$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: VQ0fhdsnlUXrpH+fl2zYQuod9jjiBx01SKhyeDvgLhQ= Subject key identifier: EB:BD:74:90:C2:DC:2D:14:43:1E:2C:AA:29:E4:47:8D:E3:D7:89:C2 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 089E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 0898 Signing time: Sat 28 Feb 2026 20:49:51 +0000 Manifest this update: Sat 28 Feb 2026 20:49:51 +0000 Manifest next update: Sat 07 Mar 2026 20:49:51 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: gPhrR8lUo9grtPqLo9450KSWQpB+5TecTFcxAEwq59Q=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2206 (0x89e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Feb 28 20:49:51 2026 GMT Not After : Mar 7 20:49:51 2026 GMT Subject: CN=69a354ef-f0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5e:90:14:9f:4b:a8:42:7a:27:d0:1c:6c:f3: 6e:75:3e:89:30:7f:bb:e1:b3:3c:ce:da:22:5d:64: 21:8b:1b:95:7b:25:d7:f9:21:3b:ef:c9:e7:01:ae: 1f:65:e0:18:b1:cd:9f:5d:76:6d:7d:a8:ca:0b:f3: e8:37:9f:39:76:5e:6f:80:2b:e4:81:df:92:51:aa: eb:20:19:85:44:65:bc:2a:7e:9e:ab:1e:ee:7b:bf: 5e:cf:b4:69:89:c9:2b:c3:bb:53:e5:35:9e:36:dc: ff:30:80:13:7d:fd:20:81:6a:6f:8a:79:bb:cf:cd: 5d:70:d2:d6:ad:a9:e9:37:2b:9d:21:34:dd:12:a1: 5b:47:7e:c9:70:ae:33:7a:5d:e2:d0:73:18:fd:ff: 1a:64:1a:25:62:73:90:41:9c:bc:71:fa:de:a1:4b: 4a:d0:81:10:23:2e:b1:7f:78:b6:59:b6:63:0a:89: 26:45:39:4f:80:47:a3:aa:fb:42:63:4d:89:eb:28: ce:be:05:b6:f7:cf:95:c1:85:b6:dc:e4:f9:f7:fd: df:1a:ac:1c:ad:ee:aa:33:28:c4:1c:d1:68:64:9d: 9b:9f:ff:99:e3:85:d7:81:74:3a:1b:0a:db:0e:b3: 6d:fa:64:97:7a:ee:f6:03:ba:71:91:25:93:8f:01: 2c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:BD:74:90:C2:DC:2D:14:43:1E:2C:AA:29:E4:47:8D:E3:D7:89:C2 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:5b:96:72:b7:3c:79:fe:5e:26:f3:4c:3c:6c:9d:72:63:3c: 23:e4:ad:6f:47:fa:c0:f1:f8:93:88:73:29:5d:b9:ee:dd:5e: 47:ea:56:11:94:86:dd:c4:b6:0f:a2:dd:74:fa:08:12:a0:1f: 1b:31:f5:7d:d9:3a:37:af:1f:d2:29:d6:0e:c3:44:72:68:59: 7a:c7:c5:17:a8:4e:a1:4b:7e:33:85:8a:3d:63:f4:e4:e1:05: 8f:5e:46:7b:3f:e4:ac:77:f7:ee:54:fd:49:78:5c:c3:6b:f2: 22:f1:33:20:37:29:6e:dd:4e:17:7e:3a:68:eb:4d:f3:f9:ff: a6:b1:e9:50:be:2e:93:3f:62:38:6f:5e:f1:77:b4:a2:31:07: 05:2f:cc:3d:70:a0:1b:dc:61:22:f2:8e:aa:f6:05:c7:9a:1c: c6:ec:87:a9:b8:ed:c4:35:06:7f:18:6f:02:72:1c:72:17:f1: d0:f0:6b:03:6f:69:c3:b4:02:01:ab:bd:f8:c3:1f:c0:a5:82: a8:d9:08:7b:0d:95:52:b0:b8:27:bc:02:c7:73:c8:29:91:13: 42:d1:d0:d1:ec:e4:19:e0:30:df:86:57:53:a3:8e:55:65:41: f4:31:2d:e5:0e:61:e6:b0:38:ad:17:9b:2d:7d:1c:a5:7b:86: fc:63:7a:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjYwMjI4MjA0OTUxWhcNMjYwMzA3MjA0OTUxWjAYMRYwFAYD VQQDDA02OWEzNTRlZi1mMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV6QFJ9LqEJ6J9AcbPNudT6JMH+74bM8ztoiXWQhixuVeyXX+SE778nnAa4f ZeAYsc2fXXZtfajKC/PoN585dl5vgCvkgd+SUarrIBmFRGW8Kn6eqx7ue79ez7Rp ickrw7tT5TWeNtz/MIATff0ggWpvinm7z81dcNLWranpNyudITTdEqFbR37JcK4z el3i0HMY/f8aZBolYnOQQZy8cfreoUtK0IEQIy6xf3i2WbZjCokmRTlPgEejqvtC Y02J6yjOvgW298+VwYW23OT59/3fGqwcre6qMyjEHNFoZJ2bn/+Z44XXgXQ6Gwrb DrNt+mSXeu72A7pxkSWTjwEsZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOu9dJDC 3C0UQx4sqinkR43j14nCMB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADluWcrc8ef5eJvNMPGydcmM8I+Stb0f6wPH4k4hzKV257t1eR+pWEZSG3cS2 D6LddPoIEqAfGzH1fdk6N68f0inWDsNEcmhZesfFF6hOoUt+M4WKPWP05OEFj15G ez/krHf37lT9SXhcw2vyIvEzIDcpbt1OF346aOtN8/n/prHpUL4ukz9iOG9e8Xe0 ojEHBS/MPXCgG9xhIvKOqvYFx5ocxuyHqbjtxDUGfxhvAnIcchfx0PBrA29pw7QC Aau9+MMfwKWCqNkIew2VUrC4J7wCx3PIKZETQtHQ0ezkGeAw34ZXU6OOVWVB9DEt 5Q5h5rA4rRebLX0cpXuG/GN64w== -----END CERTIFICATE-----Generated at Mon Mar 2 02:37:08 2026 by rpki-client