$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: mnB9AH00mjBuZHWKwKTza0IQaVCHQlGNzxbOyoIvbzM= Subject key identifier: 2E:32:79:21:24:5B:7E:B8:7D:FF:69:7A:87:B9:36:65:8B:EB:47:28 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 0203 Signing time: Tue 03 Mar 2026 02:47:50 +0000 Manifest this update: Tue 03 Mar 2026 02:47:50 +0000 Manifest next update: Tue 10 Mar 2026 02:47:50 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: mtQqguP0/JR8LjR4nluNq2iTrMUEReHEuEli0rRH++Y=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: BQffJWUhC3MFwSjvVuhP9nq/ZEQ/mBQ35OQP2zYEaDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 02:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Mar 3 02:47:50 2026 GMT Not After : Mar 10 02:47:50 2026 GMT Subject: CN=69a64bd6-afe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:50:16:34:ca:b9:ff:c6:e9:11:8d:11:7a:8c: c7:a9:7f:d5:76:f1:99:27:98:d3:23:a2:ce:d0:27: 61:59:49:61:b0:f1:89:d8:f3:9c:f6:53:a0:65:08: ce:5a:d7:21:06:b2:d4:ae:bf:19:a0:46:77:ec:43: 3c:23:92:3a:1d:8d:03:85:7b:dd:da:3b:4e:6f:1a: b9:92:f7:02:b7:2c:18:b4:9c:27:9d:25:aa:6e:07: b2:a1:25:47:f7:6f:43:12:d9:c6:f3:99:49:10:6b: 9a:fc:9f:aa:31:02:68:9a:1f:0c:9a:b0:48:0e:46: ee:4f:8c:4f:be:ef:90:90:7a:eb:9e:d4:10:fb:b0: 7d:ed:d1:e7:fe:b6:84:47:7f:81:f8:47:50:46:89: 75:35:c7:d7:b0:27:22:31:b6:5b:53:da:17:71:1e: b1:ae:f6:4c:97:d3:a8:ac:40:b8:86:14:67:52:a2: 92:14:76:a3:53:0a:46:e9:7e:4d:48:35:54:21:23: 3f:b5:b1:d6:38:e2:ef:f5:21:2b:59:97:39:66:9c: 11:d2:ea:5b:bd:71:b8:d4:80:7c:f1:8c:e0:79:e3: 78:2c:3c:c7:57:fb:22:7a:de:39:f5:f1:92:94:dc: 5b:7f:d0:a5:a3:e2:d5:32:c1:ba:2f:71:15:7e:48: 34:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:32:79:21:24:5B:7E:B8:7D:FF:69:7A:87:B9:36:65:8B:EB:47:28 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:fb:d7:70:c1:78:c7:29:24:8e:1c:24:76:19:53:96:f1:ec: 56:d3:91:9e:5f:15:23:65:68:9f:02:1c:22:81:28:5c:bb:9f: 34:4b:5b:f0:4c:f5:a6:87:56:aa:3b:36:05:05:92:ce:ce:86: 76:e2:2f:cf:95:10:c1:2f:5b:08:eb:29:e6:2e:3e:ea:2e:35: 7c:dc:30:60:d6:c9:62:49:45:b3:09:12:1e:2f:74:9a:99:7a: 93:66:6e:b4:36:19:24:5f:f1:56:b1:96:8d:68:0a:4e:3c:75: b2:0f:30:ac:55:3f:7d:51:a4:1b:6b:2d:7c:9b:6c:2f:8e:14: 7e:eb:16:37:82:12:0b:80:9e:0f:01:83:2e:d4:8b:9c:44:92: 82:b0:e9:ba:4e:ee:bb:93:c0:97:69:27:20:de:f4:02:97:2e: d5:4a:cd:51:e7:d0:85:01:a9:dc:38:7c:77:99:d9:68:bc:5e: 98:06:ee:a7:cc:2c:ba:31:65:64:7a:f5:65:5a:bc:ae:6b:6d: 12:b9:c0:ae:3f:22:49:fd:c7:b3:8d:c9:ae:19:65:60:7a:bd: 86:7d:62:66:d2:e7:05:9a:02:44:4a:fd:6d:f1:27:53:53:51: b7:02:9f:17:d5:04:22:30:e1:53:e4:2a:1f:42:e0:b2:ac:e7: 4a:9a:91:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjYwMzAzMDI0NzUwWhcNMjYwMzEwMDI0NzUwWjAYMRYwFAYD VQQDEw02OWE2NGJkNi1hZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjlAWNMq5/8bpEY0ReozHqX/VdvGZJ5jTI6LO0CdhWUlhsPGJ2POc9lOgZQjO WtchBrLUrr8ZoEZ37EM8I5I6HY0DhXvd2jtObxq5kvcCtywYtJwnnSWqbgeyoSVH 929DEtnG85lJEGua/J+qMQJomh8MmrBIDkbuT4xPvu+QkHrrntQQ+7B97dHn/raE R3+B+EdQRol1NcfXsCciMbZbU9oXcR6xrvZMl9OorEC4hhRnUqKSFHajUwpG6X5N SDVUISM/tbHWOOLv9SErWZc5ZpwR0upbvXG41IB88YzgeeN4LDzHV/siet459fGS lNxbf9Clo+LVMsG6L3EVfkg0QwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC4yeSEk W364ff9peoe5NmWL60coMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhfvXcMF4xykkjhwkdhlTlvHsVtORnl8VI2VonwIcIoEoXLufNEtb8Ez1podW qjs2BQWSzs6GduIvz5UQwS9bCOsp5i4+6i41fNwwYNbJYklFswkSHi90mpl6k2Zu tDYZJF/xVrGWjWgKTjx1sg8wrFU/fVGkG2stfJtsL44UfusWN4ISC4CeDwGDLtSL nESSgrDpuk7uu5PAl2knIN70Apcu1UrNUefQhQGp3Dh8d5nZaLxemAbup8wsujFl ZHr1ZVq8rmttErnArj8iSf3Hs43JrhllYHq9hn1iZtLnBZoCREr9bfEnU1NRtwKf F9UEIjDhU+QqH0LgsqznSpqRxg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:38:26 2026 by rpki-client