$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft File: Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft (raw, json) Hash identifier: oYlWB/Y7V1vsuA9mmA+ymLR7O0+NXNV39XeJvQVCTZQ= Subject key identifier: 56:FE:46:36:9D:34:3C:47:CD:96:CB:CC:CD:E9:DC:7E:17:EB:2B:72 Authority key identifier: 42:6F:4A:D5:85:D7:A5:4D:D3:62:E3:F7:B3:C8:F3:AF:6A:A6:3C:2E Certificate issuer: /CN=A91F9BB3/serialNumber=426F4AD585D7A54DD362E3F7B3C8F3AF6AA63C2E Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft Manifest number: 29 Signing time: Tue 03 Mar 2026 08:27:27 +0000 Manifest this update: Tue 03 Mar 2026 08:27:27 +0000 Manifest next update: Tue 10 Mar 2026 08:27:27 +0000 Files and hashes: 1: Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl (hash: sSzYrgP38UwTPhcKKf3xUJUTX30xqAi0fgkb0P8gLMU=) 2: DB9D3A1AE24411F0BBC3E4F5716F56BC.roa (hash: FGeU1tZaj6B6d9kcXemk68XFxPuUp5ULKxFkHVuu17c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9BB3, serialNumber=426F4AD585D7A54DD362E3F7B3C8F3AF6AA63C2E Validity Not Before: Mar 3 08:27:27 2026 GMT Not After : Mar 10 08:27:27 2026 GMT Subject: CN=69a69b6f-b5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:b2:f8:4f:09:2b:b2:c4:d8:73:fc:d7:3d: 00:94:5c:99:89:1e:2e:21:2f:33:7b:90:36:2c:9b: 9c:dd:a8:a2:8c:16:45:02:80:e3:22:59:a9:6c:a8: f8:d5:0c:f8:b2:df:81:15:0b:55:d7:93:14:1f:41: ee:98:60:80:25:f1:de:98:f2:32:3b:8f:b7:ff:1a: fa:e4:6d:74:ee:82:5d:8f:97:fc:1d:9e:b7:1d:5d: ae:4c:24:1a:98:08:09:b6:f6:5f:59:24:b1:1d:eb: 21:8d:28:23:93:e8:86:d7:16:75:e1:a6:3d:1c:92: e9:d2:9a:f3:fb:0c:81:c5:c2:5f:16:49:f6:08:5c: 4a:dd:3b:7a:c5:40:ca:bd:d9:78:73:04:85:16:7e: 46:1d:3c:2e:1b:0f:14:4a:8e:34:8d:fd:be:19:bb: b4:0f:fc:9e:6d:73:e3:9b:ef:53:2b:e0:ef:77:67: 5b:06:d9:e8:f2:00:b4:d3:cd:2b:b2:83:56:6e:b0: 1e:33:c3:3f:eb:c5:37:fc:12:bd:4c:23:a5:93:74: 66:40:ec:a7:db:a4:d3:7f:5d:94:2f:6f:f4:a8:a1: c1:26:6f:48:2c:6b:68:37:3e:0c:57:9e:51:93:b3: d5:f1:b7:9c:44:22:3a:02:12:ef:b2:25:d4:83:f8: 5a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:FE:46:36:9D:34:3C:47:CD:96:CB:CC:CD:E9:DC:7E:17:EB:2B:72 X509v3 Authority Key Identifier: keyid:42:6F:4A:D5:85:D7:A5:4D:D3:62:E3:F7:B3:C8:F3:AF:6A:A6:3C:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9BB3/8198E014E24411F0B953D896716F56BC/Qm9K1YXXpU3TYuP3s8jzr2qmPC4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:97:f2:76:ee:b4:ae:6a:48:5a:e1:62:9c:08:2c:86:f1:1f: