$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: LxjrpU5/8cA+Z6yHCGH2/SRV/JWjyMHoGX6AL3m9dmI= Subject key identifier: 1C:34:9A:A1:65:89:64:F7:0B:D9:60:2D:F5:50:54:2E:AF:26:DF:FB Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 09E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 09A1 Signing time: Sat 28 Feb 2026 20:23:44 +0000 Manifest this update: Sat 28 Feb 2026 20:23:44 +0000 Manifest next update: Sat 07 Mar 2026 20:23:44 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: UtnaVxV9XO9Xkuq2AGdVj1QZtsvK98FDherIYytlcGM=) 2: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) 3: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 4: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 5: 6B7D02AEB4A111F08515F713C4F9AE02.roa (hash: 8dIXmowCXPZAD2UJ+5qefOaUBnMZVuWIuv6x5mQBQWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2536 (0x9e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Feb 28 20:23:44 2026 GMT Not After : Mar 7 20:23:44 2026 GMT Subject: CN=69a34ed0-ee7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dc:53:8d:85:dd:07:fd:92:2d:19:f8:50:25: 6a:94:07:a1:a4:9b:28:ad:e9:08:44:49:58:94:6f: 1b:b7:93:1a:b2:5b:1e:aa:eb:d2:bf:f0:fe:76:2a: d5:b5:fc:54:14:e8:27:55:4c:90:72:72:35:ff:34: 64:e1:54:5c:bb:b1:b1:a0:a5:19:97:1d:32:54:a9: 8c:8b:dc:3e:ad:61:9e:66:a2:e3:0c:37:d9:6a:18: 67:5d:5c:07:e2:8c:2d:85:84:9e:fb:26:df:01:cb: eb:39:4c:69:55:9b:e8:3b:7d:bb:1c:cd:36:fa:ee: 50:5a:6f:80:7e:e6:26:6a:59:3e:57:c7:5a:30:e1: b0:99:52:60:bd:b0:f1:e0:a5:a8:7f:1a:ed:2d:d6: a7:4f:6f:40:00:14:03:99:66:53:b8:94:d4:c9:dd: 3d:37:46:8a:56:1b:55:cd:14:3d:78:09:90:1b:be: be:8c:0d:a7:d0:e8:11:8e:b1:46:39:20:76:4b:e1: 90:01:d0:31:22:69:2c:40:6f:90:b8:e3:66:64:5a: e0:49:c6:ed:c9:b1:c1:bf:8e:85:31:d9:61:20:e2: 3a:08:8e:03:9a:3d:6a:34:4e:c7:52:7b:36:b8:1d: ff:0d:38:bf:92:ad:65:13:16:ab:c0:76:41:b9:d8: a0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:34:9A:A1:65:89:64:F7:0B:D9:60:2D:F5:50:54:2E:AF:26:DF:FB X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:4c:af:b8:eb:eb:a9:8e:2b:71:28:39:1c:4c:ba:a0:06:71: 36:9a:e9:31:6b:8b:c1:44:60:5e:1e:41:f3:14:02:61:15:7c: 2b:23:97:55:ff:43:82:52:f4:80:f1:67:f0:40:20:91:27:74: 31:6a:ea:20:3f:3a:fe:69:34:63:e1:a2:23:5d:03:2c:55:be: 21:e7:ac:e7:19:37:85:2d:83:5d:38:d9:43:0a:47:e1:54:c5: 8f:25:ae:3e:76:36:7f:d9:9e:fd:d0:35:d1:d1:55:a3:38:df: 1d:cf:2b:6e:aa:7f:c3:6e:e0:53:30:bb:e5:78:04:8a:8b:3d: 18:8e:18:56:1e:4e:8a:f5:4b:31:df:50:08:5b:e8:47:3f:6e: dc:43:62:03:73:f9:6e:aa:08:ca:c3:a3:c2:8d:f0:bf:84:ac: 9c:ca:17:6a:14:e4:55:26:11:0a:57:ad:e1:e3:0c:38:b4:09: eb:27:d9:f9:a1:d0:bb:4d:3b:81:18:26:08:42:2f:fa:e4:10: 29:bd:7a:d2:8c:00:e4:37:6a:2b:a9:4f:e5:0f:e1:a0:36:32: 4d:7b:a2:66:39:43:be:28:01:fc:5f:99:cf:39:c0:4a:49:4d: 4d:fc:63:5a:6e:39:b3:9e:88:e2:37:5f:2c:a5:4c:e4:00:bf: d8:22:11:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjYwMjI4MjAyMzQ0WhcNMjYwMzA3MjAyMzQ0WjAYMRYwFAYD VQQDDA02OWEzNGVkMC1lZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NxTjYXdB/2SLRn4UCVqlAehpJsorekIRElYlG8bt5MaslsequvSv/D+dirV tfxUFOgnVUyQcnI1/zRk4VRcu7GxoKUZlx0yVKmMi9w+rWGeZqLjDDfZahhnXVwH 4owthYSe+ybfAcvrOUxpVZvoO327HM02+u5QWm+AfuYmalk+V8daMOGwmVJgvbDx 4KWofxrtLdanT29AABQDmWZTuJTUyd09N0aKVhtVzRQ9eAmQG76+jA2n0OgRjrFG OSB2S+GQAdAxImksQG+QuONmZFrgScbtybHBv46FMdlhIOI6CI4Dmj1qNE7HUns2 uB3/DTi/kq1lExarwHZBudigQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBw0mqFl iWT3C9lgLfVQVC6vJt/7MB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt0yvuOvrqY4rcSg5HEy6oAZxNprpMWuLwURgXh5B8xQCYRV8KyOXVf9DglL0 gPFn8EAgkSd0MWrqID86/mk0Y+GiI10DLFW+Iees5xk3hS2DXTjZQwpH4VTFjyWu PnY2f9me/dA10dFVozjfHc8rbqp/w27gUzC75XgEios9GI4YVh5OivVLMd9QCFvo Rz9u3ENiA3P5bqoIysOjwo3wv4SsnMoXahTkVSYRClet4eMMOLQJ6yfZ+aHQu007 gRgmCEIv+uQQKb160owA5DdqK6lP5Q/hoDYyTXuiZjlDvigB/F+ZzznASklNTfxj Wm45s56I4jdfLKVM5AC/2CIRvQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:06 2026 by rpki-client