$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: PrW1KuiqptGUN7J1WFOdtXvTLD/tUH41PwvBxhaknRA= Subject key identifier: AD:20:F3:B3:20:66:F6:5C:CF:11:BD:E6:00:D3:96:AD:31:59:86:9D Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: 01F1 Signing time: Sat 07 Mar 2026 02:45:33 +0000 Manifest this update: Sat 07 Mar 2026 02:45:33 +0000 Manifest next update: Sat 14 Mar 2026 02:45:33 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: F+oRuvmSkIYKw4ETLFAgjLz6NfdOQTZ+MaxYqURo7i8=) 2: 9D6E545AA84B11F0B4DF3885C4F9AE02.roa (hash: f4OVUhW0bi1lo1n9ZSiR+RCv7DhSrpC0lFB7A/Kd8HU=) 3: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: bcg53TLs5nFR2EV4CBcEFe8zIM0whJbmabWS8ZS93/Q=) 4: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: WlT7lqcgc4c8+rWeXt+Y5JcXRKuZvK0wiGPxDwUbSb0=) 5: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: L4NVil8pbyS/cOY/ej3K8v/jrMsLv9IfqmTy0v9YRG8=) 6: 7031BFB6ED2B11F083BC5EDE456F56BC.roa (hash: YUDn/ImHnu8Aga92avplp7MOrOxQVfmR+LNkM6xYKp8=) 7: E9874B2A16D011EF90793868C4F9AE02.roa (hash: RDszepU6uUEnaTneHbLYTo9ekedmlaHSehV5QBWdDbs=) 8: 511564A2ED2B11F08C401BDD456F56BC.roa (hash: /UOXs33KnAIdS9eZMavjXXvZDkm7O2iN3QjaCdMcSZo=) 9: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: Oxk9ItIFF7Cmn++8Qhf8B9/Jba23NXxEuE7o6lYsVNY=) 10: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: 7QH1OiU8+y0kM0Xbew8STqzznYlr3akTS6fkDWFomuY=) 11: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: XLyiIx6bH4MWL4cXY1N6tcvmekDJmpJls17+hd3FRlA=) 12: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: jqwk3bmRPDf7C3aKoz+TsrX90WbUHOfRvQL1M86whDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Mar 7 02:45:33 2026 GMT Not After : Mar 14 02:45:33 2026 GMT Subject: CN=69ab914d-453e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:85:05:53:d8:df:0e:f5:1b:23:41:5d:8b: 54:fd:d9:69:1f:de:fb:92:62:c4:bf:82:28:e2:d2: ea:fd:1b:3b:48:a8:21:74:39:9d:f0:4e:b7:63:eb: 08:5a:8b:8f:38:a6:a6:47:eb:d9:c2:06:5e:d5:da: 73:7b:7f:e8:b0:4d:8c:f9:5f:61:71:a5:95:ae:1a: 54:3a:bd:ea:45:80:a2:ee:4b:f0:f7:8c:ac:42:a1: a7:60:ea:d7:0d:36:3e:9c:26:25:58:e9:15:3f:68: ec:8f:6f:5a:d5:fb:7e:bd:3b:27:ad:48:c5:08:57: f7:e7:a5:bc:8d:22:0b:1d:68:2b:6a:fe:17:47:46: 61:91:02:f8:8f:9e:26:8b:2a:d7:48:f6:dd:86:91: aa:04:d7:0f:91:b1:5d:86:4d:c1:a1:7d:a3:51:51: 