$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: q3RgE3y5bCtuJ5dhL7LXcbzrXUaxQEpzXIuQr/MkDDM= Subject key identifier: 73:D1:AA:43:0E:66:89:BA:0F:90:17:20:16:6C:EF:07:B6:29:C5:3F Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 017E Signing time: Tue 03 Mar 2026 04:17:04 +0000 Manifest this update: Tue 03 Mar 2026 04:17:03 +0000 Manifest next update: Tue 10 Mar 2026 04:17:03 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: 7/pJAcXuIG07mnJKKHAq0XPB32jg8PurM/EVy3Gy5ls=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: UQkvKEtmPCHJz+Q8ZNQvg67RXBCPC2Ebr74K46kUePA=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: LEeEoPnurqHLkUUVSu9yJBsBMhkrOlJ07WCt3kv1lkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Mar 3 04:17:03 2026 GMT Not After : Mar 10 04:17:03 2026 GMT Subject: CN=69a660bf-8050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:36:9c:f1:cd:3b:c6:08:30:6c:d0:d6:6b:83: d3:0b:eb:34:ab:d9:9f:2e:1e:9a:66:7d:80:d9:82: fb:49:26:25:a3:ee:ee:b5:8b:18:c2:c0:0f:fe:18: cd:b0:41:88:c4:75:b3:1e:58:32:c4:20:54:73:e2: 6a:ad:42:86:fb:ab:7f:ad:df:49:f9:7b:cd:db:65: 7f:22:db:33:76:c8:cd:8c:33:88:82:21:6e:5d:a3: fd:05:42:6d:ed:31:e3:de:ca:ba:fa:6e:b0:34:a5: de:e4:4d:23:05:51:1f:5d:80:ce:73:3a:f3:65:39: fb:3d:61:e5:69:30:c1:63:99:8d:00:77:8b:e3:68: b1:ba:54:58:14:4b:1c:6d:f6:2f:66:f7:85:99:d4: 8d:61:66:70:d6:32:e5:ca:7b:52:31:c2:c9:e0:40: 45:19:13:ce:7f:89:05:28:87:4c:08:0f:0e:f8:2c: 64:c9:be:59:b3:dc:bc:d3:3e:4d:17:a9:d4:a5:21: 90:37:ac:07:3e:cf:9b:fb:62:25:4d:fc:3c:05:20: e9:45:42:c0:c1:39:ef:45:81:6d:88:72:4c:ca:8b: 63:bf:77:fd:ff:c8:fc:59:1f:e9:2b:95:b3:09:3c: 35:e3:ff:0a:93:c3:35:59:f4:98:10:51:0c:9e:35: 2f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D1:AA:43:0E:66:89:BA:0F:90:17:20:16:6C:EF:07:B6:29:C5:3F X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:79:5b:1b:1a:77:b4:96:93:57:1d:7d:31:21:5f:0e:b3:94: d3:94:77:b6:fc:50:03:43:a1:df:14:a7:a4:b2:19:0c:db:37: e9:50:74:c0:7e:c7:ef:7f:2c:19:e4:17:86:e6:b9:25:23:e4: d0:1d:3f:9a:0d:1a:aa:e8:2d:72:82:c5:73:4e:13:73:e0:86: b4:04:5d:40:be:ce:a6:73:4b:3b:2d:83:1b:33:3e:7a:d2:00: 8d:9a:24:2a:ef:74:c3:b3:0b:10:4c:6c:d3:2a:6d:b1:ef:76: b1:16:d6:f7:19:e9:c1:f3:3a:d8:c5:35:8d:46:17:ea:1e:fe: 52:33:98:2c:c2:b5:ed:df:ab:24:4e:b3:a8:5c:cf:59:9c:6e: 58:c8:12:cb:73:71:de:d0:d2:cb:b6:57:3e:c6:08:3c:04:35: 23:71:2b:56:80:8a:2b:c0:c0:73:fe:cf:f0:3c:47:fe:f4:e3: 3d:e5:60:7f:7c:a3:2e:e3:54:fd:37:78:3e:34:b1:85:5c:fa: c1:65:8f:62:0b:0d:34:40:e6:11:c5:df:e8:dd:12:f8:af:65: 41:5f:72:a7:c9:98:27:1a:e5:63:5c:bc:78:e5:1f:44:ff:d3: 23:65:ed:5d:5b:d2:f8:64:12:90:5b:f2:19:ff:ad:e0:a9:1f: 1f:88:c0:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjYwMzAzMDQxNzAzWhcNMjYwMzEwMDQxNzAzWjAYMRYwFAYD VQQDEw02OWE2NjBiZi04MDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszac8c07xggwbNDWa4PTC+s0q9mfLh6aZn2A2YL7SSYlo+7utYsYwsAP/hjN sEGIxHWzHlgyxCBUc+JqrUKG+6t/rd9J+XvN22V/ItszdsjNjDOIgiFuXaP9BUJt 7THj3sq6+m6wNKXe5E0jBVEfXYDOczrzZTn7PWHlaTDBY5mNAHeL42ixulRYFEsc bfYvZveFmdSNYWZw1jLlyntSMcLJ4EBFGRPOf4kFKIdMCA8O+Cxkyb5Zs9y80z5N F6nUpSGQN6wHPs+b+2IlTfw8BSDpRULAwTnvRYFtiHJMyotjv3f9/8j8WR/pK5Wz CTw14/8Kk8M1WfSYEFEMnjUvewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHPRqkMO Zom6D5AXIBZs7we2KcU/MB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoHlbGxp3tJaTVx19MSFfDrOU05R3tvxQA0Oh3xSnpLIZDNs36VB0wH7H738s GeQXhua5JSPk0B0/mg0aqugtcoLFc04Tc+CGtARdQL7OpnNLOy2DGzM+etIAjZok Ku90w7MLEExs0yptse92sRbW9xnpwfM62MU1jUYX6h7+UjOYLMK17d+rJE6zqFzP WZxuWMgSy3Nx3tDSy7ZXPsYIPAQ1I3ErVoCKK8DAc/7P8DxH/vTjPeVgf3yjLuNU /Td4PjSxhVz6wWWPYgsNNEDmEcXf6N0S+K9lQV9yp8mYJxrlY1y8eOUfRP/TI2Xt XVvS+GQSkFvyGf+t4KkfH4jASw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:36:27 2026 by rpki-client