$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: C6a1phCrmY9h/Nbc3mf0u3sFszjFuoB5ig/Ccwloi9E= Subject key identifier: 14:E8:37:8D:5E:E2:C8:9C:72:FD:F8:03:2B:15:34:B3:10:53:C4:E1 Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: 86 Signing time: Tue 03 Mar 2026 07:12:38 +0000 Manifest this update: Tue 03 Mar 2026 07:12:38 +0000 Manifest next update: Tue 10 Mar 2026 07:12:38 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: bF4u/vCyP7EBf9x8cSUJUERchfQ8Hq2WuRo3BAULa6I=) 2: 1E008B864B7411F09B3DF33BC4F9AE02.roa (hash: /zMdVLhGNollmYFXdF4G2YH+XX/SiRIlk1GXQ7DqDSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Mar 3 07:12:38 2026 GMT Not After : Mar 10 07:12:38 2026 GMT Subject: CN=69a689e6-a52d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d5:4d:fc:41:f6:19:4e:97:ee:6c:47:8f:fd: cd:0b:72:6e:55:7f:07:bd:a9:c2:54:21:59:c6:f7: 94:04:a3:da:af:bd:3d:69:57:76:6d:ac:45:15:00: 5f:5a:84:ae:86:08:71:eb:0e:0a:a3:42:7f:31:69: 67:78:94:97:38:b8:92:43:48:fb:7b:53:83:d2:5b: b0:f3:f8:26:5c:ae:1e:1e:08:15:52:2c:5a:e9:f0: b3:64:3b:9c:39:45:c1:9f:ea:0c:68:ed:32:f7:88: ba:e3:8b:6a:11:bb:b0:bb:61:76:83:95:69:e1:c3: bf:6a:73:33:81:4c:f9:04:ac:63:89:a0:02:dc:ae: 3f:42:9e:9f:c5:de:eb:95:48:35:dd:54:47:c6:19: 13:ea:b6:64:29:d1:33:6b:91:99:8a:7d:e5:b4:bf: 21:02:24:43:74:1d:54:1a:75:34:45:c0:75:65:63: ad:da:21:eb:f3:52:eb:8a:68:dc:df:77:1d:11:22: 38:24:ce:79:6b:ad:d5:bb:d7:4f:57:04:c0:c8:53: 1d:99:19:43:49:8e:ed:84:01:70:35:52:8b:70:9b: 18:de:0f:08:51:e0:a4:b5:4f:96:73:db:a3:71:1b: cf:89:c4:36:d6:55:e3:9c:f5:4c:e2:bf:9c:a8:97: 8c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E8:37:8D:5E:E2:C8:9C:72:FD:F8:03:2B:15:34:B3:10:53:C4:E1 X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:55:6a:01:5e:ec:20:17:be:a8:a3:69:ca:31:1a:52:a3:05: c3:2d:9c:67:bc:e4:c7:41:06:ae:ae:5b:81:9a:a9:dc:53:e6: 61:dd:97:48:ad:0b:c7:ac:da:16:73:5f:b7:63:ab:ca:ba:cf: d5:1c:43:4f:f5:64:aa:bf:d5:43:3f:ce:54:45:9f:8e:00:b9: 95:49:56:8b:d8:70:cc:e2:cc:13:de:ec:ab:35:5d:70:79:ed: 9a:40:ad:75:ae:a6:bd:bd:eb:3b:d2:a5:64:7f:c7:4c:20:2c: b3:14:5b:bd:d6:ba:8b:e7:17:85:6b:d1:0d:78:6b:a4:dd:fe: 49:28:37:b9:38:d1:96:ba:00:01:69:c9:0a:96:07:fa:6f:80: 68:69:a1:5b:d1:b1:79:09:ae:d5:c9:87:7b:41:38:dd:52:1f: dc:97:d1:43:37:4b:c6:0d:56:6c:e6:97:2c:1f:f6:9d:ef:5a: 7e:d2:3b:07:14:66:ff:63:57:f8:e1:2c:2d:7c:d4:10:56:46: 82:75:c7:a3:cc:82:11:c7:14:52:df:19:59:d9:b7:44:30:f0: a6:1d:2e:c9:9d:aa:44:3f:82:f5:99:fa:f4:fa:46:fd:33:2a: 56:14:5d:11:b4:c4:39:fd:bf:b3:1a:e4:ff:60:22:10:cd:39: eb:e4:e8:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFODAxMTAvBgNVBAUTKDlBNTg3RTRFQ0Y2OEVDNzcyOUQ4REU0MzVGRkRBQURD RUE1QjQ5MzkwHhcNMjYwMzAzMDcxMjM4WhcNMjYwMzEwMDcxMjM4WjAYMRYwFAYD VQQDEw02OWE2ODllNi1hNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19VN/EH2GU6X7mxHj/3NC3JuVX8HvanCVCFZxveUBKPar709aVd2baxFFQBf WoSuhghx6w4Ko0J/MWlneJSXOLiSQ0j7e1OD0luw8/gmXK4eHggVUixa6fCzZDuc OUXBn+oMaO0y94i644tqEbuwu2F2g5Vp4cO/anMzgUz5BKxjiaAC3K4/Qp6fxd7r lUg13VRHxhkT6rZkKdEza5GZin3ltL8hAiRDdB1UGnU0RcB1ZWOt2iHr81Lrimjc 33cdESI4JM55a63Vu9dPVwTAyFMdmRlDSY7thAFwNVKLcJsY3g8IUeCktU+Wc9uj cRvPicQ21lXjnPVM4r+cqJeMdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBToN41e 4siccv34AysVNLMQU8ThMB8GA1UdIwQYMBaAFJpYfk7PaOx3KdjeQ1/9qtzqW0k5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0U4MC8zNTQzM0YyMjRC NjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdIY3AyTjVEWF8ycTNPcGJT VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0U4MC8zNTQzM0YyMjRCNjYxMUYwQjg4NTI0MzlDNEY5QUUwMi9tbGgtVHM5bzdI Y3AyTjVEWF8ycTNPcGJTVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANFVqAV7sIBe+qKNpyjEaUqMFwy2cZ7zkx0EGrq5bgZqp3FPmYd2XSK0Lx6za FnNft2OryrrP1RxDT/Vkqr/VQz/OVEWfjgC5lUlWi9hwzOLME97sqzVdcHntmkCt da6mvb3rO9KlZH/HTCAssxRbvda6i+cXhWvRDXhrpN3+SSg3uTjRlroAAWnJCpYH +m+AaGmhW9GxeQmu1cmHe0E43VIf3JfRQzdLxg1WbOaXLB/2ne9aftI7BxRm/2NX +OEsLXzUEFZGgnXHo8yCEccUUt8ZWdm3RDDwph0uyZ2qRD+C9Zn69PpG/TMqVhRd EbTEOf2/sxrk/2AiEM056+Toew== -----END CERTIFICATE-----Generated at Wed Mar 4 08:34:59 2026 by rpki-client