$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: CV/dMmtX+riirBrirjSHjDF1khWJVpUYAs00lYtl5zs= Subject key identifier: 80:98:67:5A:F3:F0:07:D5:F5:65:CA:A4:14:36:08:2C:72:3F:B4:D4 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0BB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0BAE Signing time: Mon 02 Mar 2026 00:23:52 +0000 Manifest this update: Mon 02 Mar 2026 00:23:51 +0000 Manifest next update: Mon 09 Mar 2026 00:23:51 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: RP9yz9sOalvCmTzNHy5iU9dnYtVuNUaxXaRw/kpzaMI=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: 31whv5fvX3GHhn8oNBBfKndDfzOhLiKe+vMmbXanShU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Mar 2 00:23:51 2026 GMT Not After : Mar 9 00:23:51 2026 GMT Subject: CN=69a4d898-a85d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:3f:73:3c:29:62:d9:06:a7:01:24:e2:b6: 46:69:63:2c:51:6a:4b:26:76:e2:d4:7a:db:8a:cd: 39:59:42:98:65:3d:ce:f3:61:83:56:df:f5:45:96: 21:90:d8:29:50:45:d1:6c:d2:07:5f:42:d8:83:8f: 47:2b:f6:a8:0b:eb:4c:59:f7:12:db:8c:ac:e1:f8: 4b:35:c4:a0:d9:a7:f0:da:6a:62:92:6d:30:41:2e: d7:9c:f9:b8:a0:2b:48:ef:28:6d:ce:c4:5c:45:f7: 60:b3:41:49:97:30:80:d1:48:30:12:2b:00:ec:f7: f6:2c:dc:58:8b:89:31:0f:dc:04:a5:65:c4:da:3e: ca:3a:d0:56:61:ed:4b:cb:d2:74:40:11:44:40:63: 87:08:bc:bd:eb:ec:e7:ca:e7:77:e8:9f:a5:e0:16: 85:7b:6a:70:dc:1b:25:18:3e:9e:6e:39:e3:15:09: 37:68:72:ee:00:45:2e:2f:98:ed:63:22:ee:8d:91: 3d:84:b1:d9:16:6d:fa:ee:38:b9:4a:f4:58:0f:78: 35:eb:cd:79:4a:06:df:37:2e:e9:45:92:ce:ad:01: 99:da:ff:43:8b:59:63:69:f9:99:bd:9b:ee:66:73: 39:65:f1:c4:63:29:0f:4c:b1:41:cc:64:92:79:03: e1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:98:67:5A:F3:F0:07:D5:F5:65:CA:A4:14:36:08:2C:72:3F:B4:D4 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:14:7a:78:c0:93:bf:c7:16:46:3e:4b:58:20:31:b9:ca:77: 2e:79:28:40:73:3f:ba:54:3d:8c:60:60:0b:17:4b:0e:53:3e: 92:9d:d3:f2:71:22:42:8f:f6:27:6b:e3:ee:80:11:e7:0a:be: 70:ea:d2:22:05:d1:f9:1d:4d:74:ae:30:6a:ab:3e:b9:5f:99: 8f:ac:79:a6:50:59:f9:f2:0a:ea:7f:32:e4:6a:b6:4b:dc:c2: 66:07:d7:11:8a:df:c3:0d:d6:fd:20:f4:48:18:21:59:7b:35: b9:55:b2:d2:20:e0:bf:8c:0f:bf:9d:dc:00:93:78:b1:f9:aa: 52:91:ad:d8:18:37:fa:95:d5:e6:08:a1:07:9a:57:ef:cb:3d: cc:81:f4:e7:e1:56:c8:99:38:77:73:19:80:92:ff:d5:ff:02: ee:55:ef:26:0a:b7:b1:27:8d:3c:1d:83:85:28:e3:24:1b:01: 0b:ae:a8:1b:db:36:12:af:b0:98:cb:ca:64:d5:13:bd:63:8a: a5:7c:40:99:79:f4:06:7a:ac:ee:8e:5f:8b:b4:ec:2a:97:43: 01:5a:8c:b3:9f:68:4a:c1:42:0d:8c:0f:f2:b5:d7:bd:0e:22: 56:c9:b2:63:be:42:5d:2e:de:f6:0f:71:60:cd:b0:0a:cc:4c: cf:68:ed:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjYwMzAyMDAyMzUxWhcNMjYwMzA5MDAyMzUxWjAYMRYwFAYD VQQDEw02OWE0ZDg5OC1hODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqk/czwpYtkGpwEk4rZGaWMsUWpLJnbi1Hrbis05WUKYZT3O82GDVt/1RZYh kNgpUEXRbNIHX0LYg49HK/aoC+tMWfcS24ys4fhLNcSg2afw2mpikm0wQS7XnPm4 oCtI7yhtzsRcRfdgs0FJlzCA0UgwEisA7Pf2LNxYi4kxD9wEpWXE2j7KOtBWYe1L y9J0QBFEQGOHCLy96+znyud36J+l4BaFe2pw3BslGD6ebjnjFQk3aHLuAEUuL5jt YyLujZE9hLHZFm367ji5SvRYD3g16815SgbfNy7pRZLOrQGZ2v9Di1ljafmZvZvu ZnM5ZfHEYykPTLFBzGSSeQPhTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFICYZ1rz 8AfV9WXKpBQ2CCxyP7TUMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlhR6eMCTv8cWRj5LWCAxucp3LnkoQHM/ulQ9jGBgCxdLDlM+kp3T8nEiQo/2 J2vj7oAR5wq+cOrSIgXR+R1NdK4waqs+uV+Zj6x5plBZ+fIK6n8y5Gq2S9zCZgfX EYrfww3W/SD0SBghWXs1uVWy0iDgv4wPv53cAJN4sfmqUpGt2Bg3+pXV5gihB5pX 78s9zIH05+FWyJk4d3MZgJL/1f8C7lXvJgq3sSeNPB2DhSjjJBsBC66oG9s2Eq+w mMvKZNUTvWOKpXxAmXn0Bnqs7o5fi7TsKpdDAVqMs59oSsFCDYwP8rXXvQ4iVsmy Y75CXS7e9g9xYM2wCsxMz2jtxw== -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:39 2026 by rpki-client