$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft File: 2itDzBg8qOD2qPbapUzdcwb4Yig.mft (raw, json) Hash identifier: 5o85etiRjgwrtRbxsHaA5AAecupzLe8Nb09Em++eriE= Subject key identifier: CF:29:FC:6A:1A:5C:89:84:7C:86:E7:CC:C4:0B:79:C7:3F:E6:3F:60 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0A9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft Manifest number: 0A89 Signing time: Sat 28 Feb 2026 19:49:18 +0000 Manifest this update: Sat 28 Feb 2026 19:49:18 +0000 Manifest next update: Sat 07 Mar 2026 19:49:18 +0000 Files and hashes: 1: 2itDzBg8qOD2qPbapUzdcwb4Yig.crl (hash: nY98hzBoJlQgvXE7ct16Gqzc0E78QJBCxwLBlmAemUE=) 2: 0D6FFE56BA3511ECA20A3817C4F9AE02.roa (hash: uqyPVMOE+qLWXQBv1c4esFoKXDv7NNeZi/HK7HHMgNg=) 3: C8A0E422831611EA95762453C4F9AE02.roa (hash: u++tPTv0IJJfblpGnacj62ScNVMWUF/WYNnIWNA9Nhc=) 4: FD114232912711EFBCB4ED6EC4F9AE02.roa (hash: 4Zrn7txORPl8JygMjOfsUh68XzVxkhEFrQUrRY1C0As=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2717 (0xa9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Feb 28 19:49:18 2026 GMT Not After : Mar 7 19:49:18 2026 GMT Subject: CN=69a346be-779b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:d9:72:24:8e:3c:d7:de:5e:cd:b9:bc:82: c9:1e:1b:3d:c3:67:4a:e4:c7:c5:83:72:66:e7:bf: 23:6d:49:92:96:fc:ff:7e:93:dc:16:47:10:1f:e5: f6:17:66:ff:57:90:8a:e0:44:de:1a:d0:68:48:f7: 84:71:fd:39:be:96:86:22:6e:a1:02:b4:1c:d9:54: 55:9e:3f:dd:89:8e:70:6b:c1:14:2b:f9:06:8e:36: 35:55:16:18:2e:7e:6d:11:5a:6d:a8:c1:04:3c:b0: 82:fc:98:69:3c:3f:bd:77:c1:e1:87:c1:a9:db:b4: d3:23:2b:bf:b0:24:2b:d6:9e:c3:38:b0:20:7d:28: 7d:75:03:26:54:bd:56:68:0b:e6:eb:41:6f:08:d2: 3d:ef:c6:7b:69:7e:b0:ef:3b:54:e8:12:a3:d9:b8: 99:af:38:ee:1f:23:8a:80:54:a7:14:0c:69:29:44: 23:4a:d8:54:e2:06:63:7a:a0:3d:b2:2f:29:ce:0a: 2c:d2:3a:52:11:35:7b:ce:a2:b9:bc:99:c5:33:9b: 0b:a0:d0:40:2b:03:fd:c1:7c:bd:e1:b0:b7:04:71: a6:fb:3f:01:61:6e:33:5e:a1:87:ca:45:42:82:00: e1:ab:01:96:66:a9:ea:76:0f:db:0a:45:26:85:f3: ef:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:29:FC:6A:1A:5C:89:84:7C:86:E7:CC:C4:0B:79:C7:3F:E6:3F:60 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:58:5a:6f:06:a1:0f:85:8e:60:36:1f:f0:62:17:2c:51:99: 69:a2:55:74:77:7f:c3:61:c8:af:02:d1:da:c9:95:82:51:58: 6c:1f:89:bf:5d:d1:28:38:d4:61:b8:42:16:8f:e0:22:43:8e: 50:2f:42:1d:e0:ca:f6:5e:5f:ca:52:cb:58:69:7b:6f:d9:85: fc:9d:d0:a0:77:f2:3d:0f:9e:f8:c2:27:8f:e4:51:cf:fb:b7: 27:1b:54:40:fc:3e:e5:69:6d:7c:74:55:5b:85:69:37:93:88: 8e:98:87:f7:d0:86:aa:be:ea:d3:0d:67:ca:fd:a0:33:e2:e4: 2b:ac:02:72:70:92:69:fa:d7:6f:09:f0:04:d1:ae:6f:10:65: 25:05:21:c5:38:cd:67:90:d2:35:bb:db:8f:3f:88:1a:7d:29: 25:9f:77:2b:7d:65:7d:f8:f2:01:68:43:5a:37:c8:6a:9a:79: bb:8d:7b:c9:80:b7:cc:27:17:68:ba:cb:dc:05:20:e3:2e:1e: 1a:34:de:f9:84:64:73:df:3d:a6:d4:b2:ef:d8:40:a2:be:5a: fe:17:57:e6:26:c6:f2:e8:d7:a5:ad:c4:f8:8b:86:e9:4a:fe: 3b:fd:15:dc:ca:27:a9:16:7e:2a:5a:c9:3f:d5:3d:06:bd:f2: 47:68:76:a2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwMjI4MTk0OTE4WhcNMjYwMzA3MTk0OTE4WjAYMRYwFAYD VQQDDA02OWEzNDZiZS03NzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbrZciSOPNfeXs25vILJHhs9w2dK5MfFg3Jm578jbUmSlvz/fpPcFkcQH+X2 F2b/V5CK4ETeGtBoSPeEcf05vpaGIm6hArQc2VRVnj/diY5wa8EUK/kGjjY1VRYY Ln5tEVptqMEEPLCC/JhpPD+9d8Hhh8Gp27TTIyu/sCQr1p7DOLAgfSh9dQMmVL1W aAvm60FvCNI978Z7aX6w7ztU6BKj2biZrzjuHyOKgFSnFAxpKUQjSthU4gZjeqA9 si8pzgos0jpSETV7zqK5vJnFM5sLoNBAKwP9wXy94bC3BHGm+z8BYW4zXqGHykVC ggDhqwGWZqnqdg/bCkUmhfPvfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8p/Goa XImEfIbnzMQLecc/5j9gMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBFQy85OTFDRUY3RTc5NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFP RDJxUGJhcFV6ZGN3YjRZaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAglhabwahD4WOYDYf8GIXLFGZaaJVdHd/w2HIrwLR2smVglFYbB+Jv13RKDjU YbhCFo/gIkOOUC9CHeDK9l5fylLLWGl7b9mF/J3QoHfyPQ+e+MInj+RRz/u3JxtU QPw+5WltfHRVW4VpN5OIjpiH99CGqr7q0w1nyv2gM+LkK6wCcnCSafrXbwnwBNGu bxBlJQUhxTjNZ5DSNbvbjz+IGn0pJZ93K31lffjyAWhDWjfIapp5u417yYC3zCcX aLrL3AUg4y4eGjTe+YRkc989ptSy79hAor5a/hdX5ibG8ujXpa3E+IuG6Ur+O/0V 3MonqRZ+KlrJP9U9Br3yR2h2og== -----END CERTIFICATE-----Generated at Sun Mar 1 22:36:03 2026 by rpki-client