$ rpki-client -vvf rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft File: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft (raw, json) Hash identifier: fo7eV4RLCkQFnb0w2HttQ2FlcFPYjqs9FvdZDa/xWSo= Subject key identifier: 63:10:EB:7F:DB:BD:B6:CA:10:73:99:32:57:DE:12:40:82:0D:88:A5 Authority key identifier: F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A Certificate issuer: /CN=A91709F5/serialNumber=F12895792117E90703A0020F4F359831DB2F937A Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft Manifest number: CD Signing time: Tue 03 Mar 2026 06:42:57 +0000 Manifest this update: Tue 03 Mar 2026 06:42:57 +0000 Manifest next update: Tue 10 Mar 2026 06:42:57 +0000 Files and hashes: 1: 8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl (hash: i1NGPMpq9AKUWIjI+JtjUd63wZCOW1pHmkRVaI6HBlo=) 2: A42925E8DFDA11EFB5E94125C4F9AE02.roa (hash: OFV7TAeYTwMYk3v0VLj9doRdmglLiVsQ3XZ6eBJ4Cug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 06:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709F5, serialNumber=F12895792117E90703A0020F4F359831DB2F937A Validity Not Before: Mar 3 06:42:57 2026 GMT Not After : Mar 10 06:42:57 2026 GMT Subject: CN=69a682f1-df00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:7e:46:00:ef:dc:71:19:31:96:31:d9:5b: d3:3c:a3:35:40:c8:68:18:7a:6b:72:11:50:a5:9a: 69:14:14:16:ef:6d:5f:da:60:96:c3:45:65:8c:e0: 02:f1:7f:2e:6a:93:10:6c:44:9a:ea:c7:39:b4:a4: 57:ad:b3:75:ee:2e:00:7e:0b:cf:5f:a9:68:b2:b0: 0a:f4:77:e2:67:b4:95:8b:2e:97:dd:a9:84:e9:2b: 9e:43:a2:f3:bd:89:89:c1:5a:c8:71:4f:c7:00:ef: 67:27:4a:84:77:18:7c:c9:65:9f:7b:7b:2d:c9:47: 69:6c:f5:ac:57:e0:da:a7:eb:c0:7f:0d:4f:a4:bb: 71:99:9a:ba:ed:2a:22:e7:f4:56:f1:5e:d7:7f:07: 93:12:63:c5:ee:88:83:58:3e:ce:6a:ab:27:74:f9: 93:2b:0b:51:12:46:37:be:c6:4b:db:f5:fc:88:20: 87:bc:ed:ff:f2:2f:0c:5f:e4:db:73:b2:cd:74:78: 70:34:45:34:cd:47:ec:b3:42:14:c7:6a:95:ee:46: cd:e7:50:9b:83:5c:3b:9c:b7:6e:d6:04:dd:50:eb: f7:d1:c2:99:12:e8:d4:5e:7e:d8:29:b9:e3:19:e0: 81:29:9b:c5:c1:a7:09:62:87:19:0e:7b:9c:7e:62: e1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:10:EB:7F:DB:BD:B6:CA:10:73:99:32:57:DE:12:40:82:0D:88:A5 X509v3 Authority Key Identifier: keyid:F1:28:95:79:21:17:E9:07:03:A0:02:0F:4F:35:98:31:DB:2F:93:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8SiVeSEX6QcDoAIPTzWYMdsvk3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709F5/3283E7D4DFDA11EF8B478624C4F9AE02/8SiVeSEX6QcDoAIPTzWYMdsvk3o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:53:b5:16:07:07:83:4a:78:d7:1e:83:38:ee:fe:05:c8:8b: 