$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: K2k9gOT9S1UgJykiYa8PWZE6lUmFTDz+6psHJRKGN4Y= Subject key identifier: 5E:7D:76:70:05:F2:A3:D5:15:4C:65:41:2C:F5:A4:09:8C:AA:2C:BA Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 01C6 Signing time: Sun 01 Mar 2026 04:28:47 +0000 Manifest this update: Sun 01 Mar 2026 04:28:47 +0000 Manifest next update: Sun 08 Mar 2026 04:28:47 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: TzqP4cjLkE8587yaxtuMTJKcsU5ut6JCXiaiRRl9y/E=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: vn17TWtmnQ+kaPqXgcDq2YoeKGokw+dq87l/z9Wtkuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Mar 1 04:28:47 2026 GMT Not After : Mar 8 04:28:47 2026 GMT Subject: CN=69a3c07f-2743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:5b:a1:49:83:69:0e:d4:01:9b:2b:28:b9: 4d:76:75:bf:00:63:63:7e:5d:89:bc:85:51:e7:d7: 11:9a:b4:a9:81:e8:f6:f2:1b:c5:5f:42:6b:fb:18: 80:63:08:a3:f2:0c:65:ab:52:4f:70:80:1a:36:25: 61:c9:f4:a4:5a:d5:9e:b3:f4:e9:13:12:b6:9f:68: 3f:d6:aa:ed:ac:2f:f9:7e:fc:b9:d0:9c:06:4e:a3: 4a:6f:ba:f3:01:e3:98:30:97:c6:27:82:dd:3e:f8: 47:a5:ed:a1:91:f8:44:3d:43:ae:9c:4e:be:59:1e: 2d:80:94:0b:a2:0b:f6:b7:7e:1f:69:ce:17:b3:45: 4a:84:80:43:61:51:4d:b1:35:3b:f2:70:72:ff:f5: 95:98:5b:6d:ef:62:c3:c2:48:b9:47:9e:6b:26:63: fd:22:4e:e1:70:a1:07:d3:e2:26:73:f4:47:8a:34: ec:cb:d2:15:58:9b:20:c5:43:82:8d:5c:1a:0f:08: 04:63:0f:02:9d:27:fd:f5:79:33:da:24:f7:67:aa: 51:69:1c:55:92:ec:b0:83:12:34:8d:58:8f:4c:ff: 7c:dc:5d:d8:df:12:b4:7a:5c:a3:9c:74:5e:46:ce: 78:65:42:73:fc:75:73:50:e4:d6:00:f7:33:e0:95: b7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7D:76:70:05:F2:A3:D5:15:4C:65:41:2C:F5:A4:09:8C:AA:2C:BA X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:82:82:23:59:e7:7c:de:66:47:9d:16:8e:58:f0:e3:77:d8: 50:80:15:54:f9:fa:fa:d5:73:c7:75:ba:5e:61:5b:46:4d:ad: e3:30:5c:df:85:d3:5c:e3:f7:de:ef:62:e8:64:a3:30:fe:a8: d0:43:5a:24:a0:31:59:94:09:6b:73:67:b2:e1:f8:c8:ab:16: 9e:c5:16:1e:d8:41:e8:63:2a:c9:d9:69:ad:d4:27:1f:ab:c8: 78:30:e1:49:87:1d:7e:5a:68:d9:2b:2a:e1:0b:59:45:be:b5: c6:cf:69:c6:9a:1e:60:33:5f:e3:60:6c:97:7e:b8:a9:0f:c7: e1:d5:4b:20:60:43:70:8c:05:3b:4f:d4:92:89:5f:c5:39:d6: c5:34:47:0e:c3:20:a6:69:98:0a:ce:46:33:95:72:42:e8:c1: 33:f5:06:54:0a:22:0b:10:51:56:5c:aa:2c:a3:b3:7c:b9:5d: f3:a6:45:65:ef:e6:4d:d5:a4:03:b6:88:bc:ea:e8:6d:99:85: 6a:5f:39:79:db:3a:99:ec:3d:33:c4:37:20:8d:9a:d9:8a:8d: a3:37:e2:6a:8a:26:0d:76:5d:de:a9:b8:30:84:62:9e:84:09: c8:8d:c5:d2:7a:a1:9d:17:28:be:67:96:17:82:3c:6e:97:08: 05:47:91:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjYwMzAxMDQyODQ3WhcNMjYwMzA4MDQyODQ3WjAYMRYwFAYD VQQDDA02OWEzYzA3Zi0yNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYpboUmDaQ7UAZsrKLlNdnW/AGNjfl2JvIVR59cRmrSpgej28hvFX0Jr+xiA Ywij8gxlq1JPcIAaNiVhyfSkWtWes/TpExK2n2g/1qrtrC/5fvy50JwGTqNKb7rz AeOYMJfGJ4LdPvhHpe2hkfhEPUOunE6+WR4tgJQLogv2t34fac4Xs0VKhIBDYVFN sTU78nBy//WVmFtt72LDwki5R55rJmP9Ik7hcKEH0+Imc/RHijTsy9IVWJsgxUOC jVwaDwgEYw8CnSf99Xkz2iT3Z6pRaRxVkuywgxI0jViPTP983F3Y3xK0elyjnHRe Rs54ZUJz/HVzUOTWAPcz4JW3cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF59dnAF 8qPVFUxlQSz1pAmMqiy6MB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG4KCI1nnfN5mR50Wjljw43fYUIAVVPn6+tVzx3W6XmFbRk2t4zBc34XTXOP3 3u9i6GSjMP6o0ENaJKAxWZQJa3NnsuH4yKsWnsUWHthB6GMqydlprdQnH6vIeDDh SYcdflpo2Ssq4QtZRb61xs9pxpoeYDNf42Bsl364qQ/H4dVLIGBDcIwFO0/Ukolf xTnWxTRHDsMgpmmYCs5GM5VyQujBM/UGVAoiCxBRVlyqLKOzfLld86ZFZe/mTdWk A7aIvOrobZmFal85eds6mew9M8Q3II2a2YqNozfiaoomDXZd3qm4MIRinoQJyI3F 0nqhnRcovmeWF4I8bpcIBUeRzg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:30:09 2026 by rpki-client