$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: Y/hpegYCGR6QzOswoscNrUg1yQv9JvBwm6Ts3YyDngg= Subject key identifier: 62:F1:A1:D1:EF:37:13:34:25:F9:8F:B9:2B:06:79:85:C2:8C:B6:7D Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3822 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 371D Signing time: Fri 06 Mar 2026 14:32:48 +0000 Manifest this update: Fri 06 Mar 2026 14:32:48 +0000 Manifest next update: Fri 13 Mar 2026 14:32:48 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: Yoqhl50LQxjidhhMa0mUOdhpC/SswBHgwtAXsyPSKR8=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E=) 3: 15B06ACE01B211F1A8498BCA6C6F56BC.roa (hash: 5xNdDoLkpm/cKB7fxSHaoDjqTsi17ChXNYz70KIoKrA=) 4: F24EEED208C011F19DFF611F213D8C67.roa (hash: j8mZP70/+lxFmxKK+gaXtA4vlgcSiykk11UZrhv9x1I=) 5: 0F0E88A6192F11F183D9B1FC303D8C67.roa (hash: 5aKDuZwd3Wn+m9JFqN35rRMwxZf4PwI1YL49pBMgje4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14370 (0x3822) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Mar 6 14:32:48 2026 GMT Not After : Mar 13 14:32:48 2026 GMT Subject: CN=69aae590-3292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:29:14:eb:29:02:29:ba:c6:40:d8:72:56:1d: b7:f0:93:91:b9:8c:6e:7b:4d:b9:c1:6e:3b:6f:49: 0d:f2:fc:9b:ea:32:bd:d6:b7:72:d0:18:29:37:a4: 3f:51:98:6c:63:b1:f2:a7:ec:1f:e7:40:6d:6c:6c: c9:8a:07:8f:f1:68:02:84:68:16:42:6a:aa:f5:c3: 62:3e:14:d2:e4:66:ad:ff:4b:f6:71:3f:d9:3d:35: d0:a4:39:c2:01:f8:48:30:68:f3:49:2f:7c:7e:67: 1a:4c:cf:39:f8:70:0b:71:f1:1b:d6:25:2f:11:17: 3a:79:42:3b:0e:69:34:5d:8e:77:5f:19:b4:b4:45: 50:9b:f9:c6:be:bf:a5:c3:ad:3d:d6:03:1a:9e:76: 0c:61:9f:81:d8:d5:df:fa:13:1c:9e:16:db:e3:7a: 01:38:f3:c6:fb:c2:35:ed:f6:8f:0c:24:72:f4:b3: a7:b6:6c:1c:0b:a5:77:79:5d:a4:0c:9e:b1:41:39: 66:cb:2c:c7:34:95:88:9c:41:41:ee:85:bc:fe:88: 06:8b:5d:54:ad:7a:f1:e7:3d:34:47:41:dd:2c:6b: 13:ed:67:20:41:b1:50:2a:84:f8:71:e1:a0:15:76: 1d:4f:8f:01:77:03:9d:f2:99:10:64:c3:ef:fe:18: fd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F1:A1:D1:EF:37:13:34:25:F9:8F:B9:2B:06:79:85:C2:8C:B6:7D X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c3:59:81:a3:b3:ad:65:b7:ec:9d:ac:00:2e:ef:ce:50:cc: 15:b8:5a:30:1b:67:d5:a5:64:6a:39:63:ad:76:db:b1:e9:a3: 85:67:18:5c:d7:5b:fd:35:37:10:fb:60:59:b4:83:29:ec:cc: 50:3f:45:c1:86:07:11:8b:0e:ef:55:1d:c5:0c:4e:f6:47:5c: 39:6d:28:1c:88:c7:b2:7e:97:c9:67:4d:50:61:e7:e9:c0:d4: 08:d9:0a:f0:a4:00:85:6a:11:18:87:8d:20:d4:ac:6e:ef:02: 69:72:3a:ca:c1:ee:c8:1d:85:01:a1:3a:02:ba:e2:b6:79:54: 49:8d:10:d9:14:dc:69:bd:48:82:ea:94:0e:a2:65:fb:19:97: e0:4a:78:a3:2c:0c:b7:d7:5b:a1:76:57:b8:8a:c2:fb:eb:01: 7f:c7:92:60:cf:3f:f2:50:b6:f6:c8:bc:6e:a1:31:7e:df:d5: 84:57:e8:cf:0a:6c:8b:20:88:59:f3:3c:52:c5:f4:a1:e1:d5: 6b:3e:0b:b8:4e:24:04:3f:46:98:67:39:fc:2a:2a:47:73:b3: 33:30:9a:7b:65:a2:13:ef:94:4c:73:a2:4e:9d:b7:64:f7:e9: 68:ff:ed:fb:39:cc:5c:87:4c:0e:6e:e2:28:f0:08:5a:16:fd: 2a:4c:5f:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMzA2MTQzMjQ4WhcNMjYwMzEzMTQzMjQ4WjAYMRYwFAYD VQQDEw02OWFhZTU5MC0zMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCkU6ykCKbrGQNhyVh238JORuYxue025wW47b0kN8vyb6jK91rdy0BgpN6Q/ UZhsY7Hyp+wf50BtbGzJigeP8WgChGgWQmqq9cNiPhTS5Gat/0v2cT/ZPTXQpDnC AfhIMGjzSS98fmcaTM85+HALcfEb1iUvERc6eUI7Dmk0XY53Xxm0tEVQm/nGvr+l w6091gMannYMYZ+B2NXf+hMcnhbb43oBOPPG+8I17faPDCRy9LOntmwcC6V3eV2k DJ6xQTlmyyzHNJWInEFB7oW8/ogGi11UrXrx5z00R0HdLGsT7WcgQbFQKoT4ceGg FXYdT48BdwOd8pkQZMPv/hj9QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGLxodHv NxM0JfmPuSsGeYXCjLZ9MB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAscNZgaOzrWW37J2sAC7vzlDMFbhaMBtn1aVkajljrXbbsemjhWcYXNdb/TU3 EPtgWbSDKezMUD9FwYYHEYsO71UdxQxO9kdcOW0oHIjHsn6XyWdNUGHn6cDUCNkK 8KQAhWoRGIeNINSsbu8CaXI6ysHuyB2FAaE6ArritnlUSY0Q2RTcab1IguqUDqJl +xmX4Ep4oywMt9dboXZXuIrC++sBf8eSYM8/8lC29si8bqExft/VhFfozwpsiyCI WfM8UsX0oeHVaz4LuE4kBD9GmGc5/CoqR3OzMzCae2WiE++UTHOiTp23ZPfpaP/t +znMXIdMDm7iKPAIWhb9KkxfOA== -----END CERTIFICATE-----Generated at Sat Mar 7 14:35:57 2026 by rpki-client