$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: 1UCpNMkXyQe87T09EZgZFW7SEHh9R9CAfXXerBrjjN8= Subject key identifier: E3:C2:66:81:1D:E9:1D:AD:6C:D8:E4:18:B8:28:2F:42:76:34:52:1E Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 01BF Signing time: Sun 01 Mar 2026 04:35:32 +0000 Manifest this update: Sun 01 Mar 2026 04:35:32 +0000 Manifest next update: Sun 08 Mar 2026 04:35:32 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: 9BeglbjCjFDapmvZA7YM4iYkvR6V5380xaOwFGK3wps=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: OgtSGJ5OXdScPeyQQLIa+zffj6S5x6FMffLKFbYg9qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Mar 1 04:35:32 2026 GMT Not After : Mar 8 04:35:32 2026 GMT Subject: CN=69a3c214-5eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:b7:1f:a4:cc:2a:27:1c:81:44:15:c4:65:0e: 05:8e:9e:c5:c1:98:7d:d5:21:a0:34:6b:73:a4:44: df:e2:c8:c2:e2:d3:9b:ce:a3:13:2c:59:20:5d:11: 9d:fa:8c:57:45:e7:d5:66:2f:38:75:43:a6:da:18: 78:4f:57:d5:c9:d7:ce:26:76:23:ac:37:53:ca:de: ff:cd:30:e8:2c:d7:2f:cf:cb:80:13:9d:9a:99:b0: 3f:1e:7b:38:31:10:36:9f:c6:fb:66:c8:70:e5:91: c9:6f:b2:8b:c9:e5:3d:5e:c8:57:f8:f5:b2:5a:c2: 67:e1:c0:a7:ff:ff:27:db:62:e9:df:41:c6:86:2f: 17:0c:42:87:48:f4:fd:2e:be:85:44:25:b1:ea:85: df:43:11:03:e5:62:f7:fc:de:d9:26:cf:bf:ff:da: 4a:f2:0e:85:90:34:1f:da:e2:14:a6:2e:8c:e2:e0: 65:d0:eb:59:ac:4c:e4:2b:92:a5:8b:bc:0c:a4:40: 51:16:04:e1:80:d4:ab:2a:ff:a3:0d:54:1f:c8:e2: 0c:59:58:b6:82:7c:23:9f:74:e8:0f:a4:6d:eb:1c: fd:42:62:da:e7:54:57:fd:32:61:97:d2:96:3e:13: 1f:74:0b:1c:6a:4f:3a:6f:94:05:cd:6e:92:e5:24: 86:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C2:66:81:1D:E9:1D:AD:6C:D8:E4:18:B8:28:2F:42:76:34:52:1E X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ee:6c:c4:ea:dc:30:10:6f:31:75:63:1a:30:6d:3f:1e:f6: 45:5d:13:b1:aa:b9:17:91:f0:95:6a:ba:6c:de:7d:16:74:3f: 99:56:c1:f0:9b:25:51:1a:e8:83:ed:d6:a8:48:97:c9:33:a2: 29:12:cc:4d:9e:4b:81:d6:ce:af:b8:e7:b4:a5:f1:1c:d9:87: ac:9e:83:22:87:3a:ee:f8:aa:7e:e6:f5:6c:b8:d5:46:70:68: bc:98:ab:f2:91:c3:fd:87:2b:62:a7:bb:f1:0c:b7:a3:cb:10: 93:32:0a:90:97:89:76:47:d1:ff:99:9a:c3:d0:2d:ac:d6:41: 1d:34:69:fa:d9:9d:46:2c:83:7d:2a:10:2d:d2:50:5e:06:9d: ed:b6:9b:fd:92:b3:2d:25:22:56:6e:fa:af:85:76:ee:c3:c9: 23:72:83:f7:36:6f:bb:62:0b:79:bd:57:f3:37:ef:d1:51:69: 11:18:f2:60:54:c4:84:e5:7e:89:b0:c8:58:0b:56:61:65:94: a7:54:38:79:33:1c:4f:08:2d:dc:70:c4:79:62:3f:ab:66:b6: 29:bc:60:0c:01:05:c2:82:dc:cd:02:25:cd:7b:1c:82:ae:ae: de:e6:d0:61:8b:04:07:0e:24:cf:34:d8:3e:cb:d9:60:d4:ba: 3b:66:1f:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjYwMzAxMDQzNTMyWhcNMjYwMzA4MDQzNTMyWjAYMRYwFAYD VQQDDA02OWEzYzIxNC01ZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkLcfpMwqJxyBRBXEZQ4Fjp7FwZh91SGgNGtzpETf4sjC4tObzqMTLFkgXRGd +oxXRefVZi84dUOm2hh4T1fVydfOJnYjrDdTyt7/zTDoLNcvz8uAE52ambA/Hns4 MRA2n8b7Zshw5ZHJb7KLyeU9XshX+PWyWsJn4cCn//8n22Lp30HGhi8XDEKHSPT9 Lr6FRCWx6oXfQxED5WL3/N7ZJs+//9pK8g6FkDQf2uIUpi6M4uBl0OtZrEzkK5Kl i7wMpEBRFgThgNSrKv+jDVQfyOIMWVi2gnwjn3ToD6Rt6xz9QmLa51RX/TJhl9KW PhMfdAscak86b5QFzW6S5SSGLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOPCZoEd 6R2tbNjkGLgoL0J2NFIeMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANO5sxOrcMBBvMXVjGjBtPx72RV0Tsaq5F5HwlWq6bN59FnQ/mVbB8JslURro g+3WqEiXyTOiKRLMTZ5LgdbOr7jntKXxHNmHrJ6DIoc67viqfub1bLjVRnBovJir 8pHD/YcrYqe78Qy3o8sQkzIKkJeJdkfR/5maw9AtrNZBHTRp+tmdRiyDfSoQLdJQ Xgad7bab/ZKzLSUiVm76r4V27sPJI3KD9zZvu2ILeb1X8zfv0VFpERjyYFTEhOV+ ibDIWAtWYWWUp1Q4eTMcTwgt3HDEeWI/q2a2KbxgDAEFwoLczQIlzXscgq6u3ubQ YYsEBw4kzzTYPsvZYNS6O2Yfeg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:11:54 2026 by rpki-client