$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: ZYvjkEZoauBbSrVpGhpWHyBqgzJiwffQUAReFc927xE= Subject key identifier: 5F:4C:BB:F3:54:8F:3B:AE:49:3B:68:C9:58:6B:50:B7:3D:D8:C1:69 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0DCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0DB2 Signing time: Fri 06 Mar 2026 17:41:54 +0000 Manifest this update: Fri 06 Mar 2026 17:41:53 +0000 Manifest next update: Fri 13 Mar 2026 17:41:53 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: if8sTjAS4u9lHQ11g5TxRkkGZmtwtyX/UEPsG0RaT3I=) 2: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: n+1VIRJou+nBlWU6Es4cxB80UK2IiCMsqRaa75g/YvY=) 3: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: FAOH2k3QSSS7t1HJ3yvrPUgVPiND+/x5TUDnE1klS5s=) 4: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: 2tWM8vEG9F+dRzyZM43QfG2NHqOSxdnWZ0mFUqy61lM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3531 (0xdcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Mar 6 17:41:53 2026 GMT Not After : Mar 13 17:41:53 2026 GMT Subject: CN=69ab11e2-f529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:41:fb:f3:17:e3:9b:1e:26:18:42:28:dd:a3: c3:68:6a:62:d3:f0:19:9d:7a:51:97:81:26:09:3f: bc:01:9e:f7:ca:66:9e:b0:60:df:c7:9c:7d:3b:85: 79:af:56:f8:3a:a7:85:11:27:07:3c:7d:ce:95:12: f5:b0:3c:20:58:26:b0:af:08:83:7d:dd:b3:4d:e3: 18:71:ac:c8:1c:bd:53:b8:22:67:e5:86:a1:bf:d2: 6d:66:25:15:2a:c6:94:b5:00:f0:11:28:ba:e2:91: 61:df:d6:0a:23:81:17:de:c7:fc:d4:ec:5c:71:d1: ae:05:6a:84:fe:67:e5:68:7e:70:37:0c:af:b0:1e: 32:d6:55:7a:58:9b:5a:3d:b1:37:7e:d2:99:c4:f6: 77:24:f1:f5:39:6a:b2:57:d0:af:74:c9:d1:f5:c3: e4:13:3a:f6:6f:fa:95:eb:87:7a:55:28:18:c1:57: 40:bd:00:05:97:be:44:90:05:61:5b:53:5c:2b:25: bf:dd:e2:90:d0:5a:5b:9b:18:9b:8f:bb:a2:51:c4: 1f:87:e2:6e:a0:df:cb:bf:fe:5e:bc:24:2b:b2:bb: 54:dc:83:56:6a:3a:e7:e2:28:a2:91:83:91:cb:04: 64:f7:6a:f7:5f:40:72:2b:58:5f:80:75:5e:5e:7a: 9a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4C:BB:F3:54:8F:3B:AE:49:3B:68:C9:58:6B:50:B7:3D:D8:C1:69 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:26:f9:4d:28:67:76:ee:b5:84:2a:2e:e6:27:d2:45:38:1c: f4:5c:f7:9e:b9:6c:c6:ee:e0:b1:65:85:c2:6a:62:31:16:b5: a4:23:3f:62:fc:8a:75:df:8e:11:2c:55:ff:70:3a:f6:22:98: f8:57:e0:6c:3a:88:4c:e6:08:11:9c:56:f5:89:e1:08:74:1b: f7:57:45:7a:27:c5:72:57:65:49:cf:f9:d1:4c:a0:21:c8:c4: a5:ff:6c:6b:50:55:a4:2c:19:83:de:fd:91:9a:c3:2d:c4:26: 94:83:9c:e7:55:82:b3:5e:47:57:be:3b:df:d1:86:cf:cc:d6: 79:4a:92:dd:00:3d:7f:b5:10:d2:79:3a:82:44:84:d8:69:54: bd:7f:db:e3:07:fd:30:e2:ca:ed:29:20:5f:90:87:17:fc:33: 5f:2f:b1:fd:47:dc:85:53:35:df:fd:84:28:43:4d:45:08:b2: de:2d:64:cb:b9:0a:86:d4:a6:82:40:f7:22:c6:25:97:1d:df: b1:47:f2:0b:18:1b:27:6e:3b:33:4b:e3:8d:3b:18:bb:8a:2f: 09:f4:29:c1:92:5d:52:bf:69:35:ce:7d:cf:7b:4d:5f:2f:fd: 85:bd:d6:92:2f:7b:17:c3:e6:a2:91:fa:b1:16:d9:c0:49:2e: ee:fd:34:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjYwMzA2MTc0MTUzWhcNMjYwMzEzMTc0MTUzWjAYMRYwFAYD VQQDEw02OWFiMTFlMi1mNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkUH78xfjmx4mGEIo3aPDaGpi0/AZnXpRl4EmCT+8AZ73ymaesGDfx5x9O4V5 r1b4OqeFEScHPH3OlRL1sDwgWCawrwiDfd2zTeMYcazIHL1TuCJn5Yahv9JtZiUV KsaUtQDwESi64pFh39YKI4EX3sf81OxccdGuBWqE/mflaH5wNwyvsB4y1lV6WJta PbE3ftKZxPZ3JPH1OWqyV9CvdMnR9cPkEzr2b/qV64d6VSgYwVdAvQAFl75EkAVh W1NcKyW/3eKQ0Fpbmxibj7uiUcQfh+JuoN/Lv/5evCQrsrtU3INWajrn4iiikYOR ywRk92r3X0ByK1hfgHVeXnqadQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF9Mu/NU jzuuSTtoyVhrULc92MFpMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAISb5TShndu61hCou5ifSRTgc9Fz3nrlsxu7gsWWFwmpiMRa1pCM/YvyKdd+O ESxV/3A69iKY+FfgbDqITOYIEZxW9YnhCHQb91dFeifFcldlSc/50UygIcjEpf9s a1BVpCwZg979kZrDLcQmlIOc51WCs15HV74739GGz8zWeUqS3QA9f7UQ0nk6gkSE 2GlUvX/b4wf9MOLK7SkgX5CHF/wzXy+x/UfchVM13/2EKENNRQiy3i1ky7kKhtSm gkD3IsYllx3fsUfyCxgbJ247M0vjjTsYu4ovCfQpwZJdUr9pNc59z3tNXy/9hb3W ki97F8PmopH6sRbZwEku7v00+Q== -----END CERTIFICATE-----Generated at Sat Mar 7 20:01:57 2026 by rpki-client