e5:00:a9:19:c0:ff:be:43:88:75:bd:93:ac:47:02:9a:17:62: b6:ed:15:f9:94:69:be:76:b7:4c:97:d0:9d:16:00:0a:54:e7: 23:5e:2e:1c:6e:d9:b1:79:fe:11:81:20:64:c8:14:9d:ca:0e: f9:b8:18:2c:2b:a0:53:d2:ab:c8:12:d7:9a:82:e4:30:ba:33: 29:47:57:9c:3a:bc:15:14:9f:d8:1f:b0:cc:4e:ba:a3:4b:f4: 7f:da:6f:03:b5:77:a2:f0:4b:d3:cd:f0:ca:c2:1b:fc:8f:ec: 2c:21:ca:71:15:f1:69:d6:ee:55:3a:54:d6:a9:94:99:53:1f: 24:eb:07:ee:8f:40:9e:31:8f:10:bf:21:03:c2:9a:18:ad:c1: ad:50:a2:78:bf:7d:98:98:cb:f7:e5:9b:bc:25:77:e5:d0:6b: 67:9a:1d:d0:9e:a9:e2:a0:33:da:5b:82:b1:5e:87:25:e0:c9: 9a:0a:d0:d7:44:90:bb:da:b0:24:e1:de:2d:01:bb:fb:6a:58: a2:1f:f4:f2:e4:a1:a0:2f:8d:c4:5d:d5:80:2b:65:e7:92:34: ff:3e:b5:1d:9b:18:62:dc:62:fb:bc:07:8a:63:4f:d2:f6:a8: 1b:f1:61:74 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUJCMzExMC8GA1UEBRMoNDI2RjRBRDU4NUQ3QTU0REQzNjJFM0Y3QjNDOEYzQUY2 QUE2M0MyRTAeFw0yNjAzMDMwODI3MjdaFw0yNjAzMTAwODI3MjdaMBgxFjAUBgNV BAMTDTY5YTY5YjZmLWI1ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPCLL4TwkrssTYc/zXPQCUXJmJHi4hLzN7kDYsm5zdqKKMFkUCgOMiWalsqPjV DPiy34EVC1XXkxQfQe6YYIAl8d6Y8jI7j7f/GvrkbXTugl2Pl/wdnrcdXa5MJBqY CAm29l9ZJLEd6yGNKCOT6IbXFnXhpj0ckunSmvP7DIHFwl8WSfYIXErdO3rFQMq9 2XhzBIUWfkYdPC4bDxRKjjSN/b4Zu7QP/J5tc+Ob71Mr4O93Z1sG2ejyALTTzSuy g1ZusB4zwz/rxTf8Er1MI6WTdGZA7KfbpNN/XZQvb/SoocEmb0gsa2g3PgxXnlGT s9Xxt5xEIjoCEu+yJdSD+Fo5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUVv5GNp00 PEfNlsvMzencfhfrK3IwHwYDVR0jBBgwFoAUQm9K1YXXpU3TYuP3s8jzr2qmPC4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QkIzLzgxOThFMDE0RTI0 NDExRjBCOTUzRDg5NjcxNkY1NkJDL1FtOUsxWVhYcFUzVFl1UDNzOGp6cjJxbVBD NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUW05SzFZWFhwVTNUWXVQM3M4anpyMnFtUEM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QkIzLzgxOThFMDE0RTI0NDExRjBCOTUzRDg5NjcxNkY1NkJDL1FtOUsxWVhYcFUz VFl1UDNzOGp6cjJxbVBDNC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB0l/J27rSuakha4WKcCCyG8R/lAKkZwP++Q4h1vZOsRwKaF2K27RX5lGm+drdM l9CdFgAKVOcjXi4cbtmxef4RgSBkyBSdyg75uBgsK6BT0qvIEteaguQwujMpR1ec OrwVFJ/YH7DMTrqjS/R/2m8DtXei8EvTzfDKwhv8j+wsIcpxFfFp1u5VOlTWqZSZ Ux8k6wfuj0CeMY8QvyEDwpoYrcGtUKJ4v32YmMv35Zu8JXfl0Gtnmh3QnqnioDPa W4KxXocl4MmaCtDXRJC72rAk4d4tAbv7aliiH/Ty5KGgL43EXdWAK2XnkjT/PrUd mxhi3GL7vAeKY0/S9qgb8WF0 -----END CERTIFICATE-----Generated at Wed Mar 4 14:42:34 2026 by rpki-client