$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: nwce4Yse+itVUa3kLolc6SPBjfRA0O1F3bQ+FLSEtrs= Subject key identifier: A9:94:42:39:ED:7F:42:61:92:43:37:44:BE:6B:AF:A9:BC:E0:C2:9D Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0BB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0BAC Signing time: Sat 28 Feb 2026 19:13:11 +0000 Manifest this update: Sat 28 Feb 2026 19:13:11 +0000 Manifest next update: Sat 07 Mar 2026 19:13:11 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: rfR221Z89kKmYABpMc//CYDGgO8C3lBY73Ir+BYrv08=) 2: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) 3: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Feb 28 19:13:11 2026 GMT Not After : Mar 7 19:13:11 2026 GMT Subject: CN=69a33e47-cf42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:5d:ed:0c:f0:e3:08:bc:32:1f:2a:83:fe: ed:49:d2:90:db:aa:bd:73:e8:03:1d:b1:35:02:4f: 43:e7:1a:63:91:13:f5:33:b5:fc:cb:f6:35:9a:50: 5e:15:9f:d2:be:39:d1:17:8c:56:c7:e0:85:66:5b: 1a:8c:56:72:23:e8:30:27:d0:6b:b7:5b:6c:54:62: 5d:81:67:af:b0:8e:3c:00:76:8f:f2:69:f8:fe:6b: d6:b7:cd:b4:54:16:b0:75:aa:1f:a6:02:9c:1c:6a: d8:4e:19:bc:18:78:67:33:ec:ab:67:cf:07:d7:65: 85:7c:cd:1a:6e:dc:b7:2f:00:7b:f4:aa:6d:a1:27: 15:c3:b3:0a:20:6c:b9:99:4a:54:9b:89:bf:45:8e: 80:44:31:08:9e:a9:3a:a6:e0:db:dc:d8:84:2d:a9: b0:6b:84:d9:99:79:69:3d:e1:81:82:a6:68:fd:e0: 98:33:2e:6e:bd:ed:02:63:93:60:05:b6:44:08:e5: 91:42:12:82:83:06:08:39:21:ca:d0:37:d1:2b:a1: a3:f7:78:8d:f2:b2:9d:fd:fd:21:3e:4c:d7:7b:8a: 64:4d:e4:fd:b8:27:c0:01:b5:10:a9:91:42:10:67: c3:8b:c1:19:92:0a:b8:c6:90:b7:fa:2d:41:ac:6f: b0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:94:42:39:ED:7F:42:61:92:43:37:44:BE:6B:AF:A9:BC:E0:C2:9D X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:06:2f:a3:c0:bc:7f:6e:dc:0e:0b:b8:4e:61:3d:12:ff:33: 2c:e6:ea:eb:86:af:d0:4a:a7:8d:d5:18:5c:27:11:5d:ee:68: d5:6c:b5:69:8d:60:48:d4:d5:91:7a:67:34:a9:77:a0:25:80: 26:02:6e:19:42:59:d0:f9:6a:cb:0c:52:21:6d:af:30:59:7a: 70:23:ef:95:a4:28:17:f7:ba:35:4c:fc:8d:55:73:1f:00:22: f9:a8:73:57:d3:e2:bd:57:ab:46:71:fd:01:e9:f8:65:31:01: d8:58:f4:6b:60:cf:37:3f:90:6c:1f:d0:9e:11:b6:35:95:46: bb:9c:ec:51:f2:20:5b:cf:d9:a8:6e:ec:8f:ed:21:54:32:5e: 5c:7c:5f:56:ba:e5:f3:5b:b5:8b:ed:61:35:1a:5b:db:fd:b3: 0b:a7:89:17:80:9d:25:06:c2:17:90:a3:f1:86:6d:ed:cf:b7: f8:97:10:21:f8:9b:fe:b0:94:26:dd:51:3c:10:00:9d:3d:bd: 34:1e:c9:84:35:b1:d5:8b:d6:fa:c0:74:85:0e:b3:ed:b9:44: b5:3a:73:91:b3:53:c1:b1:28:45:5d:4f:73:1a:36:bd:cf:b5: 5b:6f:33:ec:0e:84:b8:0f:49:94:f1:e7:76:b5:d0:66:d0:0d: 3e:5b:32:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjYwMjI4MTkxMzExWhcNMjYwMzA3MTkxMzExWjAYMRYwFAYD VQQDDA02OWEzM2U0Ny1jZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLtd7Qzw4wi8Mh8qg/7tSdKQ26q9c+gDHbE1Ak9D5xpjkRP1M7X8y/Y1mlBe FZ/SvjnRF4xWx+CFZlsajFZyI+gwJ9Brt1tsVGJdgWevsI48AHaP8mn4/mvWt820 VBawdaofpgKcHGrYThm8GHhnM+yrZ88H12WFfM0abty3LwB79KptoScVw7MKIGy5 mUpUm4m/RY6ARDEInqk6puDb3NiELamwa4TZmXlpPeGBgqZo/eCYMy5uve0CY5Ng BbZECOWRQhKCgwYIOSHK0DfRK6Gj93iN8rKd/f0hPkzXe4pkTeT9uCfAAbUQqZFC EGfDi8EZkgq4xpC3+i1BrG+w7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKmUQjnt f0JhkkM3RL5rr6m84MKdMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVQYvo8C8f27cDgu4TmE9Ev8zLObq64av0EqnjdUYXCcRXe5o1Wy1aY1gSNTV kXpnNKl3oCWAJgJuGUJZ0PlqywxSIW2vMFl6cCPvlaQoF/e6NUz8jVVzHwAi+ahz V9PivVerRnH9Aen4ZTEB2Fj0a2DPNz+QbB/QnhG2NZVGu5zsUfIgW8/ZqG7sj+0h VDJeXHxfVrrl81u1i+1hNRpb2/2zC6eJF4CdJQbCF5Cj8YZt7c+3+JcQIfib/rCU Jt1RPBAAnT29NB7JhDWx1YvW+sB0hQ6z7blEtTpzkbNTwbEoRV1Pcxo2vc+1W28z 7A6EuA9JlPHndrXQZtANPlsyTA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:54:09 2026 by rpki-client