53:d4:2d:43:4d:7a:07:47:06:b3:91:4c:61:71:47:92:84:89: df:37:42:ec:d8:23:8e:46:5f:5b:1f:2c:4c:a8:4f:92:d6:c0: 3a:e3:64:cb:21:6a:3d:22:2e:df:d1:e1:f3:71:e2:9e:5f:ad: 1f:36:9c:4e:ae:05:bb:97:8f:94:74:96:8d:78:76:49:36:f9: 46:bf:d5:64:6b:98:2b:ef:27:35:e8:92:8e:5d:e1:6b:b3:20: 3b:62:bb:ae:00:74:9d:c3:af:2d:05:35:2a:23:0d:73:d2:b8: b4:68:b7:3b:8c:37:da:9a:4b:8c:01:ad:04:b2:c5:73:e4:1a: e8:a4:a6:0f:f6:0e:7c:74:73:f8:44:e4:fb:45:93:61:dc:27: d8:19:fa:79:57:7e:4a:af:88:bd:e3:07:74:2e:ac:ff:d4:b8: 15:f8:15:24:6b:11:f4:18:59:a0:36:ec:d7:05:16:dd:5b:f9: 25:64:2a:aa:0b:fa:87:82:6e:eb:cb:04:d1:f2:7f:e7:44:d3: f5:3c:eb:ad:db:a6:2b:98:c8:67:49:d2:9f:81:bd:36:76:6b: ce:1e:90:14:24:6f:88:03:1f:f5:25:01:c6:e1:17:fe:c9:19: a0:dd:88:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5RjUxMTAvBgNVBAUTKEYxMjg5NTc5MjExN0U5MDcwM0EwMDIwRjRGMzU5ODMx REIyRjkzN0EwHhcNMjYwMzAzMDY0MjU3WhcNMjYwMzEwMDY0MjU3WjAYMRYwFAYD VQQDEw02OWE2ODJmMS1kZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsl1+RgDv3HEZMZYx2VvTPKM1QMhoGHprchFQpZppFBQW721f2mCWw0VljOAC 8X8uapMQbESa6sc5tKRXrbN17i4AfgvPX6losrAK9HfiZ7SViy6X3amE6SueQ6Lz vYmJwVrIcU/HAO9nJ0qEdxh8yWWfe3styUdpbPWsV+Dap+vAfw1PpLtxmZq67Soi 5/RW8V7XfweTEmPF7oiDWD7OaqsndPmTKwtREkY3vsZL2/X8iCCHvO3/8i8MX+Tb c7LNdHhwNEU0zUfss0IUx2qV7kbN51Cbg1w7nLdu1gTdUOv30cKZEujUXn7YKbnj GeCBKZvFwacJYocZDnucfmLhzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGMQ63/b vbbKEHOZMlfeEkCCDYilMB8GA1UdIwQYMBaAFPEolXkhF+kHA6ACD081mDHbL5N6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlGNS8zMjgzRTdENERG REExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZRY0RvQUlQVHpXWU1kc3Zr M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhTaVZlU0VYNlFjRG9BSVBUeldZTWRzdmszby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlGNS8zMjgzRTdENERGREExMUVGOEI0Nzg2MjRDNEY5QUUwMi84U2lWZVNFWDZR Y0RvQUlQVHpXWU1kc3ZrM28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOlO1FgcHg0p41x6DOO7+BciLU9QtQ016B0cGs5FMYXFHkoSJ3zdC7NgjjkZf Wx8sTKhPktbAOuNkyyFqPSIu39Hh83Hinl+tHzacTq4Fu5ePlHSWjXh2STb5Rr/V ZGuYK+8nNeiSjl3ha7MgO2K7rgB0ncOvLQU1KiMNc9K4tGi3O4w32ppLjAGtBLLF c+Qa6KSmD/YOfHRz+ETk+0WTYdwn2Bn6eVd+Sq+IveMHdC6s/9S4FfgVJGsR9BhZ oDbs1wUW3Vv5JWQqqgv6h4Ju68sE0fJ/50TT9TzrrdumK5jIZ0nSn4G9NnZrzh6Q FCRviAMf9SUBxuEX/skZoN2IHA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:20:02 2026 by rpki-client