$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: z5g4tvtCvc7AfWakIBiXmM1qTfVFw+ezxX+DAskvNa4= Subject key identifier: AB:D2:46:69:F4:6F:19:B1:8E:C6:91:F0:60:28:64:88:07:20:26:78 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 7A Signing time: Sun 01 Mar 2026 09:06:23 +0000 Manifest this update: Sun 01 Mar 2026 09:06:22 +0000 Manifest next update: Sun 08 Mar 2026 09:06:22 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: dij8UzPPw5mm61lFJeVo29/jpuHDBZWr7Oh7hgNTk3Q=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: Hc8ozT9yDfNYsIpquS99Gm4q+mTiTQ1cphIlHACdz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Mar 1 09:06:22 2026 GMT Not After : Mar 8 09:06:22 2026 GMT Subject: CN=69a4018f-ce06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3d:69:38:09:e9:86:6e:56:26:b4:d5:96:a4: a0:e1:cd:b3:61:c2:28:4d:29:e1:bc:3d:7b:3d:9e: 94:2e:e0:8d:16:e9:8e:ba:61:c6:e5:20:7a:10:37: f7:c5:d2:a7:eb:f2:64:4c:91:c8:7b:97:bb:77:d5: 05:92:47:a1:33:12:b1:6e:2b:c3:04:f4:9e:cc:a0: c6:74:6c:9a:6a:7a:88:06:2f:3f:c6:87:b8:e9:9c: bc:ca:a7:77:57:3b:79:a8:b0:8c:ad:89:a7:51:de: 0d:32:d1:5c:4c:8b:8c:43:00:6b:11:23:5e:17:b1: 85:f0:71:43:24:1e:02:8b:40:e6:b8:4e:95:b9:8d: 35:ee:9c:ae:f0:e0:5a:23:21:ab:94:31:ee:08:0c: ff:9d:10:62:2a:a6:11:4c:20:17:6a:9e:b3:bc:b4: 03:99:7d:f9:94:29:12:52:01:6f:cd:62:2e:11:8b: 00:56:5a:02:29:02:e0:be:49:b7:17:36:64:97:cd: 1a:f7:26:1c:31:61:43:ea:90:35:9e:32:8a:20:4a: fc:d8:ce:4e:07:dd:6e:3f:0b:e8:25:b8:cd:f5:ef: 95:14:2c:a2:70:db:d6:12:f7:03:bf:fe:2b:4d:0b: 5f:cf:c4:9b:31:86:55:82:9c:81:1a:18:04:e8:4a: bc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D2:46:69:F4:6F:19:B1:8E:C6:91:F0:60:28:64:88:07:20:26:78 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:61:57:11:b8:5e:64:50:40:5c:56:08:b8:ea:ed:61:17:12: 6a:a1:b1:74:9e:57:bd:fd:b5:8b:d0:15:10:9b:14:85:2f:c1: a2:b0:b7:28:bc:b3:af:69:1d:bf:f4:d1:14:98:74:13:19:a8: 83:f1:a2:7a:8e:9d:64:4d:49:55:3a:ba:a5:b1:1f:4d:08:e0: 07:21:26:99:44:05:2d:de:51:a3:38:5d:ae:95:af:7a:91:92: 37:99:98:de:d2:0c:f3:ce:7d:7a:51:db:2a:3b:44:2d:41:9a: b1:d2:1c:df:c5:de:cb:f8:89:05:27:1c:e0:c0:a8:62:fa:1c: 6b:46:9c:ee:d7:06:42:b8:72:fc:95:a4:a8:9a:d7:f1:05:f7: 88:f1:f5:98:60:a7:65:fd:5a:1b:92:a4:a5:c9:1d:8e:3b:22: 9f:ce:5e:8e:de:87:21:49:1e:73:67:19:79:c8:a2:77:1e:4f: a5:a8:28:01:4d:6a:45:06:e6:0d:49:4f:cd:72:9a:cb:54:8e: e1:49:8f:a4:0c:db:c7:0e:2f:8e:10:ee:a9:37:95:b1:be:ca: 83:6e:f4:3c:a6:23:5f:62:e5:30:5d:42:7b:b1:f3:0e:e7:fc: f4:91:a2:e0:0f:e6:62:f7:9b:5d:2b:1c:34:27:56:5d:36:e6: 66:1d:c0:f3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNjAzMDEwOTA2MjJaFw0yNjAzMDgwOTA2MjJaMBgxFjAUBgNV BAMTDTY5YTQwMThmLWNlMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYPWk4CemGblYmtNWWpKDhzbNhwihNKeG8PXs9npQu4I0W6Y66YcblIHoQN/fF 0qfr8mRMkch7l7t31QWSR6EzErFuK8ME9J7MoMZ0bJpqeogGLz/Gh7jpnLzKp3dX O3mosIytiadR3g0y0VxMi4xDAGsRI14XsYXwcUMkHgKLQOa4TpW5jTXunK7w4Foj IauUMe4IDP+dEGIqphFMIBdqnrO8tAOZffmUKRJSAW/NYi4RiwBWWgIpAuC+SbcX NmSXzRr3JhwxYUPqkDWeMoogSvzYzk4H3W4/C+gluM3175UULKJw29YS9wO//itN C1/PxJsxhlWCnIEaGAToSrwFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUq9JGafRv GbGOxpHwYChkiAcgJngwHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAAYVcRuF5kUEBcVgi46u1hFxJqobF0nle9/bWL0BUQmxSFL8GisLcovLOvaR2/ 9NEUmHQTGaiD8aJ6jp1kTUlVOrqlsR9NCOAHISaZRAUt3lGjOF2ula96kZI3mZje 0gzzzn16UdsqO0QtQZqx0hzfxd7L+IkFJxzgwKhi+hxrRpzu1wZCuHL8laSomtfx BfeI8fWYYKdl/VobkqSlyR2OOyKfzl6O3ochSR5zZxl5yKJ3Hk+lqCgBTWpFBuYN SU/NcprLVI7hSY+kDNvHDi+OEO6pN5WxvsqDbvQ8piNfYuUwXUJ7sfMO5/z0kaLg D+Zi95tdKxw0J1ZdNuZmHcDz -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:17 2026 by rpki-client