$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: 9a5ymONplAeXvDxt4OVf5X7zPk0umhHDZ2AXBrMP9eo= Subject key identifier: 2A:ED:EE:AC:E5:AE:FF:8F:50:82:7D:55:93:57:0E:B0:F8:B3:79:ED Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0DEF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0DE7 Signing time: Sat 28 Feb 2026 17:59:39 +0000 Manifest this update: Sat 28 Feb 2026 17:59:38 +0000 Manifest next update: Sat 07 Mar 2026 17:59:38 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: 02OUUEyv7Q4JHMdyVlL5edFG3UXXvT1yI4LkGUgLPCU=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: Euz3FC5/THS/IJOs5pfq6woTR4rrsuQFYSRyDHYZ9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571, serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Feb 28 17:59:38 2026 GMT Not After : Mar 7 17:59:38 2026 GMT Subject: CN=69a32d0a-878a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:4a:d1:a6:c8:b9:ff:47:ae:82:ef:f6:eb: fb:fc:5a:36:f7:f9:a7:ae:a0:8d:2f:d4:f9:91:31: bd:30:8f:aa:05:b2:0b:34:37:b9:7c:c1:57:00:d3: 30:5e:5c:32:cd:64:6f:23:ab:d1:88:d5:bd:5d:47: 4c:78:df:55:42:7c:82:ab:32:62:85:b4:92:c5:e3: 98:54:3a:7f:15:11:6f:57:cc:2b:ed:34:e0:d2:35: d2:4c:4f:5d:0d:1b:93:87:93:37:58:09:4e:cd:22: 13:d5:b5:63:b1:6b:ad:7e:fc:85:93:f6:d8:50:56: bb:9d:5f:98:d6:90:a7:6d:27:f0:dd:12:54:2c:2c: 9d:59:83:04:69:d4:dc:95:7c:8e:f8:dc:d1:04:0a: 54:ce:71:80:df:6b:fd:1e:f8:c7:8b:89:a2:d2:c9: 5e:57:28:69:c9:53:d5:56:0a:6a:75:af:3e:ae:89: 84:65:aa:01:cf:fb:ee:8e:18:7b:1d:86:85:40:b8: 68:56:ef:48:f7:0b:38:6c:5d:62:0d:a3:50:00:32: 76:eb:b2:a7:d8:35:3c:f4:ee:88:1c:db:77:00:c6: 94:cf:39:0c:85:1e:d8:4b:ab:d2:54:53:27:ec:de: 4b:b7:6d:48:e5:0f:8c:6d:db:a0:1f:cd:bf:6a:73: 8a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:ED:EE:AC:E5:AE:FF:8F:50:82:7D:55:93:57:0E:B0:F8:B3:79:ED X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:13:4f:4d:54:0d:5b:1b:7a:1a:5d:84:54:fb:13:79:ec:3d: 0c:fb:15:6f:d7:bc:26:1c:f7:d9:2b:c0:41:34:55:ee:eb:88: 72:f8:ca:31:b5:0b:d0:23:1d:8e:ee:f9:ec:55:ec:2d:ba:e4: f3:d6:5c:34:c5:df:e6:a7:48:b6:aa:99:43:3b:32:fe:18:5e: 4b:6c:04:82:ea:44:8b:1f:37:ee:90:38:e5:59:8b:9d:ac:d1: 5e:d0:cf:c1:32:95:7a:f1:7a:66:98:a2:53:3f:6c:fa:01:f3: 34:93:8e:08:73:44:0a:95:7a:52:7a:6d:f2:49:a2:d6:ce:97: e9:2d:80:20:61:93:9a:8f:36:6a:bc:c6:5c:8d:8d:2e:04:51: c0:db:42:36:9f:d0:5d:53:f5:bc:e6:02:43:94:99:fe:38:43: 19:e8:1f:d6:5e:fc:db:be:a4:57:bd:88:93:58:f7:47:fb:4a: 28:fd:cd:b8:ca:53:3f:ac:90:4b:dd:dc:17:24:13:00:ce:97: d2:db:e1:ef:ef:e6:4e:1a:92:b5:f5:ea:d1:47:b3:0e:26:14: dd:98:f5:85:f0:0a:ed:53:5e:ba:f1:45:67:90:8d:44:dc:b8: 32:1e:29:2c:c8:d6:a7:25:42:11:f1:73:7a:45:ea:79:6f:4d: ba:0a:63:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjYwMjI4MTc1OTM4WhcNMjYwMzA3MTc1OTM4WjAYMRYwFAYD VQQDDA02OWEzMmQwYS04NzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpdK0abIuf9HroLv9uv7/Fo29/mnrqCNL9T5kTG9MI+qBbILNDe5fMFXANMw XlwyzWRvI6vRiNW9XUdMeN9VQnyCqzJihbSSxeOYVDp/FRFvV8wr7TTg0jXSTE9d DRuTh5M3WAlOzSIT1bVjsWutfvyFk/bYUFa7nV+Y1pCnbSfw3RJULCydWYMEadTc lXyO+NzRBApUznGA32v9HvjHi4mi0sleVyhpyVPVVgpqda8+romEZaoBz/vujhh7 HYaFQLhoVu9I9ws4bF1iDaNQADJ267Kn2DU89O6IHNt3AMaUzzkMhR7YS6vSVFMn 7N5Lt21I5Q+MbdugH82/anOK4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCrt7qzl rv+PUIJ9VZNXDrD4s3ntMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcBNPTVQNWxt6Gl2EVPsTeew9DPsVb9e8Jhz32SvAQTRV7uuIcvjKMbUL0CMd ju757FXsLbrk89ZcNMXf5qdItqqZQzsy/hheS2wEgupEix837pA45VmLnazRXtDP wTKVevF6ZpiiUz9s+gHzNJOOCHNECpV6Unpt8kmi1s6X6S2AIGGTmo82arzGXI2N LgRRwNtCNp/QXVP1vOYCQ5SZ/jhDGegf1l78276kV72Ik1j3R/tKKP3NuMpTP6yQ S93cFyQTAM6X0tvh7+/mThqStfXq0UezDiYU3Zj1hfAK7VNeuvFFZ5CNRNy4Mh4p LMjWpyVCEfFzekXqeW9NugpjuA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:15:55 2026 by rpki-client