$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: RiptvwLJDY0tdATKmLtLnlEljxRcJNJDb4wSE57yb3g= Subject key identifier: 1A:93:CA:53:D9:FF:69:08:7F:4B:36:27:9D:EF:30:22:34:41:75:6F Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0CB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C6D Signing time: Thu 12 Mar 2026 18:32:59 +0000 Manifest this update: Thu 12 Mar 2026 18:32:59 +0000 Manifest next update: Thu 19 Mar 2026 18:32:59 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: JIpyjQTOE1yOQDOMqro2ob24iIRZECjR5jS2V1d5wkE=) 2: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: /XLi+JoFopcNaQS+dz0I9QQbByJLgyqvV+UDc3RM9XQ=) 3: 45DE9550BADF11F09B91D509C4F9AE02.roa (hash: VFxaFuE3kLPbmnaiebPltW71W8wxxR4QeAfyqtq3Fsc=) 4: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: 2LqeRUOZAwgxybnlCEWpL5xaNP5BZabdtxW3D8ogqXA=) 5: FD9DD964D0FE11F09871A984C4F9AE02.roa (hash: fCNwY+bFmbNIKvRtyJc3Fedqpi08Sju/q2nGO6Ir4oQ=) 6: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: TdD366YPbDVh8M4hWGlCIcUx+fM9FgqZUJ2TV/gnPRw=) 7: 336E2134D0FF11F0904A3785C4F9AE02.roa (hash: /2RNIkBIhtZT+yQtCchMfxU/aFUT25YRMpbrC+A9cdA=) 8: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: zZKkU5m5jrELsXLPpU2iKiEvYddsb6m7m0BK+ZsPDg0=) 9: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: VOBPRXqiWHsxxicImatBXQPFpdPNhWUthBewKk/mSYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3249 (0xcb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Mar 12 18:32:59 2026 GMT Not After : Mar 19 18:32:59 2026 GMT Subject: CN=69b306db-45f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:75:20:68:d7:d0:bf:18:3e:e6:da:fa:95:88: 01:d6:95:45:65:2d:6b:f3:e3:af:bc:d6:cc:2a:39: fa:e8:3f:cb:89:7d:03:b5:f1:83:0e:29:98:64:02: 7e:55:e3:e0:9e:f5:b2:ae:1a:3e:fa:96:75:89:89: f8:e2:f2:bf:05:f5:c6:bc:ec:c2:c4:62:4a:0e:22: a5:ee:d2:5a:1d:25:7c:d1:82:7e:e5:2b:b1:a5:29: e0:8a:22:85:bb:e8:b7:98:73:85:de:6a:46:76:f0: a2:7d:71:ad:83:62:14:26:36:e3:17:f1:c2:50:ca: ff:cf:2d:c5:f9:4a:20:9f:5b:b1:8f:e9:8d:b6:03: 0f:85:dd:23:cd:1a:8b:ff:2b:4a:59:52:3d:dd:d4: f2:9a:d5:dd:64:80:40:5a:c4:66:9a:94:80:b6:75: 8b:67:3f:b9:ad:0d:5f:d9:fd:7d:40:7c:79:f7:a8: b4:94:8d:18:33:2f:40:97:78:d1:63:53:84:65:bf: 5f:dc:b6:99:99:12:4a:c4:2f:ec:84:f5:3a:83:27: c1:be:c7:75:da:b2:01:8a:f0:50:13:d1:e2:7c:21: 25:21:fe:41:4b:60:7c:a7:8f:3c:80:d0:d8:57:82: 91:5b:0d:cf:19:90:88:38:a3:d1:d2:dd:40:12:03: 25:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:93:CA:53:D9:FF:69:08:7F:4B:36:27:9D:EF:30:22:34:41:75:6F X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f8:8c:36:d5:4e:df:ae:cf:f5:f2:37:89:78:4b:4c:d2:0b: fd:25:da:c3:98:a4:6f:3e:c5:02:a6:7c:33:b7:c2:95:05:8b: d3:b7:23:a5:61:24:56:87:d9:da:da:0f:1a:a0:8e:e9:f0:bb: 99:96:8d:78:45:7d:3e:71:4d:5c:9d:69:9e:20:27:f1:0f:e7: db:1c:2e:8b:eb:d5:48:fa:9d:1f:2d:e7:9b:67:7b:9b:eb:ed: 4e:f0:41:3b:5d:d1:5d:c6:b8:84:d6:6a:3c:41:c6:ea:af:ab: f9:27:9e:83:bc:eb:27:63:17:95:4d:67:48:64:42:6e:d1:a7: e8:87:4d:e3:1e:ca:fd:7e:02:02:bd:ce:53:94:80:48:e3:1e: bb:36:3c:f6:d4:dd:e7:dd:3c:0a:0f:ea:2b:21:c2:d5:b4:2f: 64:70:5a:6b:7e:72:ef:bd:06:22:93:2f:a8:ca:e9:09:80:13: 94:95:61:62:4b:5e:21:f4:1a:17:43:58:dd:cf:bc:db:0e:8e: 29:67:f6:df:5a:72:6e:17:b5:29:ab:0a:31:64:17:8b:a5:af: cb:e3:6b:a2:e0:c8:1f:15:8e:2a:b4:dd:b4:bd:31:ca:15:c2: 66:80:49:c7:e8:85:4d:0e:18:d1:79:13:f4:bb:2a:8d:b3:00: aa:48:59:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjYwMzEyMTgzMjU5WhcNMjYwMzE5MTgzMjU5WjAYMRYwFAYD VQQDEw02OWIzMDZkYi00NWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23UgaNfQvxg+5tr6lYgB1pVFZS1r8+OvvNbMKjn66D/LiX0DtfGDDimYZAJ+ VePgnvWyrho++pZ1iYn44vK/BfXGvOzCxGJKDiKl7tJaHSV80YJ+5SuxpSngiiKF u+i3mHOF3mpGdvCifXGtg2IUJjbjF/HCUMr/zy3F+Uogn1uxj+mNtgMPhd0jzRqL /ytKWVI93dTymtXdZIBAWsRmmpSAtnWLZz+5rQ1f2f19QHx596i0lI0YMy9Al3jR Y1OEZb9f3LaZmRJKxC/shPU6gyfBvsd12rIBivBQE9HifCElIf5BS2B8p488gNDY V4KRWw3PGZCIOKPR0t1AEgMlwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBqTylPZ /2kIf0s2J53vMCI0QXVvMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb/iMNtVO367P9fI3iXhLTNIL/SXaw5ikbz7FAqZ8M7fClQWL07cjpWEkVofZ 2toPGqCO6fC7mZaNeEV9PnFNXJ1pniAn8Q/n2xwui+vVSPqdHy3nm2d7m+vtTvBB O13RXca4hNZqPEHG6q+r+Seeg7zrJ2MXlU1nSGRCbtGn6IdN4x7K/X4CAr3OU5SA SOMeuzY89tTd5908Cg/qKyHC1bQvZHBaa35y770GIpMvqMrpCYATlJVhYkteIfQa F0NY3c+82w6OKWf231pybhe1KasKMWQXi6Wvy+NrouDIHxWOKrTdtL0xyhXCZoBJ x+iFTQ4Y0XkT9LsqjbMAqkhZeQ== -----END CERTIFICATE-----Generated at Sat Mar 14 02:22:16 2026 by rpki-client