$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: oNRu5nf3ihj/U0Nq6Yx1cyb+uapSwaoz2prkU0GZY3w= Subject key identifier: 58:06:92:0E:42:59:02:FF:73:9D:D5:C1:B9:6C:C2:FC:65:99:34:95 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 122B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 121C Signing time: Sun 01 Mar 2026 23:22:44 +0000 Manifest this update: Sun 01 Mar 2026 23:22:43 +0000 Manifest next update: Sun 08 Mar 2026 23:22:43 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: /899BGcB24UYKrbav6d/tvSvXY5vfLJpKSFdlNRJpKk=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: 72MUrn7tnvmneOqEgTntxjtIs1ZcTEVLT5WbrHCVP04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4651 (0x122b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Mar 1 23:22:43 2026 GMT Not After : Mar 8 23:22:43 2026 GMT Subject: CN=69a4ca44-1403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bb:12:53:d6:a0:a8:57:e5:6c:b0:66:3a:50: 8d:aa:c6:07:13:44:e1:ff:91:0e:18:64:4e:cb:43: 40:3f:3e:96:89:27:12:1f:d6:41:a3:06:91:ad:4d: 94:48:20:4c:fc:89:39:6a:c2:5f:6d:88:16:b0:10: b1:31:87:90:f0:70:81:f3:aa:25:05:c0:8a:49:73: e1:23:07:f3:63:b4:b5:4e:22:b6:2e:51:bb:7d:fb: 9a:e9:be:db:d5:c9:fc:b8:00:88:a5:b1:5e:57:0c: a3:96:4e:8b:b6:e3:40:b8:b5:94:08:b9:c3:73:57: 18:9e:89:62:d0:3e:f8:cc:79:aa:ea:aa:49:c9:80: e0:ed:85:8b:54:58:c2:34:8e:0e:f6:1a:5e:6b:c7: d1:92:08:1f:42:f7:a8:55:d3:89:1c:fb:72:1c:4c: b0:ef:c9:14:c4:62:53:21:ac:99:23:2f:ac:37:f1: 87:9c:be:b3:27:a1:b3:b8:ac:a7:16:a6:98:33:26: ff:79:58:e4:ec:c7:cc:c6:f5:e8:6e:e8:32:a1:5b: 9a:7f:7f:95:ff:c6:b6:93:3a:1a:2a:e1:be:92:82: 85:87:5d:6a:73:04:5d:ac:ae:15:d1:6c:ab:22:98: 59:0f:5a:15:d7:b5:3e:f3:79:bf:2e:9e:6d:9d:d2: 4c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:06:92:0E:42:59:02:FF:73:9D:D5:C1:B9:6C:C2:FC:65:99:34:95 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:1a:4c:3a:cf:63:09:ad:b5:61:47:aa:c2:79:ee:d8:e6:5d: a4:be:2a:6a:5e:02:c1:c1:e4:9e:63:da:f7:c7:09:f2:22:df: 75:46:2d:5f:3c:af:db:3f:c9:e2:40:6b:ed:5d:98:f5:c2:23: f3:dc:9f:cb:7a:85:86:92:13:2e:38:9f:0f:90:b2:de:d1:bd: ce:f2:c8:aa:46:89:b1:7b:a8:97:6e:8a:61:16:f9:ca:2e:71: d3:33:d4:04:f5:ef:b8:1b:40:fe:40:31:16:0e:15:e8:3c:84: 77:e9:7e:30:e6:01:24:67:a5:71:be:54:78:31:db:50:ce:b7: 95:2f:64:e4:e0:0b:fe:9d:cb:01:0d:74:17:4c:f6:4f:d7:c3: 9b:a6:e4:17:d7:8b:1b:a5:31:2d:27:6a:a3:ce:4d:01:d7:db: e6:f6:e0:69:ba:07:2f:3d:45:d2:c4:c2:9d:9c:66:c3:7f:28: 89:49:4b:f5:f7:cc:5e:4a:60:c6:0e:f0:8b:f3:0c:29:af:8f: ef:8b:2b:cb:ef:c9:aa:c4:e5:6b:4a:82:18:3f:91:f5:25:18: 8f:2b:dd:62:a3:0c:e8:a2:3f:93:64:06:11:5c:8d:00:4b:ca: 15:84:2b:1f:01:48:a1:06:af:e1:9f:40:89:f1:2a:83:70:02: 25:75:61:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjYwMzAxMjMyMjQzWhcNMjYwMzA4MjMyMjQzWjAYMRYwFAYD VQQDEw02OWE0Y2E0NC0xNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LsSU9agqFflbLBmOlCNqsYHE0Th/5EOGGROy0NAPz6WiScSH9ZBowaRrU2U SCBM/Ik5asJfbYgWsBCxMYeQ8HCB86olBcCKSXPhIwfzY7S1TiK2LlG7ffua6b7b 1cn8uACIpbFeVwyjlk6LtuNAuLWUCLnDc1cYnoli0D74zHmq6qpJyYDg7YWLVFjC NI4O9hpea8fRkggfQveoVdOJHPtyHEyw78kUxGJTIayZIy+sN/GHnL6zJ6GzuKyn FqaYMyb/eVjk7MfMxvXobugyoVuaf3+V/8a2kzoaKuG+koKFh11qcwRdrK4V0Wyr IphZD1oV17U+83m/Lp5tndJMGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFgGkg5C WQL/c53VwblswvxlmTSVMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjxpMOs9jCa21YUeqwnnu2OZdpL4qal4CwcHknmPa98cJ8iLfdUYtXzyv2z/J 4kBr7V2Y9cIj89yfy3qFhpITLjifD5Cy3tG9zvLIqkaJsXuol26KYRb5yi5x0zPU BPXvuBtA/kAxFg4V6DyEd+l+MOYBJGelcb5UeDHbUM63lS9k5OAL/p3LAQ10F0z2 T9fDm6bkF9eLG6UxLSdqo85NAdfb5vbgaboHLz1F0sTCnZxmw38oiUlL9ffMXkpg xg7wi/MMKa+P74sry+/JqsTla0qCGD+R9SUYjyvdYqMM6KI/k2QGEVyNAEvKFYQr HwFIoQav4Z9AifEqg3ACJXVhuQ== -----END CERTIFICATE-----Generated at Mon Mar 2 18:50:39 2026 by rpki-client