$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: HyuTf9m0ffxCrzsue5/4P7sn1mflgTs2CZs/7B9tZqU= Subject key identifier: 3C:13:57:77:75:FE:9A:C7:9A:C6:FC:A6:34:E3:22:D7:FB:08:9A:84 Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 089E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 0898 Signing time: Sat 28 Feb 2026 20:51:02 +0000 Manifest this update: Sat 28 Feb 2026 20:51:02 +0000 Manifest next update: Sat 07 Mar 2026 20:51:02 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: gVTefKZj8AIa22EbLtAVBjas4V80gV+MMwJubV5PiV0=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: fmTA3xXjU3MtioARHLhk0XmrYZWzaoGTX30tUFAbkPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2206 (0x89e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Feb 28 20:51:02 2026 GMT Not After : Mar 7 20:51:02 2026 GMT Subject: CN=69a35536-0fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:39:dc:09:35:97:e3:57:fa:27:05:d9:d5:38: 40:a4:4d:df:a2:51:ce:52:f6:cc:a4:42:27:b0:a1: da:28:c5:a7:4f:19:21:e2:f3:f6:f1:7a:a1:01:a7: 6f:c7:25:81:fc:e2:97:f3:d9:9b:e2:5b:46:6c:76: 12:c8:b0:b0:bb:3d:a3:c4:ea:1b:0d:97:d4:2d:6f: cb:92:d4:87:b9:63:59:dc:28:18:6d:c7:21:52:6f: 64:d7:d4:17:f2:93:35:75:7e:78:99:4d:06:70:a1: 9c:28:da:4f:2f:30:87:f4:60:f8:f4:80:d8:81:ea: b6:8e:f0:ad:43:f9:a9:f6:18:20:c8:09:a4:64:b8: 36:12:4b:2f:e8:a3:5f:41:4e:74:f5:df:d5:4f:c9: c3:8a:a6:f9:c3:31:ee:25:7a:93:0c:2b:10:57:c6: 50:6b:fd:4e:6d:6f:42:50:ec:4d:62:d9:7e:13:69: 2a:d1:a5:0c:48:94:0d:23:46:21:7d:47:8f:f4:09: ae:92:31:78:33:4c:0b:12:e6:8e:1f:9e:7f:2a:3b: 8d:f0:ad:48:85:34:a8:03:d2:1b:67:12:2d:5a:f4: 08:f6:dc:26:ae:e9:6b:00:50:5b:8e:3d:0f:84:20: ac:c3:9e:1b:b5:4c:5d:ec:4a:82:67:11:1a:e6:b9: 51:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:13:57:77:75:FE:9A:C7:9A:C6:FC:A6:34:E3:22:D7:FB:08:9A:84 X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a7:08:0f:d2:38:b8:3a:87:4b:6f:27:eb:95:50:b7:91:3b: f8:fd:6b:d2:13:73:c8:fb:05:80:8d:81:98:9f:8b:29:fd:7d: c3:4a:cc:16:7f:4b:d1:64:90:73:30:5b:30:ec:8f:14:59:98: db:71:f4:25:ad:32:d4:97:18:85:38:b2:2a:70:2d:c9:e2:cb: 68:3e:64:1b:54:19:e0:2a:5c:a8:bc:9b:ad:2c:cd:eb:d3:1d: a4:df:a3:ef:77:5e:38:01:34:d8:6e:6d:15:e5:2b:de:d0:d8: 15:1e:fc:5d:1b:28:8b:3f:fa:a4:9f:98:1f:65:97:ec:19:45: 3c:6c:a6:ff:29:ea:fd:4e:2d:d1:e9:4e:e8:0e:05:ab:bf:f5: c8:87:37:4d:84:e6:ad:f0:b5:cd:d2:4f:76:af:fc:76:41:d5: c3:79:db:ad:02:43:a2:2c:98:6a:12:08:5d:18:e8:73:3a:8e: f7:b3:f7:41:43:6e:57:50:ef:f5:95:e3:fa:e5:68:c5:4a:fc: 49:f3:a4:f0:e6:b7:92:f3:e7:f0:b7:d4:05:9b:da:f5:dc:a4: f6:7b:d2:5f:c0:c0:09:7c:c2:84:dd:41:75:22:fb:85:7c:5d: 55:b3:68:dd:6f:b3:bb:7c:fd:d2:16:09:79:1c:1c:21:f8:f6: eb:b8:ab:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjYwMjI4MjA1MTAyWhcNMjYwMzA3MjA1MTAyWjAYMRYwFAYD VQQDDA02OWEzNTUzNi0wZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAijncCTWX41f6JwXZ1ThApE3folHOUvbMpEInsKHaKMWnTxkh4vP28XqhAadv xyWB/OKX89mb4ltGbHYSyLCwuz2jxOobDZfULW/LktSHuWNZ3CgYbcchUm9k19QX 8pM1dX54mU0GcKGcKNpPLzCH9GD49IDYgeq2jvCtQ/mp9hggyAmkZLg2Eksv6KNf QU509d/VT8nDiqb5wzHuJXqTDCsQV8ZQa/1ObW9CUOxNYtl+E2kq0aUMSJQNI0Yh fUeP9AmukjF4M0wLEuaOH55/KjuN8K1IhTSoA9IbZxItWvQI9twmrulrAFBbjj0P hCCsw54btUxd7EqCZxEa5rlRCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDwTV3d1 /prHmsb8pjTjItf7CJqEMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFKcID9I4uDqHS28n65VQt5E7+P1r0hNzyPsFgI2BmJ+LKf19w0rMFn9L0WSQ czBbMOyPFFmY23H0Ja0y1JcYhTiyKnAtyeLLaD5kG1QZ4CpcqLybrSzN69MdpN+j 73deOAE02G5tFeUr3tDYFR78XRsoiz/6pJ+YH2WX7BlFPGym/ynq/U4t0elO6A4F q7/1yIc3TYTmrfC1zdJPdq/8dkHVw3nbrQJDoiyYahIIXRjoczqO97P3QUNuV1Dv 9ZXj+uVoxUr8SfOk8Oa3kvPn8LfUBZva9dyk9nvSX8DACXzChN1BdSL7hXxdVbNo 3W+zu3z90hYJeRwcIfj267irdQ== -----END CERTIFICATE-----Generated at Mon Mar 2 02:03:49 2026 by rpki-client