$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft File: jqW5VjInwuWNQ4vBe6giUHVCRDs.mft (raw, json) Hash identifier: MqM+cvbYI5icKzqDN/WGSCfKcsPd75/00o8IK2ZBIQ8= Subject key identifier: 28:0C:47:0B:C9:DF:56:A8:03:B6:B1:30:D8:C1:15:44:54:36:C6:80 Authority key identifier: 8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B Certificate issuer: /CN=A91B0DE0/serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft Manifest number: 011A Signing time: Tue 03 Mar 2026 05:23:43 +0000 Manifest this update: Tue 03 Mar 2026 05:23:43 +0000 Manifest next update: Tue 10 Mar 2026 05:23:43 +0000 Files and hashes: 1: jqW5VjInwuWNQ4vBe6giUHVCRDs.crl (hash: O/6ykqXmMqE1cFwitwZ1cHIdcL/YN7WOnmXcgERpNg4=) 2: E569D6DA6A8511EF9DB1CD4DC4F9AE02.roa (hash: qoNSrp1S5UFLz+pkwMGVW1W6xXhNXfIp8HVNYC4sZ1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0DE0, serialNumber=8EA5B9563227C2E58D438BC17BA822507542443B Validity Not Before: Mar 3 05:23:43 2026 GMT Not After : Mar 10 05:23:43 2026 GMT Subject: CN=69a6705f-df4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:09:26:65:39:d8:47:9b:45:a1:b1:14:3e:36: c9:7c:9a:6f:d6:6b:9b:11:84:16:db:cb:9c:19:5c: a2:5f:d4:b0:37:74:1f:68:d7:ad:0d:e6:07:90:0f: 88:76:f6:74:c7:3b:15:93:07:dd:0e:c0:bb:d4:1d: 8d:1d:eb:9d:6c:10:7c:dc:9e:bc:0b:0c:d2:89:10: 58:8b:5a:26:38:ff:9b:15:c9:e3:f1:32:32:d4:79: a6:b2:14:5a:77:d7:36:63:8c:23:68:f6:c5:93:5c: 5d:0e:34:74:23:dc:44:59:c4:ad:95:b4:12:85:8a: fb:e7:f4:04:1f:f0:ab:e4:d6:d1:6f:5f:03:3f:cd: 81:15:0d:f7:ab:f9:3d:c9:df:b6:6e:48:a7:85:d8: aa:d4:8a:f6:5e:b8:61:26:f6:63:50:ab:9d:65:4f: 55:d2:75:0e:a9:ef:40:2e:68:f1:a0:07:0c:24:99: 49:e4:5d:47:c8:10:7b:10:d4:36:3a:e6:99:a9:e3: fb:63:5c:65:c8:73:c0:d2:63:24:76:e3:42:50:58: ff:b5:c8:3a:24:78:0b:50:0b:47:c0:06:f1:fd:05: c9:b6:34:ba:7f:57:f0:82:a8:de:52:e9:46:cc:a1: 18:53:85:ec:5b:d5:e7:d3:cb:04:dc:8f:9d:2b:9b: 2e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0C:47:0B:C9:DF:56:A8:03:B6:B1:30:D8:C1:15:44:54:36:C6:80 X509v3 Authority Key Identifier: keyid:8E:A5:B9:56:32:27:C2:E5:8D:43:8B:C1:7B:A8:22:50:75:42:44:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jqW5VjInwuWNQ4vBe6giUHVCRDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0DE0/7040A8E86A8511EFB1568147C4F9AE02/jqW5VjInwuWNQ4vBe6giUHVCRDs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a7:03:9a:3f:28:c7:c7:aa:d3:c0:aa:8f:a1:f1:9c:03:ee: 