$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft File: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json) Hash identifier: 6kWcasOBOjzCeqgJjkjUOdWKh5UDZ0Ra86DTpInfWVI= Subject key identifier: 24:8A:A4:45:04:9A:ED:D4:1A:04:27:F6:BB:07:CD:E5:89:6E:BF:63 Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft Manifest number: 1D Signing time: Sun 01 Mar 2026 10:24:36 +0000 Manifest this update: Sun 01 Mar 2026 10:24:35 +0000 Manifest next update: Sun 08 Mar 2026 10:24:35 +0000 Files and hashes: 1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: BCAZjfJ9u3+tThYl9GAtbhrGvECd5TSDe48XxcVAxZI=) 2: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: HbHjXp+sWltvcXdE+nROLh6px2HlDWUCxM1ZYrQPQyU=) 3: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: XIAZRRCeQ8xZFQbG4kWb91/7TOTp31whZgTNDjb+pgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Validity Not Before: Mar 1 10:24:35 2026 GMT Not After : Mar 8 10:24:35 2026 GMT Subject: CN=69a413e3-d3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:fc:84:2b:e1:88:a5:3d:82:26:70:45:69: 11:18:63:9e:8e:a7:12:30:03:d5:90:cd:7a:ba:87: a8:26:09:b9:dd:38:30:9f:f1:86:87:97:5e:b8:0a: a2:a8:05:17:93:be:48:c1:47:9a:02:13:44:a8:b0: 34:5c:5d:44:bd:96:e7:27:83:9e:29:79:39:a5:26: 81:a6:f2:94:93:b9:93:b1:fe:5c:25:2f:d5:e8:f3: 81:5c:de:12:a4:77:3e:3c:75:ca:b2:3d:81:de:a8: 32:9c:f2:d0:d8:c1:59:b6:3b:70:90:ad:d4:8b:0b: 0f:e0:6a:6e:be:3d:80:f2:1e:ec:04:95:25:0a:23: b6:fa:73:82:77:04:be:53:54:5e:bb:d3:f6:0f:f0: 96:34:53:de:22:d7:1b:17:82:ce:96:3b:96:32:b6: a0:1c:c2:5e:5e:e6:13:36:b1:4a:6c:00:2d:a8:cd: 3c:c7:f9:32:22:9e:68:43:39:3d:bc:b2:51:1c:9e: 52:16:b7:ce:5d:63:62:be:8b:b8:4f:a2:87:b6:5a: e8:c8:5f:b5:b9:ae:9c:36:7c:9e:ea:b0:3c:60:20: 0a:1b:fd:31:e9:68:86:44:37:fe:e5:4a:35:66:98: ff:77:1e:26:44:18:35:91:9b:a5:20:54:2b:ac:f5: 3c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8A:A4:45:04:9A:ED:D4:1A:04:27:F6:BB:07:CD:E5:89:6E:BF:63 X509v3 Authority Key Identifier: keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:12:9f:13:bc:5f:83:e7:14:37:25:ed:4d:2b:bb:c8:97:dd: 82:e0:7f:b8:6e:88:43:09:ec:1f:ca:8f:a2:fa:64:13:77:54: 7c:57:83:24:d1:83:91:48:94:ea:ef:9f:ed:8d:ea:6b:82:7c: 64:df:e1:26:4b:5c:78:a1:21:df:3f:58:d2:51:2f:44:53:ff: 80:e9:64:2c:c6:3c:c1:a8:91:4c:f7:5e:e0:0a:0e:1b:46:bb: 0d:bd:d3:d0:6a:5f:f8:d9:56:cc:a0:51:c4:f3:e1:9a:04:38: 1a:67:53:03:05:78:40:78:9a:0f:9d:1f:51:59:b9:c4:36:60: 34:d4:b4:5c:9f:38:b2:96:3e:14:b4:24:c2:20:0e:6c:be:2e: e2:d3:84:35:5a:a7:7b:b5:85:55:e8:c2:0d:3f:1a:6f:aa:99: 8f:04:65:62:06:62:f8:49:0e:8f:4b:d4:01:c8:e3:b0:79:60: 1b:c6:fc:6f:ac:17:86:4f:f8:60:e9:77:34:43:f0:af:77:bb: 21:2e:da:13:b4:96:99:f4:d7:ee:6f:b9:92:13:21:5e:c7:13: 8a:6d:74:8c:87:e3:0a:7a:fa:4a:7e:c9:a2:79:40:3d:33:c7: 73:6e:d0:c1:35:d3:3e:aa:b8:0c:c5:3a:05:47:26:00:1d:5b: 94:98:be:0b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkIwQzExMC8GA1UEBRMoRDVCMTY3Njg5MTRBODBDOTMxMjQ2Mjk2MTBDQzQwNTAy QUFFRDBFOTAeFw0yNjAzMDExMDI0MzVaFw0yNjAzMDgxMDI0MzVaMBgxFjAUBgNV BAMTDTY5YTQxM2UzLWQzZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6dfyEK+GIpT2CJnBFaREYY56OpxIwA9WQzXq6h6gmCbndODCf8YaHl164CqKo BReTvkjBR5oCE0SosDRcXUS9lucng54peTmlJoGm8pSTuZOx/lwlL9Xo84Fc3hKk dz48dcqyPYHeqDKc8tDYwVm2O3CQrdSLCw/gam6+PYDyHuwElSUKI7b6c4J3BL5T VF670/YP8JY0U94i1xsXgs6WO5YytqAcwl5e5hM2sUpsAC2ozTzH+TIinmhDOT28 slEcnlIWt85dY2K+i7hPooe2WujIX7W5rpw2fJ7qsDxgIAob/THpaIZEN/7lSjVm mP93HiZEGDWRm6UgVCus9TzpAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUJIqkRQSa 7dQaBCf2uwfN5Yluv2MwHwYDVR0jBBgwFoAU1bFnaJFKgMkxJGKWEMxAUCqu0Okw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QjBDL0I2MTM4NkU2RjEx QzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01reEpHS1dFTXhBVUNxdTBP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJGbmFKRktnTWt4SkdLV0VNeEFVQ3F1ME9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 QjBDL0I2MTM4NkU2RjExQzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01r eEpHS1dFTXhBVUNxdTBPay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBOEp8TvF+D5xQ3Je1NK7vIl92C4H+4bohDCewfyo+i+mQTd1R8V4Mk0YORSJTq 75/tjeprgnxk3+EmS1x4oSHfP1jSUS9EU/+A6WQsxjzBqJFM917gCg4bRrsNvdPQ al/42VbMoFHE8+GaBDgaZ1MDBXhAeJoPnR9RWbnENmA01LRcnziylj4UtCTCIA5s vi7i04Q1Wqd7tYVV6MINPxpvqpmPBGViBmL4SQ6PS9QByOOweWAbxvxvrBeGT/hg 6Xc0Q/Cvd7shLtoTtJaZ9Nfub7mSEyFexxOKbXSMh+MKevpKfsmieUA9M8dzbtDB NdM+qrgMxToFRyYAHVuUmL4L -----END CERTIFICATE-----Generated at Mon Mar 2 11:05:44 2026 by rpki-client