$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: pj0QnXvANsXsuN5y87jRoN5AimjmwxzMpqsSB9+evb8= Subject key identifier: 07:09:AC:9A:8F:6E:0C:BC:A4:C1:0C:E1:C4:17:ED:21:1F:59:EC:2D Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 227B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 222E Signing time: Sat 28 Feb 2026 15:54:18 +0000 Manifest this update: Sat 28 Feb 2026 15:54:17 +0000 Manifest next update: Sat 07 Mar 2026 15:54:17 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: RYqQy6dpg9hWrK38F3Mx/io3Ojz+I3b4h7KZvoLqKmQ=) 2: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: tha3MuUqAY4uta6oQkpRf/6b/EDrjv+89kT9R3U6DBE=) 3: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 8CfQ0/1GwUUp0J0kvZBXA7fizuzpoZuw6UptgYm1mO8=) 4: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 8sAPNw5z1PRPxkwjbu7QaGHnJae/irQnm0Y3M/aTyzo=) 5: 2D477384D9C711F098E1B70271D3641D.roa (hash: DE+aX0zYPSkZlOiHZwp9PIbSMR2LTCu2LXvGYzXa9NQ=) 6: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: pHTu337dbSxJnT3CyDhgI/d9oBjNP9lN6T+b/cHszRk=) 7: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: W3kQqETMCmWx1rkG4UQFdMD9AvtHip25lMvzH/UT/O4=) 8: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8827 (0x227b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Feb 28 15:54:17 2026 GMT Not After : Mar 7 15:54:17 2026 GMT Subject: CN=69a30faa-b62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:43:fc:d1:b4:c0:fb:13:02:3c:81:e3:e6:f7: d2:9f:93:8f:35:08:00:03:9b:3c:42:8c:89:c7:49: a9:a0:64:e7:70:40:d0:32:88:07:af:98:ca:da:df: f5:20:0f:74:04:c8:f4:df:fa:9f:51:16:fe:19:2d: 73:31:b5:4b:92:e1:41:b4:ba:e7:1a:bc:c5:56:8f: 85:e7:80:f0:81:94:56:0b:51:48:ed:b9:a7:04:05: a2:9a:0e:72:6f:6f:0d:83:25:a5:41:d2:5b:28:69: 0b:a6:99:bc:51:6b:31:bd:8f:b3:10:f7:b5:be:7b: 4f:86:1b:59:d4:2c:ed:e1:0a:5f:3c:83:5b:a8:42: e3:32:d4:84:e7:14:df:08:e3:cc:e5:f8:18:64:93: c7:e6:21:95:9d:30:b4:49:0c:86:2b:dd:ef:e5:d1: 28:b1:5e:3f:92:5c:e4:58:c5:2d:5d:8a:a0:be:47: 4e:aa:6f:50:4d:f9:5f:11:c6:0f:6f:b2:79:90:d9: c2:27:fd:25:cc:fb:98:fd:59:84:4a:be:ae:4c:43: 4a:24:42:c0:bb:ca:98:e7:46:df:34:ed:05:ed:d6: 5e:f5:a2:c6:58:f2:f9:d7:c3:90:aa:8c:2e:0e:30: 34:a7:20:12:bd:3a:be:15:f1:cc:48:df:ac:60:a6: 53:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:09:AC:9A:8F:6E:0C:BC:A4:C1:0C:E1:C4:17:ED:21:1F:59:EC:2D X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:fc:c7:94:f7:ea:07:18:93:9a:c1:ed:1f:63:90:89:dc:08: fc:fc:2c:0e:97:db:de:a6:7d:50:8e:74:56:03:f3:4a:6b:67: a9:22:73:ad:db:0e:08:d3:63:c2:a4:07:78:5d:ce:4f:9a:28: 41:8e:8f:7f:2e:bb:c5:58:46:1a:27:37:5e:ca:c8:5f:9a:1e: 0d:d3:24:e7:b3:17:17:b5:67:9f:8e:22:da:3a:bb:89:19:68: 68:d5:42:28:06:11:d1:81:7d:69:c1:21:98:4d:f0:00:43:81: 19:9a:5a:5d:5f:ba:fe:ce:37:31:ef:6d:b3:eb:df:24:ba:6f: ae:f3:bd:83:29:23:05:54:3c:4a:c5:79:97:e6:ce:5b:d2:b1: 53:e5:17:a3:b1:02:15:1d:d8:ad:b9:e7:b0:be:12:90:04:95: 04:48:7d:56:2d:8b:1a:46:b6:9b:d6:6c:21:90:b3:25:4c:2a: ef:26:39:ba:f5:7b:22:3f:98:19:5a:4a:d8:bb:49:63:73:e4: a1:7e:b9:e7:61:74:d2:2f:5a:14:f7:8b:28:db:86:96:ec:c7: 0b:e3:c9:26:50:e6:c8:15:7a:51:75:4e:5b:5d:28:be:16:77: 25:f4:59:95:98:ae:d5:f5:14:cc:72:96:20:1c:5d:17:a5:df: 11:24:f6:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICInswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwMjI4MTU1NDE3WhcNMjYwMzA3MTU1NDE3WjAYMRYwFAYD VQQDDA02OWEzMGZhYS1iNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UP80bTA+xMCPIHj5vfSn5OPNQgAA5s8QoyJx0mpoGTncEDQMogHr5jK2t/1 IA90BMj03/qfURb+GS1zMbVLkuFBtLrnGrzFVo+F54DwgZRWC1FI7bmnBAWimg5y b28NgyWlQdJbKGkLppm8UWsxvY+zEPe1vntPhhtZ1Czt4QpfPINbqELjMtSE5xTf COPM5fgYZJPH5iGVnTC0SQyGK93v5dEosV4/klzkWMUtXYqgvkdOqm9QTflfEcYP b7J5kNnCJ/0lzPuY/VmESr6uTENKJELAu8qY50bfNO0F7dZe9aLGWPL518OQqowu DjA0pyASvTq+FfHMSN+sYKZTmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcJrJqP bgy8pMEM4cQX7SEfWewtMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOfzHlPfqBxiTmsHtH2OQidwI/PwsDpfb3qZ9UI50VgPzSmtnqSJzrdsOCNNj wqQHeF3OT5ooQY6Pfy67xVhGGic3XsrIX5oeDdMk57MXF7Vnn44i2jq7iRloaNVC KAYR0YF9acEhmE3wAEOBGZpaXV+6/s43Me9ts+vfJLpvrvO9gykjBVQ8SsV5l+bO W9KxU+UXo7ECFR3YrbnnsL4SkASVBEh9Vi2LGka2m9ZsIZCzJUwq7yY5uvV7Ij+Y GVpK2LtJY3PkoX6552F00i9aFPeLKNuGluzHC+PJJlDmyBV6UXVOW10ovhZ3JfRZ lZiu1fUUzHKWIBxdF6XfEST2Pg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:39:35 2026 by rpki-client