$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft File: BoQptByg8Segp10v_LJsA6lfYHE.mft (raw, json) Hash identifier: CIRhk9gBoR3VYZrohVUqv7q0tXxE3gAmG8VCOtgIvMs= Subject key identifier: 74:17:A6:EB:0D:B2:69:1C:64:5B:DD:C3:62:46:AB:39:50:4A:A8:A6 Authority key identifier: 06:84:29:B4:1C:A0:F1:27:A0:A7:5D:2F:FC:B2:6C:03:A9:5F:60:71 Certificate issuer: /CN=A91CCABB/serialNumber=068429B41CA0F127A0A75D2FFCB26C03A95F6071 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft Manifest number: 2A Signing time: Tue 03 Mar 2026 08:25:54 +0000 Manifest this update: Tue 03 Mar 2026 08:25:53 +0000 Manifest next update: Tue 10 Mar 2026 08:25:53 +0000 Files and hashes: 1: BoQptByg8Segp10v_LJsA6lfYHE.crl (hash: s9+Ul3xY4CV1Ib+UrejRAtMpsO0dLp9v07dTao2hAM0=) 2: BE1ACA36DD7911F088A95D31386F56BC.roa (hash: wFVA3jy/rKVpvXwLeuTYWtSknure16Z8S/vPIwlvU8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.crl rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCABB, serialNumber=068429B41CA0F127A0A75D2FFCB26C03A95F6071 Validity Not Before: Mar 3 08:25:53 2026 GMT Not After : Mar 10 08:25:53 2026 GMT Subject: CN=69a69b12-9806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:28:92:52:b5:20:1e:9a:20:3f:01:b4:e9:2c: 55:d0:da:48:27:ea:9b:2f:18:1a:26:2d:9a:0d:3b: 38:2c:54:1a:1a:28:ba:71:b4:e5:4c:b2:54:21:c8: 77:44:e8:97:8c:ab:0b:93:7b:c2:a6:10:64:ca:c7: 8b:cf:9b:6b:28:ae:a2:0f:d3:b0:57:a2:91:b6:ae: c0:08:ad:0b:17:6f:e4:80:20:8e:88:16:42:99:93: 72:fe:b2:3f:50:4f:b1:8b:b5:67:b6:04:62:3b:14: 00:e3:80:83:93:94:ef:8a:44:c0:7b:3b:a3:93:eb: 9e:47:14:12:cf:7a:e8:53:6d:27:0c:a6:70:5c:fd: 25:72:b3:d0:29:85:78:4e:98:83:11:dd:33:c0:89: b0:2a:39:6d:33:85:df:b4:15:85:45:95:0b:e0:c9: 8d:69:33:32:d1:a2:30:a6:a0:70:43:b6:2a:29:10: d3:35:c1:26:0f:04:ec:82:71:55:0a:8c:ed:0f:09: 90:66:f3:9f:07:f2:5c:ad:b9:fa:c7:1d:34:e7:34: 65:17:07:88:87:e3:c8:28:b0:ff:22:2f:0a:6f:24: 60:ff:b5:5a:49:a0:b8:98:ce:39:ee:8d:71:77:89: ef:d8:18:45:3c:0c:29:31:64:e1:ee:22:98:f6:56: 61:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:17:A6:EB:0D:B2:69:1C:64:5B:DD:C3:62:46:AB:39:50:4A:A8:A6 X509v3 Authority Key Identifier: keyid:06:84:29:B4:1C:A0:F1:27:A0:A7:5D:2F:FC:B2:6C:03:A9:5F:60:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BoQptByg8Segp10v_LJsA6lfYHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCABB/403B0D8EDD7811F0A586B128386F56BC/BoQptByg8Segp10v_LJsA6lfYHE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ed:4c:18:9e:a7:b3:c2:43:99:72:7b:29:9a:3f:06:06:b7: 