$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: s8j3fwfqrW+dKdqr6WOi+NaBmPQdP8utwJgPLEzwHjE= Subject key identifier: E3:70:B6:0B:34:A4:9C:F0:11:6D:C3:E4:6A:70:84:18:AF:7A:4B:1E Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 7B Signing time: Tue 03 Mar 2026 07:22:46 +0000 Manifest this update: Tue 03 Mar 2026 07:22:45 +0000 Manifest next update: Tue 10 Mar 2026 07:22:45 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: 6sC5bNPASStow8199azX9kNg63YdFVBKALolLJGUmQI=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: Hc8ozT9yDfNYsIpquS99Gm4q+mTiTQ1cphIlHACdz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Mar 3 07:22:45 2026 GMT Not After : Mar 10 07:22:45 2026 GMT Subject: CN=69a68c45-fff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:14:3c:04:b7:03:92:15:8f:da:57:f7:df:18: 9e:34:1a:cb:7b:72:41:ca:f6:de:d9:e1:a0:cc:c0: 89:e5:e7:bc:fc:50:f0:af:0c:25:08:85:43:ef:1f: 91:6b:e1:97:84:d0:86:62:77:69:5a:37:10:e2:50: ab:4a:69:73:65:2a:19:c0:06:27:c9:24:29:92:4b: a3:79:04:46:ac:29:0e:10:1b:d3:49:e5:19:98:5e: 5a:48:8c:26:f9:f3:8a:5b:60:e6:c7:f7:45:9c:8b: 28:e4:ad:97:58:d0:7e:22:8f:67:c6:94:01:97:b2: 9a:33:46:c1:74:5e:7b:8f:b3:ef:cc:a7:58:21:29: a1:63:16:ee:81:6a:20:88:45:ad:ee:6f:d6:41:2b: 23:35:d1:88:5a:48:d0:b0:92:d0:64:d4:1e:4a:4c: bd:e9:03:36:73:90:94:ce:ef:fb:a0:76:f7:5c:62: c8:da:03:23:27:ab:fb:68:8c:df:3d:51:38:b7:03: 58:c5:b4:60:b8:2a:0b:89:c1:d0:e1:81:df:be:e4: e3:bf:48:01:b2:ca:45:eb:48:cd:e0:cc:34:e0:11: 88:0f:ba:ef:fe:ce:f5:86:3d:f4:20:39:2d:e5:ea: 25:45:98:d1:4f:3b:b5:bd:84:07:16:bf:d1:52:73: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:70:B6:0B:34:A4:9C:F0:11:6D:C3:E4:6A:70:84:18:AF:7A:4B:1E X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:5b:20:49:ec:c3:99:bb:32:26:04:d3:f3:0c:d1:74:b7:e4: 14:d2:24:bd:e0:e0:79:1a:27:cc:aa:67:20:97:a1:0e:15:d0: 3f:2c:d1:28:3a:e1:40:1c:82:1e:05:d8:bc:b5:1e:95:54:eb: 0f:4e:ca:ba:ff:87:7b:63:a2:a4:05:ec:04:24:d3:fa:43:40: 92:75:80:7f:9d:65:f3:71:0e:03:17:d0:2c:b7:2e:db:f7:4f: 6d:40:3c:91:7b:cf:17:75:43:cc:f1:20:e4:93:94:d9:f2:54: b4:e4:9e:b1:fa:17:14:a7:41:18:5f:d5:9e:d7:0c:52:ae:05: be:83:fc:f0:11:50:ab:5d:03:06:f9:51:57:d4:4a:8a:72:c0: 99:38:25:b0:f0:54:66:4a:62:bc:95:c3:8f:52:5d:60:19:f1: 6c:82:a3:b8:b1:cb:f8:fe:c8:ea:8b:28:86:b2:e9:1f:41:dc: b8:34:d3:e4:fd:20:ff:e6:25:21:fc:aa:19:7d:3b:78:37:c6: 78:b5:50:5d:15:43:67:84:50:c4:01:53:c3:16:b1:07:a0:80: 84:15:8d:3d:9f:44:9d:98:3b:4b:9e:ce:c6:fc:00:c5:5e:dc: af:2f:70:42:d5:bd:47:e7:4f:22:f1:05:89:52:ee:a9:62:0f: 01:94:4f:c6 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNjAzMDMwNzIyNDVaFw0yNjAzMTAwNzIyNDVaMBgxFjAUBgNV BAMTDTY5YTY4YzQ1LWZmZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCGFDwEtwOSFY/aV/ffGJ40Gst7ckHK9t7Z4aDMwInl57z8UPCvDCUIhUPvH5Fr 4ZeE0IZid2laNxDiUKtKaXNlKhnABifJJCmSS6N5BEasKQ4QG9NJ5RmYXlpIjCb5 84pbYObH90WciyjkrZdY0H4ij2fGlAGXspozRsF0XnuPs+/Mp1ghKaFjFu6BaiCI Ra3ub9ZBKyM10YhaSNCwktBk1B5KTL3pAzZzkJTO7/ugdvdcYsjaAyMnq/tojN89 UTi3A1jFtGC4KguJwdDhgd++5OO/SAGyykXrSM3gzDTgEYgPuu/+zvWGPfQgOS3l 6iVFmNFPO7W9hAcWv9FSc3NRAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU43C2CzSk nPARbcPkanCEGK96Sx4wHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBhWyBJ7MOZuzImBNPzDNF0t+QU0iS94OB5GifMqmcgl6EOFdA/LNEoOuFAHIIe Bdi8tR6VVOsPTsq6/4d7Y6KkBewEJNP6Q0CSdYB/nWXzcQ4DF9Asty7b909tQDyR e88XdUPM8SDkk5TZ8lS05J6x+hcUp0EYX9We1wxSrgW+g/zwEVCrXQMG+VFX1EqK csCZOCWw8FRmSmK8lcOPUl1gGfFsgqO4scv4/sjqiyiGsukfQdy4NNPk/SD/5iUh /KoZfTt4N8Z4tVBdFUNnhFDEAVPDFrEHoICEFY09n0SdmDtLns7G/ADFXtyvL3BC 1b1H508i8QWJUu6pYg8BlE/G -----END CERTIFICATE-----Generated at Wed Mar 4 08:18:45 2026 by rpki-client