$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: JON7ucVMvok5NMrr5ps8P7Fr/r+oURFydO9iTytf8IA= Subject key identifier: 86:26:06:C3:C6:9A:B3:67:41:5A:AC:A2:E5:BA:07:C1:E2:7A:2B:53 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: BD Signing time: Sun 01 Mar 2026 08:12:15 +0000 Manifest this update: Sun 01 Mar 2026 08:12:14 +0000 Manifest next update: Sun 08 Mar 2026 08:12:14 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: YH7f/VYgjJrN9m5eT43SOezFYmozRnTE1CNg0MXZuQ4=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Mar 1 08:12:14 2026 GMT Not After : Mar 8 08:12:14 2026 GMT Subject: CN=69a3f4de-6ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:db:d0:66:f1:67:3d:f7:a2:27:e0:33:9c:a7: d6:7e:20:e0:94:c1:31:02:c1:d5:82:f4:6c:39:37: ec:5a:6e:d4:93:ac:93:b9:a5:91:4b:d1:3d:1a:85: eb:23:72:77:32:54:0c:ad:9a:32:a3:e5:47:1f:07: 61:7c:fa:00:88:27:59:f7:35:52:71:42:c5:09:2f: 89:5d:61:2d:a4:10:68:19:45:a6:3e:82:e6:a0:ae: 43:13:9c:5b:ef:65:c2:da:5a:d8:14:69:94:b8:5e: 8e:ca:a6:98:23:dd:7a:d4:a2:0a:86:51:01:c7:30: 0d:bc:20:2f:c0:8e:99:27:4f:0b:ec:a2:a6:fd:b8: cc:b9:f2:03:de:f0:ac:b4:3c:1c:78:41:29:a6:32: d6:eb:8c:fb:41:f1:8a:1e:c6:c3:d6:6a:4e:0c:1d: 6e:33:e9:e5:bd:14:34:f5:ca:2b:2d:9d:8f:d8:29: c8:29:fc:58:71:c9:60:a0:e2:84:1c:88:6f:e4:28: 7e:64:0f:d2:72:22:9a:5a:cb:10:13:92:c0:c6:a5: 61:cd:fc:94:6f:1c:3f:99:0e:e9:69:46:40:b4:57: 5a:eb:76:35:4b:23:c5:83:4e:54:4c:ec:0e:07:a8: 54:3f:a6:88:1a:67:8a:f0:c9:ae:75:07:cf:ba:54: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:26:06:C3:C6:9A:B3:67:41:5A:AC:A2:E5:BA:07:C1:E2:7A:2B:53 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:09:28:66:e2:66:99:fc:05:6c:f2:1a:6c:1a:0d:58:00:24: 70:27:25:b3:73:19:86:74:a1:cd:91:b0:ec:e4:ba:d7:61:9a: 7b:95:f7:21:62:44:d8:91:f7:e8:10:3c:8a:05:7d:1e:ea:52: 3b:42:76:25:8e:b9:cc:3b:65:8c:33:13:ac:b3:c1:f0:55:8c: 1b:8e:4b:da:ff:ce:c1:97:5f:ae:5b:fa:0e:45:4d:ab:79:9b: f1:dd:a5:4f:fd:52:ff:8b:a9:6d:63:f6:38:d6:66:dd:89:6e: 39:03:22:0d:2e:5b:67:33:3d:a6:07:3d:6b:40:f7:ed:f6:41: e5:d5:dc:fc:67:11:ec:48:f0:09:0f:13:0f:2d:b2:7b:c4:73: 9c:11:e4:bf:43:a0:cd:9e:9b:e2:9b:6b:55:10:84:a5:c2:50: cb:43:05:e8:07:07:41:33:ed:da:2c:9b:cb:50:da:cb:eb:bf: 4b:87:81:1f:60:70:48:22:7e:0a:59:c9:1d:2a:05:86:14:8f: ac:10:05:68:c3:e6:75:a1:f9:68:e3:b5:d5:45:49:f8:79:c5: 55:fa:b0:6d:72:02:9a:5d:f7:ce:95:62:12:9a:7c:7c:9e:8f: 32:b8:b0:d9:ad:f3:42:b1:f2:48:d6:e5:2a:1e:7c:26:6d:95: 67:8d:fd:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5ODUxMTAvBgNVBAUTKDI5QURCMzlCNjIwRUFFM0NCOEFGQ0EyQ0ExODVGNUM0 ODc2RkQwNDMwHhcNMjYwMzAxMDgxMjE0WhcNMjYwMzA4MDgxMjE0WjAYMRYwFAYD VQQDEw02OWEzZjRkZS02Y2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dvQZvFnPfeiJ+AznKfWfiDglMExAsHVgvRsOTfsWm7Uk6yTuaWRS9E9GoXr I3J3MlQMrZoyo+VHHwdhfPoAiCdZ9zVScULFCS+JXWEtpBBoGUWmPoLmoK5DE5xb 72XC2lrYFGmUuF6OyqaYI9161KIKhlEBxzANvCAvwI6ZJ08L7KKm/bjMufID3vCs tDwceEEppjLW64z7QfGKHsbD1mpODB1uM+nlvRQ09corLZ2P2CnIKfxYcclgoOKE HIhv5Ch+ZA/SciKaWssQE5LAxqVhzfyUbxw/mQ7paUZAtFda63Y1SyPFg05UTOwO B6hUP6aIGmeK8MmudQfPulT+7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIYmBsPG mrNnQVqsouW6B8HieitTMB8GA1UdIwQYMBaAFCmts5tiDq48uK/KLKGF9cSHb9BD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzk4NS82NzNBQTJGNEY1 QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3JqeTRyOG9zb1lYMXhJZHYw RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9LYTJ6bTJJT3Jq eTRyOG9zb1lYMXhJZHYwRU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYwkoZuJmmfwFbPIabBoNWAAkcCcls3MZhnShzZGw7OS612Gae5X3IWJE2JH3 6BA8igV9HupSO0J2JY65zDtljDMTrLPB8FWMG45L2v/OwZdfrlv6DkVNq3mb8d2l T/1S/4upbWP2ONZm3YluOQMiDS5bZzM9pgc9a0D37fZB5dXc/GcR7EjwCQ8TDy2y e8RznBHkv0OgzZ6b4ptrVRCEpcJQy0MF6AcHQTPt2iyby1Day+u/S4eBH2BwSCJ+ ClnJHSoFhhSPrBAFaMPmdaH5aOO11UVJ+HnFVfqwbXICml33zpViEpp8fJ6PMriw 2a3zQrHySNblKh58Jm2VZ439Sw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:10:11 2026 by rpki-client