$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: ZA6K8bY7bMCqoWjeGCoSzCtOWM49tGCpZ9sXsxRcVSc= Subject key identifier: 25:76:76:C6:0F:E0:A6:52:B6:BF:9D:24:8C:CA:F6:13:C2:AF:AA:30 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 0890 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0867 Signing time: Sat 28 Feb 2026 21:09:56 +0000 Manifest this update: Sat 28 Feb 2026 21:09:55 +0000 Manifest next update: Sat 07 Mar 2026 21:09:55 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: P3QYvKuVin0bjId6JM2SJTlFPm96x1Dkx/Pn18k6MZo=) 2: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: BxPajmDdLGfIydsWc2EIPgDs9jrVdPhKlvGIPc4xwYE=) 3: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) 4: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: D2PIDDhjMLrJzP//kuZEMaof293KC1FejYs4Z1FlT9g=) 5: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 6: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: doeraFCMJ4YY06qP/CyZ7CStviCw2H65v541coUCoQs=) 7: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Feb 28 21:09:55 2026 GMT Not After : Mar 7 21:09:55 2026 GMT Subject: CN=69a359a4-1ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d9:27:fd:61:bd:63:5c:03:d4:39:39:a4:3a: 17:67:8d:5c:94:bb:16:c2:a8:b9:2e:97:9f:97:a2: 03:cc:7c:ef:82:f2:5f:3c:ed:03:1f:34:1d:e6:58: c9:d4:9a:6e:2c:ad:98:b8:4c:4f:0f:68:9b:f8:9f: a8:e9:d6:c2:3a:59:9d:f2:11:ba:32:c8:de:9c:db: 66:c1:be:48:1b:f2:99:5c:94:20:b2:e9:03:fe:7b: 95:2f:1b:7d:90:cc:c6:a5:29:56:35:91:67:71:c0: 4f:8c:48:de:2f:3e:0c:a0:7e:1f:35:75:29:ff:2d: 56:de:54:2f:3e:27:09:7b:3b:83:35:bd:d3:97:de: a6:cb:45:42:bc:c6:e3:7d:3d:50:99:05:cd:ce:d3: 66:89:6a:8e:23:01:ce:eb:7a:40:93:04:3c:e3:77: ba:12:23:2a:02:49:64:c4:46:de:1d:5d:7c:4d:0c: 9e:09:bd:76:38:85:8c:03:a2:fb:10:47:fc:20:29: 88:92:67:ac:1e:73:c1:53:a5:d9:57:f0:85:f1:db: 15:aa:43:bb:b5:3d:bd:d0:e2:2c:3c:b2:3a:de:9e: 90:a4:8a:c0:51:9c:69:c8:e7:92:c5:f1:cc:10:39: 0b:c6:10:36:a3:6a:27:ca:82:4c:d4:02:d7:59:1d: 12:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:76:76:C6:0F:E0:A6:52:B6:BF:9D:24:8C:CA:F6:13:C2:AF:AA:30 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:bb:d2:73:4c:0f:33:ce:41:33:cf:6f:be:e6:f1:72:47:02: cc:69:40:95:53:eb:42:68:cc:68:dc:08:41:a3:c7:3d:5a:80: 1b:08:ed:3b:61:75:3e:19:f7:b1:44:c3:f8:ec:67:7c:a0:ac: 18:9a:5f:43:33:96:b8:1e:93:f3:44:93:f0:01:e8:d9:7b:54: 64:d0:dd:13:63:b0:9d:3d:c4:c2:ef:79:cb:9f:42:b2:1b:41: 4d:a8:12:ba:0d:76:8f:6b:e2:f2:f6:00:76:d8:5f:14:7c:3f: 69:ab:51:da:1a:3a:68:31:9c:7f:bf:33:9b:11:38:2c:39:5e: 93:f5:1a:27:cd:bd:55:5e:87:e0:a2:06:5c:1c:e7:c7:21:15: 66:43:f3:42:77:20:de:88:ec:c1:b7:30:c6:93:28:5c:ab:0d: a0:80:94:25:48:13:dd:02:6d:6b:ff:fa:de:c3:61:c6:50:ce: 45:56:bc:a8:64:5d:c1:4a:8d:c1:95:f8:10:d1:ac:0c:45:61: 98:81:a4:17:5f:d7:e7:bd:1a:5c:80:0c:bc:e6:fe:33:5b:2a: 98:27:84:21:ae:46:e2:85:2d:ec:2e:52:d9:7e:35:d6:4a:4e: b2:f6:68:c0:0e:ae:b1:b9:68:fb:59:e2:d2:f0:b3:49:fb:b7: 04:e5:d3:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwMjI4MjEwOTU1WhcNMjYwMzA3MjEwOTU1WjAYMRYwFAYD VQQDDA02OWEzNTlhNC0xY2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dkn/WG9Y1wD1Dk5pDoXZ41clLsWwqi5Lpefl6IDzHzvgvJfPO0DHzQd5ljJ 1JpuLK2YuExPD2ib+J+o6dbCOlmd8hG6MsjenNtmwb5IG/KZXJQgsukD/nuVLxt9 kMzGpSlWNZFnccBPjEjeLz4MoH4fNXUp/y1W3lQvPicJezuDNb3Tl96my0VCvMbj fT1QmQXNztNmiWqOIwHO63pAkwQ843e6EiMqAklkxEbeHV18TQyeCb12OIWMA6L7 EEf8ICmIkmesHnPBU6XZV/CF8dsVqkO7tT290OIsPLI63p6QpIrAUZxpyOeSxfHM EDkLxhA2o2onyoJM1ALXWR0SbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCV2dsYP 4KZStr+dJIzK9hPCr6owMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX7vSc0wPM85BM89vvubxckcCzGlAlVPrQmjMaNwIQaPHPVqAGwjtO2F1Phn3 sUTD+OxnfKCsGJpfQzOWuB6T80ST8AHo2XtUZNDdE2OwnT3Ewu95y59CshtBTagS ug12j2vi8vYAdthfFHw/aatR2ho6aDGcf78zmxE4LDlek/UaJ829VV6H4KIGXBzn xyEVZkPzQncg3ojswbcwxpMoXKsNoICUJUgT3QJta//63sNhxlDORVa8qGRdwUqN wZX4ENGsDEVhmIGkF1/X570aXIAMvOb+M1sqmCeEIa5G4oUt7C5S2X411kpOsvZo wA6usblo+1ni0vCzSfu3BOXThA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:23 2026 by rpki-client