$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: g0qOOOs5l7mz5U2V3CfUaXTKFOhiCj7iLc9Ipsz2WpI= Subject key identifier: 2B:9D:88:16:7B:5B:B2:B1:88:CC:D7:E4:95:0B:FA:7E:2A:57:26:19 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 025D Signing time: Sun 01 Mar 2026 02:49:10 +0000 Manifest this update: Sun 01 Mar 2026 02:49:10 +0000 Manifest next update: Sun 08 Mar 2026 02:49:10 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: BbpRJvs6j2wVQCwy/BTFbVCNcF7us+05SKpuJO2i/6o=) 2: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) 3: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 4: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Mar 1 02:49:10 2026 GMT Not After : Mar 8 02:49:10 2026 GMT Subject: CN=69a3a926-444b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c4:d1:aa:6d:d1:ef:20:bd:af:19:e8:99:54: 76:88:06:0b:7c:51:0d:b5:ed:54:22:7d:19:b9:7f: 51:29:04:8a:0a:1b:8c:c3:db:01:11:56:d1:d9:3e: 0d:45:f4:a4:dd:0a:39:bc:db:c3:8e:05:ce:89:31: 93:df:1f:41:05:fd:01:de:52:97:02:f6:0b:aa:93: 11:d0:c0:76:15:07:bc:f4:71:37:69:57:8d:7e:b1: 16:cb:8c:36:25:9c:8d:77:13:22:cc:3b:ce:56:34: 40:40:6f:16:b5:1b:8e:7c:32:a6:58:b0:cc:e1:b0: 39:c0:d5:07:9a:43:19:02:cd:e8:0c:c9:ac:eb:cd: 33:af:7a:93:25:ee:68:81:29:67:fa:44:15:ae:df: 74:69:77:cd:e1:54:28:3d:63:34:23:e1:7e:42:08: 45:23:e1:1d:f1:a2:d4:65:09:2f:47:20:51:96:9d: 9a:45:07:6d:17:91:43:c0:f6:38:2a:41:f3:2d:ee: 60:fc:86:d0:59:28:1b:3b:6f:3d:0b:bb:ca:b0:0b: 1f:88:36:f3:54:c6:c0:20:c5:13:e8:29:97:fd:15: 4d:04:b3:de:7c:6c:92:f0:9f:80:c1:7e:d8:81:b2: 4a:56:f3:71:12:2d:eb:6a:d1:b6:00:92:2c:14:42: 4c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9D:88:16:7B:5B:B2:B1:88:CC:D7:E4:95:0B:FA:7E:2A:57:26:19 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b6:8f:f6:0b:78:12:05:9d:d0:48:23:64:db:06:df:63:d0: 36:36:25:ae:8d:cb:50:24:ac:bb:8e:ed:75:78:86:07:f8:9b: 9a:d8:9a:32:d5:0d:29:f7:59:ed:b1:56:b9:01:95:ff:55:c0: a5:51:3f:53:86:1a:9b:25:28:70:19:16:d4:30:25:1c:97:d8: b0:dd:7f:45:45:1e:be:88:de:c6:8f:d4:73:c2:39:55:0d:8e: 53:21:f9:f8:44:cf:fe:90:8e:07:39:53:40:37:95:eb:69:96: ed:3a:8b:5e:52:1a:aa:a0:9c:3a:d2:01:cd:03:ca:f8:38:9d: 28:fd:93:be:4e:05:5f:5d:63:dd:fe:ae:b9:1f:5f:c8:c1:3a: 2d:8e:00:80:2a:19:91:4d:46:30:6b:63:71:ff:be:2f:25:44: c6:7d:69:b0:8e:e3:36:6e:e2:af:e9:f7:b6:3c:71:7b:cd:6c: fa:94:43:fc:e4:49:f5:25:27:01:0b:f5:d5:71:b4:e1:82:a6: f5:9a:85:9f:df:ac:4a:19:90:73:c1:27:88:67:49:f8:b5:cb: 7a:87:9e:7b:1e:b6:36:25:76:db:60:87:c0:0f:d0:e0:fe:f4: 51:0d:92:46:ef:00:2f:83:0e:9d:48:18:39:6e:2a:e0:29:5d: 66:e5:ed:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjYwMzAxMDI0OTEwWhcNMjYwMzA4MDI0OTEwWjAYMRYwFAYD VQQDDA02OWEzYTkyNi00NDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMTRqm3R7yC9rxnomVR2iAYLfFENte1UIn0ZuX9RKQSKChuMw9sBEVbR2T4N RfSk3Qo5vNvDjgXOiTGT3x9BBf0B3lKXAvYLqpMR0MB2FQe89HE3aVeNfrEWy4w2 JZyNdxMizDvOVjRAQG8WtRuOfDKmWLDM4bA5wNUHmkMZAs3oDMms680zr3qTJe5o gSln+kQVrt90aXfN4VQoPWM0I+F+QghFI+Ed8aLUZQkvRyBRlp2aRQdtF5FDwPY4 KkHzLe5g/IbQWSgbO289C7vKsAsfiDbzVMbAIMUT6CmX/RVNBLPefGyS8J+AwX7Y gbJKVvNxEi3ratG2AJIsFEJMjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCudiBZ7 W7KxiMzX5JUL+n4qVyYZMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKbaP9gt4EgWd0EgjZNsG32PQNjYlro3LUCSsu47tdXiGB/ibmtiaMtUNKfdZ 7bFWuQGV/1XApVE/U4YamyUocBkW1DAlHJfYsN1/RUUevojexo/Uc8I5VQ2OUyH5 +ETP/pCOBzlTQDeV62mW7TqLXlIaqqCcOtIBzQPK+DidKP2Tvk4FX11j3f6uuR9f yME6LY4AgCoZkU1GMGtjcf++LyVExn1psI7jNm7ir+n3tjxxe81s+pRD/ORJ9SUn AQv11XG04YKm9ZqFn9+sShmQc8EniGdJ+LXLeoeeex62NiV222CHwA/Q4P70UQ2S Ru8AL4MOnUgYOW4q4CldZuXtMQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:16:33 2026 by rpki-client