$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: IwvL0DMmScWikkWkQAk8vom5LofP9B8LMeTOI4CkcbE= Subject key identifier: 89:03:4D:B1:F9:33:B2:52:E4:E7:F5:AC:41:22:0F:A9:08:B8:EC:8F Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0644 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0639 Signing time: Sat 28 Feb 2026 23:16:50 +0000 Manifest this update: Sat 28 Feb 2026 23:16:49 +0000 Manifest next update: Sat 07 Mar 2026 23:16:49 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: rrnaR646M2Bw0T7fvu6kPvLmG664RxSX0lCuOTzBpIg=) 2: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) 3: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 4: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1604 (0x644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Feb 28 23:16:49 2026 GMT Not After : Mar 7 23:16:49 2026 GMT Subject: CN=69a37762-c943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:83:e5:cb:96:af:dd:ed:a3:ee:03:dc:c1: 2b:9b:b1:3d:9f:02:5d:10:4d:f6:ee:c4:1a:ba:99: 27:30:3e:27:6e:53:cf:5f:68:99:f8:34:95:04:c2: 4c:62:b1:57:91:f4:fc:54:d9:2b:cf:bc:25:e9:5e: c7:03:ae:46:39:cc:09:a0:a9:af:02:9a:6c:21:e2: 2b:40:2b:f8:57:71:72:22:bf:39:bf:a8:9c:65:98: 14:42:a8:74:87:95:5d:e9:63:37:84:f7:22:9e:2d: 3a:ba:9c:dd:4f:f4:3a:7a:d3:a0:b5:08:5a:56:16: c8:6e:37:93:aa:f6:38:ca:77:60:ab:21:68:91:e5: 04:e8:95:9c:8f:bc:10:88:4b:a6:0e:2f:a8:fa:ac: 11:bd:6f:16:3f:a4:b6:db:ca:fa:24:25:e4:f0:5e: bf:67:30:fb:be:4d:31:92:75:e2:55:46:2d:93:97: 01:49:8d:01:65:de:c2:26:6e:b7:80:ef:07:9d:37: 7a:3f:d6:6e:d6:8b:3f:c8:cb:1b:e6:6f:0c:e6:e0: 1f:7d:b5:d1:e8:d8:40:f6:65:49:b0:1a:3a:2c:6d: 93:86:cc:5c:74:bb:0a:38:50:2b:3b:b7:6e:6d:b2: 9d:36:67:9e:0f:5d:69:d5:0a:36:2a:9e:4f:5e:8a: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:03:4D:B1:F9:33:B2:52:E4:E7:F5:AC:41:22:0F:A9:08:B8:EC:8F X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:79:e0:08:9e:51:f6:d1:89:ba:7a:7e:00:b7:3c:31:cc:c6: ff:fe:e9:5b:6d:5e:3a:9b:3f:b4:e1:67:7b:76:57:4d:dd:d5: 78:b9:6f:7c:00:9d:ab:8c:ff:6d:7e:f9:54:95:9a:75:06:ca: 6f:39:79:d9:7d:71:34:14:4e:8c:7e:67:93:57:24:47:33:f8: 20:3b:dd:af:ad:26:60:7e:d3:5f:cd:26:46:a7:8c:9a:31:bc: 17:ad:cb:0d:4f:be:7e:e1:68:15:41:4d:bc:92:d8:42:71:67: 97:a0:88:d8:81:87:97:04:18:09:16:5e:9f:ba:e6:34:27:d1: 73:f5:98:d1:4a:6a:48:ea:a5:49:8c:c2:c8:87:ac:e8:04:6c: 53:33:1b:37:35:30:e2:1c:9c:ca:e8:4c:4c:a6:5e:b2:3c:2b: ec:5c:ef:76:c2:35:f0:84:14:ba:4a:71:60:b6:81:05:cc:d3: 08:80:83:1a:7f:e0:78:06:b2:0c:ca:ff:83:7e:ea:98:42:cb: 8b:e3:d7:8f:d0:e6:60:20:a9:33:b8:17:c2:44:bf:c8:51:ff: d6:c4:db:e8:81:7a:34:fa:ff:6e:f0:83:67:f2:f3:8a:04:59: 19:ac:e1:37:80:48:4d:35:82:24:e4:d6:63:75:81:c4:d5:93: c9:02:2f:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwMjI4MjMxNjQ5WhcNMjYwMzA3MjMxNjQ5WjAYMRYwFAYD VQQDDA02OWEzNzc2Mi1jOTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQCD5cuWr93to+4D3MErm7E9nwJdEE327sQaupknMD4nblPPX2iZ+DSVBMJM YrFXkfT8VNkrz7wl6V7HA65GOcwJoKmvAppsIeIrQCv4V3FyIr85v6icZZgUQqh0 h5Vd6WM3hPcini06upzdT/Q6etOgtQhaVhbIbjeTqvY4yndgqyFokeUE6JWcj7wQ iEumDi+o+qwRvW8WP6S228r6JCXk8F6/ZzD7vk0xknXiVUYtk5cBSY0BZd7CJm63 gO8HnTd6P9Zu1os/yMsb5m8M5uAffbXR6NhA9mVJsBo6LG2ThsxcdLsKOFArO7du bbKdNmeeD11p1Qo2Kp5PXoq92QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIkDTbH5 M7JS5Of1rEEiD6kIuOyPMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH3ngCJ5R9tGJunp+ALc8MczG//7pW21eOps/tOFne3ZXTd3VeLlvfACdq4z/ bX75VJWadQbKbzl52X1xNBROjH5nk1ckRzP4IDvdr60mYH7TX80mRqeMmjG8F63L DU++fuFoFUFNvJLYQnFnl6CI2IGHlwQYCRZen7rmNCfRc/WY0UpqSOqlSYzCyIes 6ARsUzMbNzUw4hycyuhMTKZesjwr7FzvdsI18IQUukpxYLaBBczTCICDGn/geAay DMr/g37qmELLi+PXj9DmYCCpM7gXwkS/yFH/1sTb6IF6NPr/bvCDZ/LzigRZGazh N4BITTWCJOTWY3WBxNWTyQIvpA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:50 2026 by rpki-client