$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: OrCcqbJrt1YUmgF/JD7NZ7uXjcrUoOvCQaWxFA+TNCg= Subject key identifier: 0E:F5:24:17:0A:9E:29:2B:B0:3E:A3:7E:70:42:E8:9E:62:93:3D:1D Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 08B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 0879 Signing time: Tue 24 Mar 2026 20:31:26 +0000 Manifest this update: Tue 24 Mar 2026 20:31:26 +0000 Manifest next update: Tue 31 Mar 2026 20:31:26 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: hhgsupQB6i4G7srH4x4s2ob5ud+rNT5bSeLtuVoKOoA=) 2: 0C64C6B2821011F0B329B866C4F9AE02.roa (hash: UuZBWjQy/vvCDj1GH11Ut9+9Pjsx/5KL/8Qu7tKsi7U=) 3: 931A1664264611F1BB7525369F833773.roa (hash: O+dFRmqz0HLQWE2NlORO6GptWeFGJW4FEbE2GeFkulo=) 4: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: 1hK6aCJ+7Fb1oUPOZ4u6IyJKzDYRKvTsmB4Y2o3Noe8=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: PXtviaHqQJLCMEu9tn+Fq2a2NfU37e2CJGxdPkOxh1g=) 6: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: 6t+wjHRQ/GqT5IcSFRj+6zc7NKRi89qTochP2LMsRS8=) 7: C3738F60A78511F0B1D3342CC4F9AE02.roa (hash: tB/DnIqV82CpIIhO+TP7hcH1C9TgViQTWGZ17z9LsKo=) 8: 7F9EB0A28CF111F09EC8727CC4F9AE02.roa (hash: gzcB5bzyDXKQ7TWulNDMH2WNKACJo+cBlc1OpEzaIqo=) 9: B7AD6F08264611F1A7E2573D9F833773.roa (hash: cAi1E/gIPdIvRZ5EylPtBXr5xfvPwzP6uzvwERgkasg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Mar 24 20:31:26 2026 GMT Not After : Mar 31 20:31:26 2026 GMT Subject: CN=69c2f49e-f695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:05:8f:84:ee:d9:6f:76:e8:02:00:49:04:6c: 45:99:ec:d0:ba:da:31:f4:02:6f:cb:f4:9f:3a:59: 80:9a:a0:40:f0:e6:8c:36:9d:42:47:a7:73:88:88: b4:35:e0:c8:6b:e7:12:12:4d:de:98:c1:cf:e2:a2: f9:dd:23:46:d4:4a:5a:c7:a6:97:8e:06:01:8a:76: 28:20:d5:ae:c0:5b:3a:ca:63:ae:52:d3:72:e8:f1: 0f:e1:d1:30:f8:67:bf:6e:82:09:f4:a4:f4:b1:6f: c4:1a:3c:8f:06:5e:af:ce:2c:fe:64:5b:46:a5:85: b4:73:6e:2e:cb:0f:96:9a:99:bd:d4:3c:d2:d9:82: 51:cd:73:1a:cf:9d:42:87:66:e1:02:8c:57:a3:07: 38:fb:f1:a5:02:8e:9e:6e:11:96:ca:ab:0d:78:e4: 4b:27:c0:61:49:eb:d4:81:d7:08:ec:e9:08:6c:fb: 11:79:8d:40:1f:d1:dd:cc:db:44:e9:55:73:65:77: f6:74:48:ae:50:02:60:ca:32:e2:56:8b:4a:d5:b1: a8:97:17:21:68:2d:37:5b:49:56:0e:90:6f:00:30: b1:e9:08:bf:5d:89:86:f0:83:ea:47:6a:13:51:52: 04:65:f4:a1:f8:a4:6e:71:17:55:79:6b:67:9f:0e: ec:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F5:24:17:0A:9E:29:2B:B0:3E:A3:7E:70:42:E8:9E:62:93:3D:1D X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:11:07:ae:31:e2:ae:76:2e:4e:67:ea:0c:43:42:87:9a:9e: d5:bd:bc:40:6c:f2:7d:19:6f:0f:1c:c6:96:d8:1f:42:35:a0: 69:eb:c2:d7:ee:24:b8:d5:73:88:36:22:7e:e2:f1:d6:08:54: 8d:86:b6:1e:55:45:78:ef:67:65:54:a8:d6:aa:9c:fa:3e:46: a4:e3:43:e7:18:65:60:02:fb:94:6f:b5:03:04:ca:bd:85:65: 08:b0:de:d3:ca:e2:ab:b8:c6:b6:9e:99:df:e3:91:fc:b7:9c: 22:b5:09:01:a4:8c:3b:ad:dd:54:6e:69:98:c8:c7:23:a5:6a: 2c:76:fa:07:e1:2a:a7:6a:a9:cc:94:bb:32:16:6e:eb:71:e3: 02:bb:c7:a8:df:06:96:2c:f7:34:e4:dc:7f:fe:18:20:e5:78: af:5d:1d:d8:5a:e2:0b:04:53:97:80:c9:a7:9f:33:97:a8:89: f1:b0:8d:8e:29:13:1d:02:af:66:7f:fc:e8:6d:02:ae:fe:ee: a8:a1:8b:26:d3:00:c6:bf:28:d2:da:9d:80:9a:5e:2c:dc:dd: 9b:47:6b:58:9c:c3:49:82:7e:06:23:0e:e2:2e:6f:5f:29:a4: b0:43:e6:17:53:2c:78:ce:6a:af:6c:7f:d2:0b:e0:55:7e:ed: b1:3b:ff:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjYwMzI0MjAzMTI2WhcNMjYwMzMxMjAzMTI2WjAYMRYwFAYD VQQDEw02OWMyZjQ5ZS1mNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QWPhO7Zb3boAgBJBGxFmezQutox9AJvy/SfOlmAmqBA8OaMNp1CR6dziIi0 NeDIa+cSEk3emMHP4qL53SNG1Epax6aXjgYBinYoINWuwFs6ymOuUtNy6PEP4dEw +Ge/boIJ9KT0sW/EGjyPBl6vziz+ZFtGpYW0c24uyw+Wmpm91DzS2YJRzXMaz51C h2bhAoxXowc4+/GlAo6ebhGWyqsNeORLJ8BhSevUgdcI7OkIbPsReY1AH9HdzNtE 6VVzZXf2dEiuUAJgyjLiVotK1bGolxchaC03W0lWDpBvADCx6Qi/XYmG8IPqR2oT UVIEZfSh+KRucRdVeWtnnw7sCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA71JBcK nikrsD6jfnBC6J5ikz0dMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABREHrjHirnYuTmfqDENCh5qe1b28QGzyfRlvDxzGltgfQjWgaevC1+4kuNVz iDYifuLx1ghUjYa2HlVFeO9nZVSo1qqc+j5GpOND5xhlYAL7lG+1AwTKvYVlCLDe 08riq7jGtp6Z3+OR/LecIrUJAaSMO63dVG5pmMjHI6VqLHb6B+Eqp2qpzJS7MhZu 63HjArvHqN8Gliz3NOTcf/4YIOV4r10d2FriCwRTl4DJp58zl6iJ8bCNjikTHQKv Zn/86G0Crv7uqKGLJtMAxr8o0tqdgJpeLNzdm0drWJzDSYJ+BiMO4i5vXymksEPm F1MseM5qr2x/0gvgVX7tsTv/DQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:54:37 2026 by rpki-client