$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: dhLAUclI8BrOV/h9heINlw8FKkZv3xPC0E1gOTFDBVk= Subject key identifier: B9:A9:53:4D:4B:65:D8:EC:D0:79:1F:D9:16:6C:CF:8B:2F:D2:46:5D Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 159A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 158E Signing time: Sat 28 Feb 2026 16:50:16 +0000 Manifest this update: Sat 28 Feb 2026 16:50:16 +0000 Manifest next update: Sat 07 Mar 2026 16:50:16 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: 4CwQoCT/hvXh/U7n50hCeehmF4rlfw+Y36cXHlm1VU8=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: Iuc0hvonCQ52vF8J3PK6U6v3ddTApNkT2+JlMCbgaDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 16:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5530 (0x159a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Feb 28 16:50:16 2026 GMT Not After : Mar 7 16:50:16 2026 GMT Subject: CN=69a31cc8-5aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4e:49:1a:fc:6f:86:a3:6c:80:6f:36:b0:13: 9c:3e:c4:ac:9a:9d:3b:18:8c:3c:29:de:7a:ea:9f: 56:08:67:8e:b7:33:67:0c:ac:26:98:ae:a2:fe:4e: 47:46:dd:66:46:c8:86:99:66:a8:d1:37:14:dc:58: 1f:4e:68:f1:d8:47:33:a7:06:75:57:45:82:5c:83: 2f:01:b4:0e:80:4b:3c:bd:02:ba:f8:d2:f1:e5:52: ff:0a:29:61:06:28:32:72:f7:6d:5b:23:8d:29:23: a3:35:dd:14:ad:99:c5:eb:d8:90:17:1d:a8:95:a3: 0b:ba:56:53:d8:b9:ac:72:e7:a6:7c:b3:28:ef:34: 82:44:6d:60:22:89:8a:df:d4:ae:55:ae:f7:96:c7: 37:39:d8:d0:05:bb:09:d4:de:ac:d8:be:8d:25:6d: 7f:15:ad:e6:02:fd:d4:54:42:cd:65:cc:82:ea:34: 0e:da:6f:dd:0f:7c:77:cf:da:7e:2f:b7:46:f6:58: 6f:5b:3e:fe:24:18:fe:cc:4c:75:4a:61:2e:52:d7: 35:38:a1:06:be:89:2d:50:77:41:6f:b6:ef:0a:19: 19:64:1d:3d:d2:2f:2e:71:3a:3b:e9:58:73:ed:7e: 48:76:03:90:08:9b:09:dc:70:b1:63:a9:13:0e:31: 67:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A9:53:4D:4B:65:D8:EC:D0:79:1F:D9:16:6C:CF:8B:2F:D2:46:5D X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:c4:50:98:8f:e6:37:51:cf:43:59:a1:d7:21:d4:6d:74:46: 51:2d:d3:f8:76:7f:c4:95:53:52:d4:db:a3:6c:b6:f0:9f:72: 63:ac:42:30:bb:77:3b:44:82:47:e7:14:f3:53:ea:ee:4c:c9: 53:8a:e0:37:8d:b0:f0:a4:f0:90:59:47:d6:7d:19:79:b6:59: 3b:04:05:ab:8b:28:1b:1b:ea:3b:3b:b8:0e:a2:b4:ee:c5:9b: 1b:fd:9b:4a:88:13:24:c9:ad:83:82:27:4f:e7:89:01:9d:84: 76:2f:69:ea:18:64:8a:f5:ed:60:1d:51:66:17:0a:93:97:34: 66:b8:ec:30:60:85:e5:eb:79:67:fe:74:63:85:df:6d:2a:81: b8:8c:9c:ef:29:bd:6f:26:de:55:c9:95:af:2d:e1:23:e8:68: 1e:6c:54:c6:d3:a2:87:38:02:1a:29:15:52:9d:7c:19:a9:3e: 89:61:25:77:28:3f:5e:96:d2:33:46:9a:e5:ff:05:4f:43:97: 96:45:7c:02:64:6d:f6:30:bd:4f:a8:c2:7a:42:98:7a:42:e4: 3e:55:fd:35:17:e8:31:45:b7:83:6c:db:11:ee:ba:8d:ad:54: 29:bd:18:c7:2a:80:2d:34:18:ea:63:c1:e1:c5:97:4b:fa:c5: a3:35:23:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjYwMjI4MTY1MDE2WhcNMjYwMzA3MTY1MDE2WjAYMRYwFAYD VQQDDA02OWEzMWNjOC01YWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlk5JGvxvhqNsgG82sBOcPsSsmp07GIw8Kd566p9WCGeOtzNnDKwmmK6i/k5H Rt1mRsiGmWao0TcU3FgfTmjx2EczpwZ1V0WCXIMvAbQOgEs8vQK6+NLx5VL/Cilh BigycvdtWyONKSOjNd0UrZnF69iQFx2olaMLulZT2LmscuemfLMo7zSCRG1gIomK 39SuVa73lsc3OdjQBbsJ1N6s2L6NJW1/Fa3mAv3UVELNZcyC6jQO2m/dD3x3z9p+ L7dG9lhvWz7+JBj+zEx1SmEuUtc1OKEGvoktUHdBb7bvChkZZB090i8ucTo76Vhz 7X5IdgOQCJsJ3HCxY6kTDjFn+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLmpU01L Zdjs0Hkf2RZsz4sv0kZdMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtsRQmI/mN1HPQ1mh1yHUbXRGUS3T+HZ/xJVTUtTbo2y28J9yY6xCMLt3O0SC R+cU81Pq7kzJU4rgN42w8KTwkFlH1n0ZebZZOwQFq4soGxvqOzu4DqK07sWbG/2b SogTJMmtg4InT+eJAZ2Edi9p6hhkivXtYB1RZhcKk5c0ZrjsMGCF5et5Z/50Y4Xf bSqBuIyc7ym9bybeVcmVry3hI+hoHmxUxtOihzgCGikVUp18Gak+iWEldyg/XpbS M0aa5f8FT0OXlkV8AmRt9jC9T6jCekKYekLkPlX9NRfoMUW3g2zbEe66ja1UKb0Y xyqALTQY6mPB4cWXS/rFozUjeg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:46:41 2026 by rpki-client