$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: mSuyMrKH9fq+QzA3qVA8ETb3teExsmUkBqeMPRpngAc= Subject key identifier: 0D:EA:EF:AA:61:BF:91:16:6A:AC:6F:70:F5:B6:AF:C9:B4:C1:F1:D6 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 025A Signing time: Fri 13 Mar 2026 01:34:14 +0000 Manifest this update: Fri 13 Mar 2026 01:34:14 +0000 Manifest next update: Fri 20 Mar 2026 01:34:14 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: P1O84O5brjn7xtzZcgEbfConUVydYwUEtBeK8HqTM4s=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: oqs2HbQnUMYYMDR47oCqmjCl1ra9AMLnfmPG6sV1Oco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Mar 13 01:34:14 2026 GMT Not After : Mar 20 01:34:14 2026 GMT Subject: CN=69b36996-9c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:3e:6a:bb:2f:04:01:69:b9:34:78:49:91: 01:b0:0d:54:0a:59:25:18:3b:8d:57:b3:1b:0a:6a: bc:d8:05:35:9b:ce:2b:07:d7:4c:18:e8:f7:c2:0d: 2e:cb:77:96:99:17:88:50:4f:e0:ac:d2:b7:92:a5: 9c:98:fb:70:4b:06:70:f4:66:3b:c2:4c:07:49:47: 7d:28:3c:0f:9b:38:7a:27:c6:1e:5d:49:ab:3a:94: 84:2b:0e:a0:61:a3:d4:fb:e9:da:3e:cb:04:31:82: f2:4d:13:07:34:06:38:7f:ea:eb:f3:45:10:e5:83: eb:61:a1:eb:00:ae:ca:ff:f5:82:67:6b:24:24:64: e9:3c:ab:ab:1b:47:1e:55:9d:d5:4e:a1:8b:c5:1c: da:d6:63:70:2d:df:56:79:a3:be:4b:20:81:1c:82: d4:1b:bb:a6:d9:a2:af:04:36:26:3e:f4:69:88:36: 67:c2:4f:df:f5:21:0f:12:89:31:d4:33:a4:e1:03: 56:f0:98:72:cd:6a:e9:5f:fb:b1:d5:dd:90:36:09: be:01:63:a9:7d:7c:dd:e3:4d:8d:7e:90:02:68:4b: a7:6f:29:b7:ac:21:aa:91:7b:bf:70:f8:91:94:44: 76:80:c2:ef:ba:6b:e8:23:eb:45:54:d0:ec:d9:55: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:EA:EF:AA:61:BF:91:16:6A:AC:6F:70:F5:B6:AF:C9:B4:C1:F1:D6 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:29:0b:e3:5a:7e:82:68:3b:76:bb:06:bb:8c:ad:b6:c7:54: e8:e4:c8:c2:f9:42:a3:39:3f:e8:49:30:1f:05:1d:b7:c8:0f: 72:85:91:de:94:4a:5f:44:8e:c3:51:fa:52:3f:83:59:e6:87: 3a:4f:5b:f0:51:fa:fa:1f:c0:cc:84:12:43:f6:b5:e2:a5:07: 5b:2d:fa:36:74:c8:8f:12:f3:27:6c:37:8b:69:df:09:cf:80: ac:38:b7:b4:1e:22:23:04:68:63:ac:68:25:df:36:0a:25:92: 25:c7:20:10:80:66:76:13:08:31:95:f9:5f:16:b4:eb:70:36: 43:b1:d0:4a:41:40:33:08:9e:de:c9:74:53:5e:7d:09:17:28: 45:b7:ff:00:2f:6f:56:3f:3f:7f:0e:23:b2:cb:77:03:ad:6d: e9:3f:a4:3d:be:f1:af:d5:c2:7d:15:26:39:5e:66:5c:12:a1: 28:74:84:fc:34:e1:a1:67:c2:f2:b8:b2:bf:d6:53:15:55:61: 42:e7:1f:38:f4:90:46:44:54:25:b4:ae:9e:c5:1c:f6:17:d9: 24:00:d7:39:16:37:49:74:6e:8c:0d:1d:0e:58:8d:0e:0f:d7: b1:5f:45:8b:c7:07:94:b1:19:0d:8a:04:e3:ca:5b:03:eb:c6: a8:ca:43:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjYwMzEzMDEzNDE0WhcNMjYwMzIwMDEzNDE0WjAYMRYwFAYD VQQDEw02OWIzNjk5Ni05YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7o+arsvBAFpuTR4SZEBsA1UClklGDuNV7MbCmq82AU1m84rB9dMGOj3wg0u y3eWmReIUE/grNK3kqWcmPtwSwZw9GY7wkwHSUd9KDwPmzh6J8YeXUmrOpSEKw6g YaPU++naPssEMYLyTRMHNAY4f+rr80UQ5YPrYaHrAK7K//WCZ2skJGTpPKurG0ce VZ3VTqGLxRza1mNwLd9WeaO+SyCBHILUG7um2aKvBDYmPvRpiDZnwk/f9SEPEokx 1DOk4QNW8JhyzWrpX/ux1d2QNgm+AWOpfXzd402NfpACaEunbym3rCGqkXu/cPiR lER2gMLvumvoI+tFVNDs2VWKQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA3q76ph v5EWaqxvcPW2r8m0wfHWMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOikL41p+gmg7drsGu4yttsdU6OTIwvlCozk/6EkwHwUdt8gPcoWR3pRKX0SO w1H6Uj+DWeaHOk9b8FH6+h/AzIQSQ/a14qUHWy36NnTIjxLzJ2w3i2nfCc+ArDi3 tB4iIwRoY6xoJd82CiWSJccgEIBmdhMIMZX5Xxa063A2Q7HQSkFAMwie3sl0U159 CRcoRbf/AC9vVj8/fw4jsst3A61t6T+kPb7xr9XCfRUmOV5mXBKhKHSE/DThoWfC 8riyv9ZTFVVhQucfOPSQRkRUJbSunsUc9hfZJADXORY3SXRujA0dDliNDg/XsV9F i8cHlLEZDYoE48pbA+vGqMpDpg== -----END CERTIFICATE-----Generated at Sat Mar 14 21:48:40 2026 by rpki-client