$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: J7GxzJU8WudMcWljG2eEADvHsEaMi8sDAYa/f1uU2+E= Subject key identifier: 2E:FD:9A:6E:30:9D:5F:9B:A6:42:38:B4:CB:CB:AD:FD:8C:10:4A:C2 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 104E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 1011 Signing time: Wed 04 Mar 2026 17:17:36 +0000 Manifest this update: Wed 04 Mar 2026 17:17:35 +0000 Manifest next update: Wed 11 Mar 2026 17:17:35 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: yQrnsF1w6gNMwntWKKcoyWEPU5jcz2d2IAVkxYuUIgg=) 2: B490CD0621C911EB991D562EC4F9AE02.roa (hash: rBg1NOWyi7cxpOlSxmQbpoGz0c8wacC//ksLpStwuPw=) 3: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: pi9NZFpg2W35Xj028DFUf+bBTXg7p56S2YuHU9tcYNM=) 4: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: r2MdZppnN10Iz6ZoKzDOm3Ycw6FnJTulCC5wJr2SXjs=) 5: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 80Ux/s/8WUCan4xcWTLCy1IlA/aIHlyIXja+HwSVmTA=) 6: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: iazb4pmo2Q4EahE0KZo433djiT5R4KAgrFuLP/vvuqE=) 7: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: vZn4a83LgoBkLAitNmLPLEgXCeUoidc71kLwF4uh0Ss=) 8: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: JScxZgQ7KHa2YwnDATSzd+qyDGdda+UIVKkiOWFhtkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 17:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4174 (0x104e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Mar 4 17:17:35 2026 GMT Not After : Mar 11 17:17:35 2026 GMT Subject: CN=69a8692f-f937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:2e:37:84:ca:54:ca:26:25:5b:b4:60:b0: d1:6e:56:e8:31:64:db:09:8c:d8:7a:77:9d:52:2f: 51:43:c1:bd:53:4b:d3:6a:bf:77:74:e6:af:5b:fd: 18:66:a1:96:ea:f3:41:6e:ad:5e:e4:4c:28:20:b6: 96:cb:8f:0d:4a:3f:67:6b:31:26:b8:76:8a:22:43: b9:b8:43:0b:f6:3d:9d:3b:ec:85:19:21:ff:b5:04: 56:db:7a:af:d8:31:a2:b0:9c:98:07:1d:04:20:37: e1:eb:0b:b9:60:17:1b:02:e7:5b:56:43:f2:c3:16: 93:13:89:78:31:43:31:ee:ba:91:6d:e0:95:c9:b8: d2:38:11:f2:06:71:bc:48:2b:de:ba:28:cb:51:bc: 3a:26:2b:6b:19:b5:4b:0f:44:ee:97:de:ea:90:aa: 98:3b:88:11:2f:a9:5b:1e:d0:9e:df:1e:a6:08:0c: 55:e9:fa:a7:70:34:e6:56:2b:e4:e3:0e:91:0a:52: b9:ee:0f:00:bf:a9:83:cd:76:f2:62:10:5d:17:35: 77:a1:dd:e6:80:75:c3:79:bb:f8:4d:65:a3:f0:00: 8d:a3:8a:0b:cc:df:e9:ff:2f:8b:66:3a:d6:4a:be: 8e:1f:1e:d8:69:14:87:9e:5c:6b:ba:25:4d:ce:4d: 0e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FD:9A:6E:30:9D:5F:9B:A6:42:38:B4:CB:CB:AD:FD:8C:10:4A:C2 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:90:ee:c8:3f:84:ad:57:0d:ed:48:9f:c9:1d:cf:d1:b3:e3: 49:e4:5c:df:a5:9a:0e:fc:a4:73:6c:95:66:38:95:28:32:35: ab:f4:43:c4:22:3a:fc:0c:e9:b9:bd:ce:a8:83:a7:c6:a9:d7: c5:61:21:35:10:13:51:8e:5d:72:89:c8:92:2f:49:a3:28:45: e6:4b:d1:52:36:ec:3e:ee:8e:1c:f0:19:9f:7f:9b:2d:e7:08: 7e:1e:d7:e2:c8:07:5a:0e:ae:ea:21:42:cf:49:ae:35:ab:e3: 99:17:80:5b:a8:e5:54:ff:22:d0:32:15:a0:7e:79:c2:d9:6b: 59:e5:04:ab:50:50:8e:1d:49:7e:52:6c:ee:28:98:92:96:ee: 9b:86:55:37:c9:cb:8a:79:04:29:6c:f8:c7:78:4e:18:3c:84: 79:b8:60:dd:a8:f0:1a:c0:fd:58:d8:95:39:73:69:ee:05:51: c2:5e:15:b5:d5:85:46:70:15:13:de:25:91:b4:34:66:4c:36: 2a:23:c5:6c:cc:8e:16:4b:21:2e:bc:69:b7:58:96:30:2a:61: 61:7c:ad:2e:d5:a3:9a:af:92:74:67:0a:f5:e8:14:99:aa:01: ab:ed:33:f9:1f:ee:9b:d7:2a:a0:71:12:76:41:46:8d:33:0e: 01:9f:8e:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjYwMzA0MTcxNzM1WhcNMjYwMzExMTcxNzM1WjAYMRYwFAYD VQQDEw02OWE4NjkyZi1mOTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZAuN4TKVMomJVu0YLDRblboMWTbCYzYenedUi9RQ8G9U0vTar93dOavW/0Y ZqGW6vNBbq1e5EwoILaWy48NSj9nazEmuHaKIkO5uEML9j2dO+yFGSH/tQRW23qv 2DGisJyYBx0EIDfh6wu5YBcbAudbVkPywxaTE4l4MUMx7rqRbeCVybjSOBHyBnG8 SCveuijLUbw6JitrGbVLD0Tul97qkKqYO4gRL6lbHtCe3x6mCAxV6fqncDTmVivk 4w6RClK57g8Av6mDzXbyYhBdFzV3od3mgHXDebv4TWWj8ACNo4oLzN/p/y+LZjrW Sr6OHx7YaRSHnlxruiVNzk0O8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC79mm4w nV+bpkI4tMvLrf2MEErCMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZJDuyD+ErVcN7UifyR3P0bPjSeRc36WaDvykc2yVZjiVKDI1q/RDxCI6/Azp ub3OqIOnxqnXxWEhNRATUY5dconIki9JoyhF5kvRUjbsPu6OHPAZn3+bLecIfh7X 4sgHWg6u6iFCz0muNavjmReAW6jlVP8i0DIVoH55wtlrWeUEq1BQjh1JflJs7iiY kpbum4ZVN8nLinkEKWz4x3hOGDyEebhg3ajwGsD9WNiVOXNp7gVRwl4VtdWFRnAV E94lkbQ0Zkw2KiPFbMyOFkshLrxpt1iWMCphYXytLtWjmq+SdGcK9egUmaoBq+0z +R/um9cqoHESdkFGjTMOAZ+OuA== -----END CERTIFICATE-----Generated at Fri Mar 6 03:58:47 2026 by rpki-client