$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: /OaAziJf4XbQ8AeJ+DxttiNwY1lEf+OBhqN74qQ26q0= Subject key identifier: BC:29:B7:6B:08:51:43:64:8B:A1:FB:C3:6D:1E:6B:20:83:72:09:53 Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 10F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 10E9 Signing time: Sat 28 Feb 2026 17:23:23 +0000 Manifest this update: Sat 28 Feb 2026 17:23:23 +0000 Manifest next update: Sat 07 Mar 2026 17:23:23 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: It4gX5Ry3HNrUNWL8++QUdoqqM4iJBwZSeWEQJiU1X4=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Feb 28 17:23:23 2026 GMT Not After : Mar 7 17:23:23 2026 GMT Subject: CN=69a3248b-9541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:92:87:f1:ee:af:00:10:ab:7b:a0:8e:12: 97:49:8e:d7:23:16:ce:8d:f5:7c:d0:97:9d:0d:db: 4a:37:65:d3:7b:47:0d:eb:37:34:1f:88:f5:32:00: 8c:08:96:4b:e1:6f:54:8c:a2:ac:0a:86:eb:fa:ca: fe:c7:bf:cd:25:78:b1:2d:b0:fd:e1:2e:ee:e7:df: 90:82:5a:92:d4:a1:b2:99:b9:94:d0:0e:2f:66:49: d0:d9:08:85:4d:2d:95:55:f7:c1:9e:55:9d:a8:70: c4:fd:f2:47:ca:6b:bb:5b:ee:30:d9:6b:75:d4:67: 3c:18:55:1d:2a:a7:e6:b4:8a:2f:a0:19:88:70:74: ca:8c:a6:b4:7a:94:47:2f:13:ac:40:75:dc:28:e9: d4:47:14:9b:25:00:4a:f4:f4:1a:a4:5f:bb:07:6d: d9:e2:19:d1:e6:fc:e5:dc:2f:6f:d6:be:7d:e2:f4: a8:48:12:5f:af:23:f8:79:85:b3:9e:fa:7d:5e:23: ad:1f:50:d1:b1:6d:bd:a3:06:96:b2:25:78:60:65: 8e:08:6a:53:ea:88:6e:ab:c5:87:d6:df:2f:45:8a: 86:33:14:d9:ca:49:bc:0d:ac:7e:2c:bd:5d:46:06: f8:ad:07:5e:31:a1:f2:a2:ba:08:6e:11:ac:11:f7: 00:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:29:B7:6B:08:51:43:64:8B:A1:FB:C3:6D:1E:6B:20:83:72:09:53 X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:76:63:1a:01:2a:0a:4e:e2:20:a3:fe:58:1e:4c:26:98:22: 7d:11:ae:7d:86:4f:e1:52:f6:12:f7:4f:b9:51:12:c9:7e:d3: c5:07:09:5f:e9:cf:8b:ff:3b:41:ce:a0:9b:d1:68:3b:9a:df: e7:c2:d7:b6:a4:d1:f4:ac:e8:77:f8:cd:90:3a:3c:78:9c:d8: 9f:9b:5f:33:28:3c:b6:de:bb:68:1d:7f:50:7d:04:eb:00:98: 0c:3a:c9:a5:12:d7:db:74:cb:1c:39:83:cc:44:7b:00:e3:28: ec:15:85:b9:39:86:2b:76:ae:68:2e:21:64:a3:6c:22:d1:55: 8f:80:cd:e8:96:25:22:29:64:27:74:6c:ff:14:d0:72:cb:c4: f8:ac:e8:05:c2:8e:60:b6:99:13:34:a6:f4:ac:71:69:49:ca: 95:1b:23:43:9e:51:15:25:0f:df:3d:43:eb:e1:78:26:cd:cb: 72:76:8f:db:b9:76:7f:6c:7b:77:d3:a0:58:f1:c2:9a:68:be: 41:24:50:c7:f1:d3:fe:2f:34:56:d4:53:d0:80:d5:65:d5:90: 47:01:af:88:03:69:71:5c:90:c2:5a:38:fa:b0:b8:b9:cf:34: ac:b4:eb:6f:c6:68:61:21:c7:b1:13:d5:6c:ea:3c:47:56:e1: 70:ea:23:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjYwMjI4MTcyMzIzWhcNMjYwMzA3MTcyMzIzWjAYMRYwFAYD VQQDDA02OWEzMjQ4Yi05NTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUqSh/HurwAQq3ugjhKXSY7XIxbOjfV80JedDdtKN2XTe0cN6zc0H4j1MgCM CJZL4W9UjKKsCobr+sr+x7/NJXixLbD94S7u59+QglqS1KGymbmU0A4vZknQ2QiF TS2VVffBnlWdqHDE/fJHymu7W+4w2Wt11Gc8GFUdKqfmtIovoBmIcHTKjKa0epRH LxOsQHXcKOnURxSbJQBK9PQapF+7B23Z4hnR5vzl3C9v1r594vSoSBJfryP4eYWz nvp9XiOtH1DRsW29owaWsiV4YGWOCGpT6ohuq8WH1t8vRYqGMxTZykm8Dax+LL1d Rgb4rQdeMaHyoroIbhGsEfcAIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwpt2sI UUNki6H7w20eayCDcglTMB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnXZjGgEqCk7iIKP+WB5MJpgifRGufYZP4VL2EvdPuVESyX7TxQcJX+nPi/87 Qc6gm9FoO5rf58LXtqTR9Kzod/jNkDo8eJzYn5tfMyg8tt67aB1/UH0E6wCYDDrJ pRLX23TLHDmDzER7AOMo7BWFuTmGK3auaC4hZKNsItFVj4DN6JYlIilkJ3Rs/xTQ csvE+KzoBcKOYLaZEzSm9KxxaUnKlRsjQ55RFSUP3z1D6+F4Js3LcnaP27l2f2x7 d9OgWPHCmmi+QSRQx/HT/i80VtRT0IDVZdWQRwGviANpcVyQwlo4+rC4uc80rLTr b8ZoYSHHsRPVbOo8R1bhcOojdQ== -----END CERTIFICATE-----Generated at Sun Mar 1 21:10:08 2026 by rpki-client