$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: JoC94sJ5BkxVritl+00cc8STC10Ggk1k/ucSaXzDwxk= Subject key identifier: 4F:5E:B8:FE:AB:C3:06:C8:F1:1D:F5:82:F4:A1:8A:86:81:FE:60:36 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 10F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 10E7 Signing time: Sun 01 Mar 2026 23:30:21 +0000 Manifest this update: Sun 01 Mar 2026 23:30:17 +0000 Manifest next update: Sun 08 Mar 2026 23:30:17 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: vJ9h0klP+WXwvNT6MFCrGGOg8cCEfoCEftl3MRRPyO0=) 2: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: RiDf1XLYKZh+wmu0a6//ACSvTiLlex2fq/GN1xb8xX0=) 3: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: UBjBwHlmM/IFjT10AU767yueXJrZgOYMUiv13BTyuu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4339 (0x10f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Mar 1 23:30:17 2026 GMT Not After : Mar 8 23:30:17 2026 GMT Subject: CN=69a4cc0c-c098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1d:84:b7:3a:47:d4:db:21:d6:d4:64:7d:46: bb:a6:4c:48:0b:63:49:5b:56:a7:3b:ea:1b:d6:7a: 27:48:e2:ad:1b:5f:f6:bc:66:74:ab:ca:3d:08:35: bf:1e:1e:c6:d2:65:75:88:3c:a8:3b:6e:98:0b:09: d8:cf:24:59:20:9b:20:86:2d:19:d3:61:52:3f:18: 2c:40:ef:95:34:a9:16:7d:9a:c6:91:fb:a4:8d:67: 05:b8:e1:a0:fd:bc:78:55:99:8b:02:f9:b9:d7:24: 02:3a:c5:2c:c0:63:92:b4:b0:18:a2:d6:88:fb:73: c8:13:88:2a:d1:48:e6:ec:0e:ce:23:39:8f:71:94: e9:9e:d5:22:3a:4c:24:83:0e:32:7b:37:d5:74:c7: 28:0d:28:1c:9c:be:34:d9:86:3a:e4:71:f4:a1:9e: 75:e2:5b:e1:d8:70:94:6d:d5:67:31:59:3f:c9:c5: 5b:e9:36:ec:f0:de:f4:9b:61:13:1b:fc:f4:40:2c: 0a:c6:82:0c:de:40:25:09:4f:38:e1:5d:2f:a6:32: 34:05:39:3f:5d:f0:f9:fb:90:21:95:39:54:da:14: b9:c5:dd:ab:61:06:54:63:6d:e4:47:3f:ee:f2:4c: d3:7d:1d:48:88:3a:7a:91:66:6b:41:c5:5b:77:00: 1a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5E:B8:FE:AB:C3:06:C8:F1:1D:F5:82:F4:A1:8A:86:81:FE:60:36 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:39:44:8c:e8:73:4d:5a:65:d7:21:82:cb:2d:f5:0f:4f:65: 80:91:d2:9a:1d:07:fa:95:af:7a:99:b1:a2:93:53:93:95:82: 73:71:9d:27:ed:68:84:ab:4c:cb:46:39:e2:d0:91:83:90:a8: 85:91:ae:54:86:57:be:d0:e8:2a:ee:73:16:7d:42:a6:cd:33: 1f:6b:44:4e:4e:3d:58:8d:dd:42:99:24:36:55:c5:fd:29:06: 91:5b:3b:e8:d4:4b:92:0e:9e:bc:08:3f:c6:88:61:d0:b3:5c: d9:47:81:96:63:16:b4:93:85:15:77:1f:8c:78:df:6a:75:cb: 0a:2e:bd:ce:db:87:4e:66:4e:63:87:69:30:76:42:d1:5b:d1: b4:3d:01:31:c1:d1:a1:b8:e4:60:57:d0:55:c0:42:17:e8:8d: 24:83:40:d0:d1:9c:65:3b:b3:de:b7:53:19:bb:6b:6d:06:86: 86:3a:e4:7a:2c:57:de:da:08:91:d3:77:50:67:34:84:1e:e6: e8:80:b9:b3:56:c8:41:c8:bf:63:0f:47:6d:27:24:03:0d:24: 6e:c9:f4:2f:66:71:b1:7c:3d:a1:ae:6e:12:04:f8:62:31:24: 17:69:f9:4b:b2:84:1f:10:62:88:de:ee:ec:f8:83:b6:9e:78: 9d:6f:21:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjYwMzAxMjMzMDE3WhcNMjYwMzA4MjMzMDE3WjAYMRYwFAYD VQQDEw02OWE0Y2MwYy1jMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB2EtzpH1Nsh1tRkfUa7pkxIC2NJW1anO+ob1nonSOKtG1/2vGZ0q8o9CDW/ Hh7G0mV1iDyoO26YCwnYzyRZIJsghi0Z02FSPxgsQO+VNKkWfZrGkfukjWcFuOGg /bx4VZmLAvm51yQCOsUswGOStLAYotaI+3PIE4gq0Ujm7A7OIzmPcZTpntUiOkwk gw4yezfVdMcoDSgcnL402YY65HH0oZ514lvh2HCUbdVnMVk/ycVb6Tbs8N70m2ET G/z0QCwKxoIM3kAlCU844V0vpjI0BTk/XfD5+5AhlTlU2hS5xd2rYQZUY23kRz/u 8kzTfR1IiDp6kWZrQcVbdwAaGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE9euP6r wwbI8R31gvShioaB/mA2MB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJTlEjOhzTVpl1yGCyy31D09lgJHSmh0H+pWvepmxopNTk5WCc3GdJ+1ohKtM y0Y54tCRg5CohZGuVIZXvtDoKu5zFn1Cps0zH2tETk49WI3dQpkkNlXF/SkGkVs7 6NRLkg6evAg/xohh0LNc2UeBlmMWtJOFFXcfjHjfanXLCi69ztuHTmZOY4dpMHZC 0VvRtD0BMcHRobjkYFfQVcBCF+iNJINA0NGcZTuz3rdTGbtrbQaGhjrkeixX3toI kdN3UGc0hB7m6IC5s1bIQci/Yw9HbSckAw0kbsn0L2ZxsXw9oa5uEgT4YjEkF2n5 S7KEHxBiiN7u7PiDtp54nW8hhA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:14 2026 by rpki-client