90:95:09:1b:82:a5:c0:8f:f0:c2:fd:13:bd:84:36: ca:f7:96:e0:3d:62:4d:d5:52:e5:92:bd:12:be:d0: 4f:5e:29:10:dc:41:c5:d1:fc:07:d8:ba:fb:45:8c: ab:43:97:eb:b8:e7:f9:2e:b6:45:52:84:57:54:85: 78:8e:79:c1:cf:9b:9a:50:c9:1b:13:80:94:30:d0: 13:58:5e:d5:e3:cf:bc:c2:fe:56:ad:63:56:ea:01: ea:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:20:F3:B3:20:66:F6:5C:CF:11:BD:E6:00:D3:96:AD:31:59:86:9D X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:61:0d:47:b7:c3:8d:15:1c:4f:9c:b0:4e:89:42:26:87:4a: 0c:d6:00:f1:60:c9:07:0a:4e:07:c0:a5:63:88:60:b4:b1:f3: 47:d4:f8:60:56:bb:3d:42:fb:b6:b5:34:19:11:89:4e:0e:b9: 39:76:ab:f6:86:78:64:06:91:d9:0c:fd:6e:3e:9e:66:e9:39: 32:2f:ce:46:d6:68:41:93:3c:84:12:e9:5a:f0:bc:43:c0:1f: 99:ad:4f:8f:08:b0:23:95:61:8f:6c:0b:69:75:69:3d:88:27: f5:7f:5d:06:94:a3:d5:b3:17:dc:4f:2d:68:2e:52:14:90:27: fb:f6:bd:08:67:2b:d7:27:30:94:ae:5a:22:6e:90:5d:f0:ec: 26:0f:5d:d1:f9:66:56:30:01:f3:74:e4:93:5c:87:78:07:a1: d3:d4:10:3d:af:c9:a0:9f:62:87:d2:5c:b9:74:dc:ad:99:ed: 12:9c:6d:43:49:a5:cf:2e:5c:6b:19:04:56:02:64:da:5d:02: a1:58:07:2e:12:b0:00:d8:79:c0:e9:59:7f:63:e6:78:d7:b3: 6e:c6:ce:ef:55:2b:7c:2c:9f:41:71:d2:b8:c7:bf:8f:bc:3f: e2:ea:a4:9a:4d:7b:d7:1a:a2:10:69:3c:2e:df:8b:7a:8f:25: df:40:8a:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjYwMzA3MDI0NTMzWhcNMjYwMzE0MDI0NTMzWjAYMRYwFAYD VQQDEw02OWFiOTE0ZC00NTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9KFBVPY3w71GyNBXYtU/dlpH977kmLEv4Io4tLq/Rs7SKghdDmd8E63Y+sI WouPOKamR+vZwgZe1dpze3/osE2M+V9hcaWVrhpUOr3qRYCi7kvw94ysQqGnYOrX DTY+nCYlWOkVP2jsj29a1ft+vTsnrUjFCFf356W8jSILHWgrav4XR0ZhkQL4j54m iyrXSPbdhpGqBNcPkbFdhk3BoX2jUVGQlQkbgqXAj/DC/RO9hDbK95bgPWJN1VLl kr0SvtBPXikQ3EHF0fwH2Lr7RYyrQ5fruOf5LrZFUoRXVIV4jnnBz5uaUMkbE4CU MNATWF7V48+8wv5WrWNW6gHqdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0g87Mg ZvZczxG95gDTlq0xWYadMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVGENR7fDjRUcT5ywTolCJodKDNYA8WDJBwpOB8ClY4hgtLHzR9T4YFa7PUL7 trU0GRGJTg65OXar9oZ4ZAaR2Qz9bj6eZuk5Mi/ORtZoQZM8hBLpWvC8Q8Afma1P jwiwI5Vhj2wLaXVpPYgn9X9dBpSj1bMX3E8taC5SFJAn+/a9CGcr1ycwlK5aIm6Q XfDsJg9d0flmVjAB83Tkk1yHeAeh09QQPa/JoJ9ih9JcuXTcrZntEpxtQ0mlzy5c axkEVgJk2l0CoVgHLhKwANh5wOlZf2PmeNezbsbO71UrfCyfQXHSuMe/j7w/4uqk mk171xqiEGk8Lt+Leo8l30CKyg== -----END CERTIFICATE-----Generated at Sat Mar 7 12:44:16 2026 by rpki-client