$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: JTo2X20N2PuQysZy8uucTG3HxIyYHf/J/KPRNX0pLNs= Subject key identifier: 8B:1E:0F:A0:00:E5:D5:D4:2B:DB:A2:81:16:C1:B2:24:D2:51:5B:B0 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0662 Signing time: Thu 12 Mar 2026 22:17:42 +0000 Manifest this update: Thu 12 Mar 2026 22:17:42 +0000 Manifest next update: Thu 19 Mar 2026 22:17:42 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: 6imnsh6Ay2lsOy1GnJ524YGyYFtkKH0OWtmPmG/fz74=) 2: 4FF7919CA3AE11F08498344CC4F9AE02.roa (hash: vr8P+P39aT/1jKl6iJb1sUFbpi5nliJVWaBLeOW46aY=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: AcX/Q7kCXs6/lVr70u8Z/hkgVWbgvWKfVvGr/7kslLM=) 4: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: pdws3t0lZJ1KRtlaVi7T3cqSeY6vMdRKeuikmdwYWhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Mar 12 22:17:42 2026 GMT Not After : Mar 19 22:17:42 2026 GMT Subject: CN=69b33b86-aef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1a:4a:54:8d:59:33:e5:b8:c5:c4:6f:57:97: 97:1d:22:17:62:3b:01:b8:ce:e8:90:b2:fb:c4:9f: 7e:b5:25:c9:f9:4c:f0:de:e2:84:c5:56:0d:40:cb: ba:97:a3:df:fb:7c:74:d7:49:29:7a:8c:1d:86:10: 73:af:34:f3:1b:42:8e:b5:ff:b4:0e:95:b8:1d:19: 84:6c:90:26:b5:20:f5:b4:68:7b:c5:40:f0:88:86: e5:6f:05:77:1f:df:05:e8:e1:05:ab:73:b9:df:28: 2e:b8:a6:a2:1e:4d:4f:21:e7:73:34:8a:63:8a:4c: 25:76:4e:20:0a:06:df:cc:2c:e4:79:a0:12:aa:09: a4:aa:38:ae:4d:8a:b1:eb:88:d8:ae:80:5d:8f:e4: 30:74:e9:34:af:2e:c1:13:b1:72:cc:9a:23:2e:e0: 36:6e:bc:ed:70:dc:40:b8:74:06:a4:ed:7c:32:51: 3a:ec:ff:b9:10:ae:7b:29:f8:b1:c8:ec:19:b5:ea: 7d:e4:b8:ad:b2:44:5c:14:96:d8:89:48:96:08:c3: 2f:33:04:c1:d9:f2:de:c3:51:e8:27:5a:c9:98:52: 48:52:61:e5:19:69:5f:83:03:2f:f7:6a:b1:d7:9d: ee:cd:08:fb:f3:28:2a:4a:ec:35:5b:92:d8:9e:b6: 9a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1E:0F:A0:00:E5:D5:D4:2B:DB:A2:81:16:C1:B2:24:D2:51:5B:B0 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:e4:35:2f:5f:7a:7d:12:20:ef:50:71:92:8b:12:24:29:ee: a6:74:7d:2b:1f:59:7a:b6:06:4e:4f:d0:24:6e:69:4d:89:04: cd:93:14:3a:9c:35:83:89:4e:99:e2:c9:9a:52:c0:a3:38:03: 10:f5:36:91:97:81:ef:6c:e7:bb:66:35:4a:5c:58:a3:66:ab: 88:9b:eb:0a:72:80:e8:47:f2:c9:c5:b8:84:9a:0c:12:f9:ec: de:c8:eb:d2:00:31:cf:a1:5f:0e:2b:ff:f6:1a:0f:04:72:a5: f2:c5:58:d4:1d:78:0b:2a:b0:df:02:f6:7b:e4:29:0f:b2:ec: a5:58:ce:78:18:c9:28:cc:97:8b:6e:e0:96:1f:26:50:36:2f: 03:03:73:c9:99:0b:96:2c:82:55:7d:ed:f1:9f:2c:81:0c:cb: ff:16:5b:49:43:3f:5e:0b:d1:51:e1:49:91:b5:a3:7c:63:1f: e4:5f:1c:b5:a1:02:23:6c:25:f5:64:03:b0:0e:99:e7:00:e0: 8e:3f:d4:89:c1:4f:ca:1e:51:86:67:3b:2a:82:4c:e9:41:ae: b5:69:2f:fd:41:22:6d:75:8a:d6:1d:1f:75:62:7b:f5:4c:24: f5:82:ed:95:ab:aa:e4:7d:3d:c9:49:1c:98:87:8c:0c:99:0a: 11:ab:1a:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjYwMzEyMjIxNzQyWhcNMjYwMzE5MjIxNzQyWjAYMRYwFAYD VQQDEw02OWIzM2I4Ni1hZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxpKVI1ZM+W4xcRvV5eXHSIXYjsBuM7okLL7xJ9+tSXJ+Uzw3uKExVYNQMu6 l6Pf+3x010kpeowdhhBzrzTzG0KOtf+0DpW4HRmEbJAmtSD1tGh7xUDwiIblbwV3 H98F6OEFq3O53yguuKaiHk1PIedzNIpjikwldk4gCgbfzCzkeaASqgmkqjiuTYqx 64jYroBdj+QwdOk0ry7BE7FyzJojLuA2brztcNxAuHQGpO18MlE67P+5EK57Kfix yOwZtep95LitskRcFJbYiUiWCMMvMwTB2fLew1HoJ1rJmFJIUmHlGWlfgwMv92qx 153uzQj78ygqSuw1W5LYnraa0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIseD6AA 5dXUK9uigRbBsiTSUVuwMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz+Q1L196fRIg71BxkosSJCnupnR9Kx9ZerYGTk/QJG5pTYkEzZMUOpw1g4lO meLJmlLAozgDEPU2kZeB72znu2Y1SlxYo2ariJvrCnKA6EfyycW4hJoMEvns3sjr 0gAxz6FfDiv/9hoPBHKl8sVY1B14Cyqw3wL2e+QpD7LspVjOeBjJKMyXi27glh8m UDYvAwNzyZkLliyCVX3t8Z8sgQzL/xZbSUM/XgvRUeFJkbWjfGMf5F8ctaECI2wl 9WQDsA6Z5wDgjj/UicFPyh5Rhmc7KoJM6UGutWkv/UEibXWK1h0fdWJ79Uwk9YLt lauq5H09yUkcmIeMDJkKEasaIQ== -----END CERTIFICATE-----Generated at Sat Mar 14 02:22:17 2026 by rpki-client