$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: OTmjjBFAd++6VeylwlOmaZQVuEYjeZPzcOrpkIfId4k= Subject key identifier: 4B:63:59:92:0E:30:B7:D3:1D:BE:E1:20:50:4D:B1:0D:DA:C5:53:3D Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 0220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0216 Signing time: Mon 02 Mar 2026 02:50:47 +0000 Manifest this update: Mon 02 Mar 2026 02:50:44 +0000 Manifest next update: Mon 09 Mar 2026 02:50:44 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: WOgHpLQ48tuQo29fg/K0QiYi/FtEatllfnMAQbcqMlU=) 2: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: aAtHrkMecT5oO4nt1NPtMzyuWR2EapTbCzd38PiZviw=) 3: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: O6tGr92XmxFCney2TeehRmwSGnb7+7FigW1Tc3DQGsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Mar 2 02:50:44 2026 GMT Not After : Mar 9 02:50:44 2026 GMT Subject: CN=69a4fb07-cc77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:19:50:0b:ce:1e:58:28:10:8a:17:c2:79:48: a6:8f:91:dd:49:80:ca:de:b1:58:25:43:87:84:a5: b2:8e:2f:41:aa:dd:f5:62:f0:de:c9:5e:e8:fd:f7: d2:00:c1:e8:b9:d6:6e:7b:54:e7:fc:9f:71:ce:09: 36:39:49:72:e2:06:6f:ee:db:24:96:7d:5f:32:90: 92:49:fc:71:2c:de:68:8b:df:d9:c6:ce:ba:23:94: 34:1d:7c:02:76:8a:98:db:56:ef:35:f2:7a:02:10: 40:9d:40:85:bc:58:10:bf:22:54:9e:25:38:89:10: b4:d6:6d:c2:3b:4a:20:db:b4:f0:24:c7:dc:86:eb: 49:9f:92:09:34:7f:f3:67:53:38:44:4a:55:f9:6b: e4:39:0a:ae:b1:e0:68:2f:75:7c:4e:d0:67:ed:80: 05:37:f9:34:b6:53:48:e0:9b:1f:e2:54:71:3b:43: ff:fd:c1:ff:45:74:84:e6:ee:3c:63:e2:34:a6:29: a7:73:92:8d:f3:17:ac:b4:4a:25:73:ac:20:3a:3c: 60:88:c2:cb:9a:4d:c2:00:74:2b:bf:41:6e:74:23: 7d:da:13:e8:2c:ff:2e:a6:01:a5:8f:d3:52:41:ba: c8:76:bc:1f:1f:ce:f0:67:0c:84:fc:c3:dd:b8:c6: 4d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:63:59:92:0E:30:B7:D3:1D:BE:E1:20:50:4D:B1:0D:DA:C5:53:3D X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:17:bb:3b:e5:36:6d:05:51:3a:65:e6:94:eb:52:9a:3b:ea: de:16:dd:09:cb:23:7e:66:20:ea:ee:05:d5:fc:e1:a2:da:8b: 6c:49:b2:83:fa:d5:5f:9b:fb:cd:42:68:3d:12:bb:5a:21:04: 3e:de:87:7a:af:37:0b:d3:77:b8:84:4e:08:59:e1:5a:ff:f6: 64:42:48:d3:ab:f1:f3:d0:06:a9:11:83:96:31:7c:61:fd:7f: 5e:56:7e:a9:da:a7:56:15:ac:18:99:cc:b6:0e:ea:97:71:ad: 7d:63:79:91:14:c0:20:c8:97:3e:55:1a:0a:6b:ed:1d:e2:f4: a1:f7:cc:6e:7a:82:45:e0:d4:17:f4:d5:92:22:3a:a2:b6:28: 46:b9:a5:85:af:f7:28:6d:46:6c:66:44:2d:3e:6c:1c:f5:d6: 63:03:c3:c1:88:6d:71:58:c1:0d:a3:f7:4c:f7:dc:ee:d3:ec: 25:75:a4:9e:1f:8f:7c:d2:3b:34:3e:96:93:3d:c3:5e:b2:ed: 1b:dd:69:27:61:c5:a7:f7:83:61:2e:ae:96:ed:44:e5:84:a1: 45:10:bf:54:b4:a9:9b:aa:63:cb:53:aa:7e:d3:eb:21:df:ae: c5:e0:b5:9d:86:7b:55:68:56:e2:bd:53:8e:b4:8a:eb:a4:38: 5a:6e:dc:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjYwMzAyMDI1MDQ0WhcNMjYwMzA5MDI1MDQ0WjAYMRYwFAYD VQQDEw02OWE0ZmIwNy1jYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAihlQC84eWCgQihfCeUimj5HdSYDK3rFYJUOHhKWyji9Bqt31YvDeyV7o/ffS AMHoudZue1Tn/J9xzgk2OUly4gZv7tskln1fMpCSSfxxLN5oi9/Zxs66I5Q0HXwC doqY21bvNfJ6AhBAnUCFvFgQvyJUniU4iRC01m3CO0og27TwJMfchutJn5IJNH/z Z1M4REpV+WvkOQquseBoL3V8TtBn7YAFN/k0tlNI4Jsf4lRxO0P//cH/RXSE5u48 Y+I0pimnc5KN8xestEolc6wgOjxgiMLLmk3CAHQrv0FudCN92hPoLP8upgGlj9NS QbrIdrwfH87wZwyE/MPduMZNtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEtjWZIO MLfTHb7hIFBNsQ3axVM9MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMBe7O+U2bQVROmXmlOtSmjvq3hbdCcsjfmYg6u4F1fzhotqLbEmyg/rVX5v7 zUJoPRK7WiEEPt6Heq83C9N3uIROCFnhWv/2ZEJI06vx89AGqRGDljF8Yf1/XlZ+ qdqnVhWsGJnMtg7ql3GtfWN5kRTAIMiXPlUaCmvtHeL0offMbnqCReDUF/TVkiI6 orYoRrmlha/3KG1GbGZELT5sHPXWYwPDwYhtcVjBDaP3TPfc7tPsJXWknh+PfNI7 ND6Wkz3DXrLtG91pJ2HFp/eDYS6ulu1E5YShRRC/VLSpm6pjy1OqftPrId+uxeC1 nYZ7VWhW4r1TjrSK66Q4Wm7cng== -----END CERTIFICATE-----Generated at Mon Mar 2 14:07:21 2026 by rpki-client