79:a7:0c:13:3d:f0:04:c0:b7:80:44:a3:05:af:f0:67:81:67: f3:07:0c:bb:71:1b:7a:10:fb:e0:ab:2a:19:99:e0:d4:bc:d7: e2:31:8f:6c:18:aa:b1:92:90:ab:ac:b8:77:c2:89:cc:f7:0d: 75:bf:24:d6:64:b8:78:7c:51:0d:6d:1d:81:e4:6d:b0:2c:d0: 6a:81:58:20:39:59:d1:a4:41:3e:11:60:46:ad:34:14:93:4b: a1:e9:7a:03:1c:72:49:c1:3a:2b:b0:a1:33:62:8d:ba:3c:68: 48:d6:2c:45:da:6d:fe:86:9b:68:4f:98:b1:4d:76:40:f5:90: 1c:bd:6e:7a:49:fe:76:70:c6:2a:6f:94:0c:4c:c2:a8:ce:5b: e5:6a:f4:27:df:e6:29:2a:59:d6:98:d4:ea:57:61:d9:69:85: 06:04:5a:db:f5:0a:9d:37:27:15:25:7e:97:59:8e:13:9b:70: 59:62:27:c2:4e:61:f3:d0:15:5d:ac:f7:72:33:29:a9:e1:e3: 57:fd:ff:2e:88:51:39:19:6d:ff:3c:9b:5f:3e:7c:60:1f:ad: d6:88:63:76:bc:b1:86:29:be:9b:bb:10:58:ee:51:25:3d:63: 58:c3:91:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBERTAxMTAvBgNVBAUTKDhFQTVCOTU2MzIyN0MyRTU4RDQzOEJDMTdCQTgyMjUw NzU0MjQ0M0IwHhcNMjYwMzAzMDUyMzQzWhcNMjYwMzEwMDUyMzQzWjAYMRYwFAYD VQQDEw02OWE2NzA1Zi1kZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwkmZTnYR5tFobEUPjbJfJpv1mubEYQW28ucGVyiX9SwN3QfaNetDeYHkA+I dvZ0xzsVkwfdDsC71B2NHeudbBB83J68CwzSiRBYi1omOP+bFcnj8TIy1HmmshRa d9c2Y4wjaPbFk1xdDjR0I9xEWcStlbQShYr75/QEH/Cr5NbRb18DP82BFQ33q/k9 yd+2bkinhdiq1Ir2XrhhJvZjUKudZU9V0nUOqe9ALmjxoAcMJJlJ5F1HyBB7ENQ2 OuaZqeP7Y1xlyHPA0mMkduNCUFj/tcg6JHgLUAtHwAbx/QXJtjS6f1fwgqjeUulG zKEYU4XsW9Xn08sE3I+dK5suYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCgMRwvJ 31aoA7axMNjBFURUNsaAMB8GA1UdIwQYMBaAFI6luVYyJ8LljUOLwXuoIlB1QkQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMERFMC83MDQwQThFODZB ODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1V05RNHZCZTZnaVVIVkNS RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pxVzVWaklud3VXTlE0dkJlNmdpVUhWQ1JEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MERFMC83MDQwQThFODZBODUxMUVGQjE1NjgxNDdDNEY5QUUwMi9qcVc1VmpJbnd1 V05RNHZCZTZnaVVIVkNSRHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfqcDmj8ox8eq08Cqj6HxnAPueacMEz3wBMC3gESjBa/wZ4Fn8wcMu3EbehD7 4KsqGZng1LzX4jGPbBiqsZKQq6y4d8KJzPcNdb8k1mS4eHxRDW0dgeRtsCzQaoFY IDlZ0aRBPhFgRq00FJNLoel6AxxyScE6K7ChM2KNujxoSNYsRdpt/oabaE+YsU12 QPWQHL1uekn+dnDGKm+UDEzCqM5b5Wr0J9/mKSpZ1pjU6ldh2WmFBgRa2/UKnTcn FSV+l1mOE5twWWInwk5h89AVXaz3cjMpqeHjV/3/LohRORlt/zybXz58YB+t1ohj dryxhim+m7sQWO5RJT1jWMORVw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:07 2026 by rpki-client