$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: bJWnUsekkLQaxzWX3r9dEEJJ6AW9cr9rW942C9bUz94= Subject key identifier: 43:28:5B:F9:00:85:C0:C9:21:DD:A8:48:AF:34:CD:BF:EF:7B:7E:9F Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 054D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 053F Signing time: Sun 01 Mar 2026 00:04:40 +0000 Manifest this update: Sun 01 Mar 2026 00:04:39 +0000 Manifest next update: Sun 08 Mar 2026 00:04:39 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: bGciXO/P1Y+yxPVK/ct1mVYEHvApkULqMjOZj4QHSMQ=) 2: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: qFVJr2n2NykDjsNkjh3gL0I4ElRrTaR+KqOIhATefiY=) 3: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 9WThl3Ll0sjbhCIKX3FXdpzp7nW9BOJ33snoZ0J6eKg=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: 9H79gXHSwUdpcvM5+oXzZJV/1PlUxOkSuGSAKDEy/aw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1357 (0x54d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Mar 1 00:04:39 2026 GMT Not After : Mar 8 00:04:39 2026 GMT Subject: CN=69a38298-3aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:d6:77:4f:92:39:58:e5:08:76:fe:85:f2: 71:49:a2:cc:9e:91:4c:59:fe:da:26:6f:1a:54:f2: 95:23:3e:93:cb:09:02:a6:fc:01:71:db:85:20:82: 4f:33:ba:63:9d:fe:52:eb:14:11:ba:ee:a4:32:fe: 35:a6:9b:2d:83:35:b8:82:1f:bb:15:c9:08:8d:75: dc:f1:a8:0c:b7:d8:d9:04:c9:8f:39:ec:84:d4:57: cd:19:c2:9e:df:1c:d7:16:d4:ba:98:bc:48:29:30: b7:0b:eb:36:2e:d7:86:81:aa:82:92:26:d6:49:71: 7c:8f:c1:93:f1:42:cf:5f:28:c5:e8:f0:3f:08:a4: 4a:7b:39:2b:48:c3:2a:20:4a:a6:60:cb:a6:9e:d5: cd:29:d9:d7:d3:bc:34:32:71:31:8e:5c:73:05:60: b0:fc:71:1b:de:92:7a:20:28:82:dc:8a:03:50:0e: 2b:e9:74:76:93:be:93:9c:76:5a:4a:17:49:6a:ec: c4:63:f2:2a:b2:c6:56:be:7e:37:a1:48:d7:82:6d: 89:41:1b:9b:bd:a3:ef:8b:b8:32:77:d3:cd:56:1b: b2:85:82:52:94:c2:9c:d2:3f:1c:e4:48:30:cf:d4: 3f:b8:e0:ca:e8:bf:50:0a:ae:28:12:d1:fe:db:c5: 5f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:28:5B:F9:00:85:C0:C9:21:DD:A8:48:AF:34:CD:BF:EF:7B:7E:9F X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ff:e7:27:01:ae:65:f0:0b:fd:32:80:dc:b8:20:e4:a8:9f: 1b:21:df:30:69:03:eb:16:ae:94:2c:40:e7:06:cd:80:d9:8f: 5d:32:05:d2:3a:11:14:fd:51:34:1c:13:fc:b0:59:e7:88:38: 45:a3:7f:43:8f:9d:33:f9:8e:0c:c8:99:58:65:1e:86:a4:08: 8f:6c:ad:44:16:3f:b2:52:d6:a7:fe:15:b0:29:f3:16:f1:26: 62:32:ea:ba:50:84:24:e8:08:41:be:2a:8a:0e:51:f9:40:de: 4c:b4:da:6e:f3:76:e5:fa:01:5d:8b:c4:25:27:7e:1a:d8:35: e6:fb:c2:7a:c6:07:4b:65:a3:d0:2f:26:e4:d0:06:87:83:a5: 14:fe:d9:f4:60:39:33:d5:47:82:25:ff:2e:83:f4:21:78:cb: e5:35:78:3d:69:93:f1:06:b3:72:34:96:76:6a:84:bc:8e:58: 49:3d:6b:d3:e4:90:91:7b:72:8b:88:66:31:70:6a:d9:da:0c: bb:47:24:1d:c1:b3:e7:4c:6c:cf:9a:15:52:26:e8:95:03:3a: 30:23:90:96:d5:55:29:86:8b:d1:8f:b1:98:8e:fd:70:75:c6: 16:c5:61:92:50:e0:eb:d1:51:01:1e:48:d5:e4:44:d0:29:b2: bb:90:0e:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjYwMzAxMDAwNDM5WhcNMjYwMzA4MDAwNDM5WjAYMRYwFAYD VQQDDA02OWEzODI5OC0zYWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9jWd0+SOVjlCHb+hfJxSaLMnpFMWf7aJm8aVPKVIz6TywkCpvwBcduFIIJP M7pjnf5S6xQRuu6kMv41ppstgzW4gh+7FckIjXXc8agMt9jZBMmPOeyE1FfNGcKe 3xzXFtS6mLxIKTC3C+s2LteGgaqCkibWSXF8j8GT8ULPXyjF6PA/CKRKezkrSMMq IEqmYMumntXNKdnX07w0MnExjlxzBWCw/HEb3pJ6ICiC3IoDUA4r6XR2k76TnHZa ShdJauzEY/IqssZWvn43oUjXgm2JQRubvaPvi7gyd9PNVhuyhYJSlMKc0j8c5Egw z9Q/uODK6L9QCq4oEtH+28VfUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEMoW/kA hcDJId2oSK80zb/ve36fMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAof/nJwGuZfAL/TKA3Lgg5KifGyHfMGkD6xaulCxA5wbNgNmPXTIF0joRFP1R NBwT/LBZ54g4RaN/Q4+dM/mODMiZWGUehqQIj2ytRBY/slLWp/4VsCnzFvEmYjLq ulCEJOgIQb4qig5R+UDeTLTabvN25foBXYvEJSd+Gtg15vvCesYHS2Wj0C8m5NAG h4OlFP7Z9GA5M9VHgiX/LoP0IXjL5TV4PWmT8QazcjSWdmqEvI5YST1r0+SQkXty i4hmMXBq2doMu0ckHcGz50xsz5oVUibolQM6MCOQltVVKYaL0Y+xmI79cHXGFsVh klDg69FRAR5I1eRE0Cmyu5AOQw== -----END CERTIFICATE-----Generated at Sun Mar 1 20:41:49 2026 by rpki-client