$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: kXLilvFxAYC/W1Dzk1f8Oipl4Lf8Dh1VZKACe8Sot54= Subject key identifier: C1:7B:76:EB:54:E1:25:98:C9:64:2C:A0:72:ED:D5:65:7A:5F:A9:16 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0AEE Signing time: Sat 28 Feb 2026 19:44:06 +0000 Manifest this update: Sat 28 Feb 2026 19:44:05 +0000 Manifest next update: Sat 07 Mar 2026 19:44:05 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: Sv31RQk2NBlqk3m3em9GQB1FcTAHPrchwLrF3oz0urs=) 2: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 3: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) 4: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Feb 28 19:44:05 2026 GMT Not After : Mar 7 19:44:05 2026 GMT Subject: CN=69a34586-41b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:20:e7:9b:dc:55:30:57:69:42:94:4e:45: eb:d4:28:55:d8:f8:49:b7:51:40:6f:41:bd:50:66: 81:a9:be:d4:05:17:0f:e0:95:72:d5:c3:9a:b0:eb: 82:16:e8:df:27:8b:31:53:1f:b8:89:20:7f:c1:4d: 1d:e5:d6:bd:b3:e1:b1:5e:3a:58:47:65:70:18:0e: 7f:55:6e:61:ab:4f:35:00:79:68:ea:f8:35:50:97: cb:91:45:a6:a7:54:c7:34:e8:fb:13:24:20:33:c0: 31:66:8f:e3:70:df:b4:b2:7f:ce:75:e7:8e:77:b0: 30:03:9c:a8:bf:b0:bf:24:d9:e3:aa:dc:4b:84:97: 76:d7:3a:13:14:9e:d2:36:1f:c4:2c:5e:d9:f1:92: eb:f7:08:6e:85:34:60:62:4c:83:7d:48:7c:7b:b9: 5e:95:ad:a3:a0:5b:8b:1f:f3:43:d1:0f:aa:f9:f3: 42:36:c9:2b:a0:46:5f:99:40:1b:18:68:c1:37:6c: dc:d3:bd:55:66:5b:11:23:17:1d:c8:cb:66:63:69: da:71:cb:d1:22:c1:ae:df:44:88:c1:39:f2:8d:6d: 74:df:14:32:63:89:ec:9c:7e:af:62:84:bb:07:0d: 32:4e:72:27:f7:e4:b5:53:1a:9f:30:e4:31:a0:7a: 4e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7B:76:EB:54:E1:25:98:C9:64:2C:A0:72:ED:D5:65:7A:5F:A9:16 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:42:94:2c:6a:78:85:8b:77:86:6a:22:12:0c:7d:2e:1e:47: 96:8f:2f:84:95:97:bb:02:14:56:b4:91:6f:b1:dc:05:dd:db: 2c:6e:1d:51:e4:27:24:99:16:62:1a:ee:70:69:f7:03:0a:30: cd:e6:07:0d:0d:cd:75:05:52:bd:03:58:c5:36:51:a7:7e:3e: 6d:6f:63:49:b6:8d:68:27:d0:55:7d:ac:13:24:b5:38:3c:53: cb:1b:5b:cd:5b:34:2d:09:46:aa:8c:25:76:fa:f7:8d:3d:63: ca:80:02:33:e3:0e:aa:50:70:13:7b:33:db:2e:2e:37:eb:f9: 96:d7:f4:27:a1:6f:5a:85:fd:d0:b3:f9:76:af:c3:f5:85:b9: 44:de:7a:11:d9:30:de:4b:82:19:b0:1c:c6:50:08:09:d5:87: 7a:23:67:ec:c6:c8:b6:58:c9:94:8e:f8:c0:37:dd:ac:36:ca: a4:47:3d:eb:82:e2:da:87:78:45:46:11:89:70:86:03:d7:f6: 2d:f7:21:62:d0:ac:c6:6c:35:46:ae:b8:71:7a:04:63:59:42: 4e:b4:3e:b0:fb:81:d7:01:4d:79:c7:31:74:47:c0:be:92:59: 72:2d:05:f6:d6:e8:1d:28:3b:ad:fc:04:c2:66:b2:e6:c8:4d: 2b:2f:c8:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjYwMjI4MTk0NDA1WhcNMjYwMzA3MTk0NDA1WjAYMRYwFAYD VQQDDA02OWEzNDU4Ni00MWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq24g55vcVTBXaUKUTkXr1ChV2PhJt1FAb0G9UGaBqb7UBRcP4JVy1cOasOuC FujfJ4sxUx+4iSB/wU0d5da9s+GxXjpYR2VwGA5/VW5hq081AHlo6vg1UJfLkUWm p1THNOj7EyQgM8AxZo/jcN+0sn/OdeeOd7AwA5yov7C/JNnjqtxLhJd21zoTFJ7S Nh/ELF7Z8ZLr9whuhTRgYkyDfUh8e7lela2joFuLH/ND0Q+q+fNCNskroEZfmUAb GGjBN2zc071VZlsRIxcdyMtmY2naccvRIsGu30SIwTnyjW103xQyY4nsnH6vYoS7 Bw0yTnIn9+S1UxqfMOQxoHpOcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMF7dutU 4SWYyWQsoHLt1WV6X6kWMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmEKULGp4hYt3hmoiEgx9Lh5Hlo8vhJWXuwIUVrSRb7HcBd3bLG4dUeQnJJkW YhrucGn3AwowzeYHDQ3NdQVSvQNYxTZRp34+bW9jSbaNaCfQVX2sEyS1ODxTyxtb zVs0LQlGqowldvr3jT1jyoACM+MOqlBwE3sz2y4uN+v5ltf0J6FvWoX90LP5dq/D 9YW5RN56Edkw3kuCGbAcxlAICdWHeiNn7MbItljJlI74wDfdrDbKpEc964Li2od4 RUYRiXCGA9f2LfchYtCsxmw1Rq64cXoEY1lCTrQ+sPuB1wFNeccxdEfAvpJZci0F 9tboHSg7rfwEwmay5shNKy/Ihg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:47:00 2026 by rpki-client