:d9:ee:47: 88:6f:5e:95:67:8e:5b:75:72:ac:56:f4:7c:37:09: b1:ea:ca:8b:35:e3:c3:7b:08:32:ee:f7:0c:5f:10: 7a:73:fd:b9:27:a1:05:22:db:cf:8f:7a:f7:be:17: 64:18:ab:d0:0c:e6:1b:69:25:d5:98:44:af:ed:0f: cd:4c:06:5b:41:55:dd:6a:2d:0d:6d:a4:8b:f3:12: 39:47:a9:fc:1f:29:ef:3d:3e:2b:d3:6a:41:7c:9c: 71:6d:df:c9:3e:46:e7:cd:31:91:f8:84:f9:09:4d: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:45:18:59:46:B7:B9:FB:E8:96:0B:82:7C:04:B1:A8:D5:77:A0:AE X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:a4:d1:4d:38:e8:dc:af:21:5e:bf:1d:6e:48:2d:37:31:e4: 94:ec:58:b3:8a:56:fa:75:74:9e:59:47:5e:4e:24:39:ad:46: 91:84:9c:50:14:c8:f4:76:05:0a:c4:8e:ec:e8:6b:9e:42:db: bb:d6:56:ba:68:68:ed:0d:f6:e5:6d:65:15:d2:0e:96:b0:eb: cb:02:66:bd:d6:5b:06:f7:a3:29:f1:e0:5c:78:57:7f:97:53: 51:68:ac:44:77:80:1f:9f:82:fa:c0:6a:b9:49:3e:f0:a6:3c: 5f:e4:55:a1:52:0f:9c:9b:35:56:41:79:15:60:0e:3b:a0:49: bc:55:fe:9f:9b:1f:d3:cf:15:a3:09:2f:5b:06:b3:40:4d:9e: a4:e0:74:d8:46:b4:60:92:4e:f1:9c:37:ff:0e:28:90:60:11: 7a:31:77:96:b4:17:4c:02:34:5f:99:f2:56:ca:87:74:b9:0a: 95:f4:68:00:01:8e:34:4a:5c:8b:2e:bf:c3:d2:42:d5:fb:65: f6:8d:c9:9d:9f:1f:1a:60:13:0a:f8:c6:23:b6:0d:ab:54:99: 4c:90:d0:a5:f2:23:ea:ac:58:45:95:6e:69:74:d3:25:f0:54: 93:29:91:bb:c8:04:b7:a1:0d:de:2b:05:73:6a:82:86:2d:d2: bf:e9:07:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjYwMzAxMDIxNjE0WhcNMjYwMzA4MDIxNjE0WjAYMRYwFAYD VQQDEw02OWEzYTE2ZS1mMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFlKDHZXcrdI+3my2bvd3VOJrtvlywSQod78+W+tpKYrJ64tveWV/nZjjSp7 ykEhbnR249kNXKWZbnCOdmDIIu7vOpKSRlI8xGnANRlMOWkd5I13ShxEnAlbQwuD 2vQTnaSEW1+xYVE6CPrOmdQcJSLXYEXIenhcdFGNQmN6iPXNObo5vy7YbIKHScDh Aj/zZevZ7keIb16VZ45bdXKsVvR8Nwmx6sqLNePDewgy7vcMXxB6c/25J6EFItvP j3r3vhdkGKvQDOYbaSXVmESv7Q/NTAZbQVXdai0NbaSL8xI5R6n8HynvPT4r02pB fJxxbd/JPkbnzTGR+IT5CU2ghQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONFGFlG t7n76JYLgnwEsajVd6CuMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUKTRTTjo3K8hXr8dbkgtNzHklOxYs4pW+nV0nllHXk4kOa1GkYScUBTI9HYF CsSO7OhrnkLbu9ZWumho7Q325W1lFdIOlrDrywJmvdZbBvejKfHgXHhXf5dTUWis RHeAH5+C+sBquUk+8KY8X+RVoVIPnJs1VkF5FWAOO6BJvFX+n5sf088VowkvWwaz QE2epOB02Ea0YJJO8Zw3/w4okGARejF3lrQXTAI0X5nyVsqHdLkKlfRoAAGONEpc iy6/w9JC1ftl9o3JnZ8fGmATCvjGI7YNq1SZTJDQpfIj6qxYRZVuaXTTJfBUkymR u8gEt6EN3isFc2qChi3Sv+kHQQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:24:41 2026 by rpki-client