9a:af:a5:f1:8e:d8:fc:c2:85:a9:38:63:53:10:61:65:1f:72: f4:93:71:b5:15:8a:e1:72:fd:84:a4:be:a0:90:7b:67:6f:de: e0:fa:3f:d3:64:29:ba:c2:fb:9b:d9:22:2e:27:96:79:ed:20: d4:81:ef:b7:fb:5f:1e:d4:51:9d:b2:04:aa:df:05:a3:8b:49: 8c:1f:51:9c:88:54:04:a2:a2:10:6e:e6:8e:e9:5c:e9:8f:e2: 31:b2:5c:ee:e7:bb:a7:23:8c:69:cf:0e:ca:a8:6b:3b:e3:e2: 05:ee:66:aa:4e:db:7c:ea:d2:89:08:2d:69:71:3a:92:74:8c: b7:8f:ea:a5:79:cb:3b:d4:fe:09:be:15:20:3f:d7:c9:c1:d0: f3:73:92:29:21:42:c2:c1:50:4b:4c:d5:86:bd:ba:cb:c9:49: 68:42:7d:5e:02:25:be:f8:54:c2:8d:80:a6:d7:33:1d:a9:7d: d3:44:23:27:9e:93:dd:43:69:8e:13:0d:97:27:8d:e1:ec:77: be:df:a1:f0:d9:88:4b:63:ca:58:c9:5d:4f:d1:f8:3b:88:c9: 0b:52:b2:5f:31:92:5d:98:dd:e4:be:5c:9f:ec:d3:5b:48:41: c3:e8:5c:4e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FCQjExMC8GA1UEBRMoMDY4NDI5QjQxQ0EwRjEyN0EwQTc1RDJGRkNCMjZDMDNB OTVGNjA3MTAeFw0yNjAzMDMwODI1NTNaFw0yNjAzMTAwODI1NTNaMBgxFjAUBgNV BAMTDTY5YTY5YjEyLTk4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXKJJStSAemiA/AbTpLFXQ2kgn6psvGBomLZoNOzgsVBoaKLpxtOVMslQhyHdE 6JeMqwuTe8KmEGTKx4vPm2sorqIP07BXopG2rsAIrQsXb+SAII6IFkKZk3L+sj9Q T7GLtWe2BGI7FADjgIOTlO+KRMB7O6OT655HFBLPeuhTbScMpnBc/SVys9AphXhO mIMR3TPAibAqOW0zhd+0FYVFlQvgyY1pMzLRojCmoHBDtiopENM1wSYPBOyCcVUK jO0PCZBm858H8lytufrHHTTnNGUXB4iH48gosP8iLwpvJGD/tVpJoLiYzjnujXF3 ie/YGEU8DCkxZOHuIpj2VmFHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUdBem6w2y aRxkW93DYkarOVBKqKYwHwYDVR0jBBgwFoAUBoQptByg8Segp10v/LJsA6lfYHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUJCLzQwM0IwRDhFREQ3 ODExRjBBNTg2QjEyODM4NkY1NkJDL0JvUXB0QnlnOFNlZ3AxMHZfTEpzQTZsZllI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQm9RcHRCeWc4U2VncDEwdl9MSnNBNmxmWUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUJCLzQwM0IwRDhFREQ3ODExRjBBNTg2QjEyODM4NkY1NkJDL0JvUXB0QnlnOFNl Z3AxMHZfTEpzQTZsZllIRS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA47UwYnqezwkOZcnspmj8GBrear6Xxjtj8woWpOGNTEGFlH3L0k3G1FYrhcv2E pL6gkHtnb97g+j/TZCm6wvub2SIuJ5Z57SDUge+3+18e1FGdsgSq3wWji0mMH1Gc iFQEoqIQbuaO6Vzpj+Ixslzu57unI4xpzw7KqGs74+IF7maqTtt86tKJCC1pcTqS dIy3j+qlecs71P4JvhUgP9fJwdDzc5IpIULCwVBLTNWGvbrLyUloQn1eAiW++FTC jYCm1zMdqX3TRCMnnpPdQ2mOEw2XJ43h7He+36Hw2YhLY8pYyV1P0fg7iMkLUrJf MZJdmN3kvlyf7NNbSEHD6FxO -----END CERTIFICATE-----Generated at Wed Mar 4 08:19:22 2026 by rpki-client