$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: 9n0eUtQvzcV4fvwHsm1xZOlDBZxbqiCWVEnG883psTE= Subject key identifier: B6:A4:02:6A:75:67:24:7A:B5:87:46:87:64:53:CA:70:28:D0:06:45 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 086D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 085C Signing time: Sat 28 Feb 2026 21:05:06 +0000 Manifest this update: Sat 28 Feb 2026 21:05:05 +0000 Manifest next update: Sat 07 Mar 2026 21:05:05 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: o9U6sRt3G7iIhApi21WVyOuSlFRhiINwUaJYZ809Taw=) 2: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 3: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Feb 28 21:05:05 2026 GMT Not After : Mar 7 21:05:05 2026 GMT Subject: CN=69a35881-13e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:c9:e4:df:d0:26:73:f0:e9:76:7b:f3:3a: 48:d9:51:a0:d7:84:02:55:3b:cc:75:c3:9a:c4:ee: 5f:a2:a8:4a:b5:04:da:81:a1:1e:fe:3e:bd:a5:9f: 91:01:7b:a1:3d:94:43:31:89:ae:25:32:9d:7b:4f: 8a:9b:7b:9a:d8:bb:1f:1d:35:aa:31:0c:4b:00:22: ab:68:cc:ce:80:2c:bd:bc:71:13:66:bf:82:c9:42: cf:f4:b0:bd:18:ed:1a:71:41:c8:9c:be:ed:fb:09: 3a:76:83:5c:18:9a:e7:d8:a6:8e:48:05:9a:0b:a9: c2:40:a3:61:36:5a:37:72:24:56:25:f7:f0:f7:db: 24:28:b7:de:4d:67:78:5e:ce:c7:92:39:8e:d3:d2: c2:78:45:ab:de:ac:18:92:97:9b:a4:51:42:5d:cd: 3e:85:cc:97:9f:62:d7:32:be:d6:30:4e:b2:4c:b8: a1:70:fe:60:5d:e8:c0:19:d8:6d:8b:3d:04:40:69: 4e:c9:ee:05:e7:78:36:43:70:f4:99:8a:97:cf:b0: 06:b3:b6:db:c6:ff:3d:c8:02:b5:6b:0a:28:90:25: f2:e0:d9:c4:e5:c5:bc:54:85:0d:6c:50:55:30:8b: c9:b3:70:75:5d:a9:cf:ba:a7:9d:42:39:02:2c:59: 3e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A4:02:6A:75:67:24:7A:B5:87:46:87:64:53:CA:70:28:D0:06:45 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:b2:98:e6:33:b7:c4:4c:9a:e5:48:37:e0:37:4e:47:9d:71: d5:85:6a:45:3b:5e:97:17:aa:3c:6b:9d:55:6d:93:84:3f:98: 85:88:e7:9c:2b:4a:25:62:4c:70:26:73:62:2f:9b:95:00:2a: fe:98:b8:1f:82:00:a9:cd:35:84:fc:fa:0a:10:ad:05:e2:a2: 27:23:b8:6b:4c:7b:4e:d5:59:93:35:68:e6:e9:94:b4:cd:aa: e3:e3:ba:99:d4:10:fd:45:59:95:57:78:03:5c:c0:bb:d7:2a: dd:a4:42:de:8a:79:ed:af:2b:50:d3:7e:d9:63:e3:03:95:0a: a9:55:07:1d:45:cc:9e:21:98:20:dd:8d:88:69:bb:9d:11:f5: 04:8a:c0:b9:5a:e9:3d:f9:01:65:35:29:b8:46:0b:94:36:62: 92:96:d2:1e:7d:87:bf:a3:69:2e:70:d5:6e:64:73:02:af:58: 4c:c4:fa:23:24:c8:54:20:9f:e7:e8:33:e3:d3:24:9b:c7:79: 2a:46:4c:e8:c5:01:d1:2c:1d:0c:be:2d:42:ad:f7:67:96:fb: c0:a1:11:dc:9c:55:0a:d5:23:87:1b:d3:9c:bd:2b:7a:0f:f5: 3c:36:09:41:d7:59:cc:1e:59:68:4c:8f:29:04:12:0c:a1:e8: de:97:19:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwMjI4MjEwNTA1WhcNMjYwMzA3MjEwNTA1WjAYMRYwFAYD VQQDDA02OWEzNTg4MS0xM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tnJ5N/QJnPw6XZ78zpI2VGg14QCVTvMdcOaxO5foqhKtQTagaEe/j69pZ+R AXuhPZRDMYmuJTKde0+Km3ua2LsfHTWqMQxLACKraMzOgCy9vHETZr+CyULP9LC9 GO0acUHInL7t+wk6doNcGJrn2KaOSAWaC6nCQKNhNlo3ciRWJffw99skKLfeTWd4 Xs7HkjmO09LCeEWr3qwYkpebpFFCXc0+hcyXn2LXMr7WME6yTLihcP5gXejAGdht iz0EQGlOye4F53g2Q3D0mYqXz7AGs7bbxv89yAK1awookCXy4NnE5cW8VIUNbFBV MIvJs3B1XanPuqedQjkCLFk+eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLakAmp1 ZyR6tYdGh2RTynAo0AZFMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr7KY5jO3xEya5Ug34DdOR51x1YVqRTtelxeqPGudVW2ThD+YhYjnnCtKJWJM cCZzYi+blQAq/pi4H4IAqc01hPz6ChCtBeKiJyO4a0x7TtVZkzVo5umUtM2q4+O6 mdQQ/UVZlVd4A1zAu9cq3aRC3op57a8rUNN+2WPjA5UKqVUHHUXMniGYIN2NiGm7 nRH1BIrAuVrpPfkBZTUpuEYLlDZikpbSHn2Hv6NpLnDVbmRzAq9YTMT6IyTIVCCf 5+gz49Mkm8d5KkZM6MUB0SwdDL4tQq33Z5b7wKER3JxVCtUjhxvTnL0reg/1PDYJ QddZzB5ZaEyPKQQSDKHo3pcZmA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:15:08 2026 by rpki-client