$ rpki-client -vvf rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft File: ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft (raw, json) Hash identifier: lA+kBx8PU9Fhbpjc1i9VRZ3J/PKwEjiG/mDzgLG3yf4= Subject key identifier: 92:20:7F:BE:CA:90:6B:3E:2E:FA:66:E2:51:BB:71:C6:60:90:07:B5 Authority key identifier: 22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 Certificate issuer: /CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft Manifest number: 023C Signing time: Sun 01 Mar 2026 03:13:28 +0000 Manifest this update: Sun 01 Mar 2026 03:13:27 +0000 Manifest next update: Sun 08 Mar 2026 03:13:27 +0000 Files and hashes: 1: ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl (hash: qWzq7ghUjs+YcKNGT5D1mNScS0rGR0ir3w1qbzSncNQ=) 2: E816DFFAA90111ED867DA161C4F9AE02.roa (hash: vOOxk/wACi5vye03Jp84UhlJ9c1XFIWjF9wuLbozYvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A828, serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Validity Not Before: Mar 1 03:13:27 2026 GMT Not After : Mar 8 03:13:27 2026 GMT Subject: CN=69a3aed7-237e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bd:30:34:bf:6b:cf:a8:ca:54:49:43:1b:85: 9d:d8:2d:30:3e:fa:f3:e8:23:a3:d1:15:e8:41:e9: 3e:0d:3a:64:fa:0b:b1:b8:43:73:b2:ca:a6:40:eb: 00:2c:c2:1f:f4:6c:95:06:d1:c7:cd:77:96:dd:fe: 0a:51:f5:20:85:75:af:ae:77:e7:a7:17:b6:c7:bd: bf:e8:c5:d4:f2:72:b9:bc:08:99:84:26:64:a0:3f: 29:e1:67:dd:6b:89:b5:39:ce:5f:da:3c:6c:0c:8d: f9:10:55:15:42:f7:3d:e9:d2:19:c2:81:56:82:66: dd:ab:56:9f:08:f3:89:f0:e5:c2:c8:97:3a:eb:24: 35:6a:eb:e0:c0:d6:80:1f:97:49:8d:43:0a:c3:c1: be:a5:a7:e7:04:fb:10:47:60:fd:68:33:7f:b2:38: ec:09:8c:57:7b:14:b9:9a:51:10:46:6b:ac:88:ce: bf:35:f1:c3:2f:be:fe:b3:3c:10:61:b0:98:02:23: 31:60:ab:78:3f:80:7e:79:04:94:24:c4:17:85:ac: b1:1b:3d:ef:89:63:9f:40:1b:c5:a9:55:39:e1:a8: 9e:18:86:2a:8b:51:bd:b6:dd:a6:f6:9c:69:71:a0: cb:d3:c7:0a:56:52:1b:75:9f:09:c2:d0:48:84:61: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:20:7F:BE:CA:90:6B:3E:2E:FA:66:E2:51:BB:71:C6:60:90:07:B5 X509v3 Authority Key Identifier: keyid:22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:96:ed:80:2c:47:95:4c:2f:ff:6b:8b:ef:09:8c:42:ea:18: d3:a9:2d:40:d6:ee:10:e5:69:5f:57:3a:36:5f:c0:14:05:83: a9:1a:5f:c4:be:23:8e:14:c4:9e:c8:9b:fd:71:86:c5:00:d7: 8c:f8:b4:2e:fe:03:fd:6b:7c:eb:92:2a:93:76:6c:77:ec:09: 8c:c8:8b:7e:cf:c5:21:9d:6d:c5:c6:16:bc:bf:c0:61:fa:aa: a2:6d:e0:b0:79:92:90:28:be:e6:c2:4e:8a:cd:48:2e:47:4a: fb:52:9a:15:74:f5:12:ae:36:62:78:98:c8:25:5f:db:1f:ef: 0c:bc:4b:cb:c1:5c:a5:66:4b:ff:0a:9d:cf:2a:95:8e:db:6a: 13:b9:72:9d:1d:bd:44:b2:d0:4d:45:3f:fe:11:b3:f2:82:50: 77:ed:46:e7:7d:70:55:c3:fc:05:cb:97:da:0a:80:ef:09:dc: 02:47:16:13:e6:d1:a9:90:2d:18:f9:9c:5e:03:62:e4:47:0d: 53:66:79:79:5a:89:18:89:a0:eb:7c:f6:9b:5c:07:13:fe:a7: 68:27:7b:5b:74:6f:ea:4d:ee:cd:80:36:0d:d2:7e:5d:aa:be: 2e:bc:b0:49:30:ff:07:83:f1:5a:82:c7:50:c6:55:e6:6c:a8: b4:e4:f2:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE4MjgxMTAvBgNVBAUTKDIyNjAzRDZBMzNGMDZFMEE5RDEwRkJCMUVEOUUxRDM3 NDkyNDcwMDEwHhcNMjYwMzAxMDMxMzI3WhcNMjYwMzA4MDMxMzI3WjAYMRYwFAYD VQQDDA02OWEzYWVkNy0yMzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoL0wNL9rz6jKVElDG4Wd2C0wPvrz6COj0RXoQek+DTpk+guxuENzssqmQOsA LMIf9GyVBtHHzXeW3f4KUfUghXWvrnfnpxe2x72/6MXU8nK5vAiZhCZkoD8p4Wfd a4m1Oc5f2jxsDI35EFUVQvc96dIZwoFWgmbdq1afCPOJ8OXCyJc66yQ1auvgwNaA H5dJjUMKw8G+pafnBPsQR2D9aDN/sjjsCYxXexS5mlEQRmusiM6/NfHDL77+szwQ YbCYAiMxYKt4P4B+eQSUJMQXhayxGz3viWOfQBvFqVU54aieGIYqi1G9tt2m9pxp caDL08cKVlIbdZ8JwtBIhGF9MQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJIgf77K kGs+Lvpm4lG7ccZgkAe1MB8GA1UdIwQYMBaAFCJgPWoz8G4KnRD7se2eHTdJJHAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTgyOC9EREY5MDA1QUE4 RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2JncWRFUHV4N1o0ZE4wa2tj QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ltQTlhalB3YmdxZEVQdXg3WjRkTjBra2NBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTgyOC9EREY5MDA1QUE4RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2Jn cWRFUHV4N1o0ZE4wa2tjQUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArJbtgCxHlUwv/2uL7wmMQuoY06ktQNbuEOVpX1c6Nl/AFAWDqRpfxL4jjhTE nsib/XGGxQDXjPi0Lv4D/Wt865Iqk3Zsd+wJjMiLfs/FIZ1txcYWvL/AYfqqom3g sHmSkCi+5sJOis1ILkdK+1KaFXT1Eq42YniYyCVf2x/vDLxLy8FcpWZL/wqdzyqV jttqE7lynR29RLLQTUU//hGz8oJQd+1G531wVcP8BcuX2gqA7wncAkcWE+bRqZAt GPmcXgNi5EcNU2Z5eVqJGImg63z2m1wHE/6naCd7W3Rv6k3uzYA2DdJ+Xaq+Lryw STD/B4PxWoLHUMZV5myotOTytA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:36:22 2026 by rpki-client