$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: vesOvOYMtKL9xuP12LYlLlN6xqxyI6hSTm2FL+Idv5s= Subject key identifier: 16:96:4F:43:BE:3A:33:48:56:0C:99:BF:B1:71:90:3C:7A:F7:4B:0E Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 020A Signing time: Sun 01 Mar 2026 01:15:32 +0000 Manifest this update: Sun 01 Mar 2026 01:15:31 +0000 Manifest next update: Sun 08 Mar 2026 01:15:31 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: kHP1A8W5S8qMwEc7b1mjs2/cuvOSvoBwe0e/dCDHrGE=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Mar 1 01:15:31 2026 GMT Not After : Mar 8 01:15:31 2026 GMT Subject: CN=69a39334-af0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d3:22:55:2e:27:9f:af:0e:3f:55:a7:f3:38: 05:52:25:c4:e6:b2:17:4d:fc:93:00:bd:d6:01:26: ba:73:78:8d:f5:ea:13:dc:f4:36:29:42:ad:8a:58: e6:2b:34:9d:9c:3a:d7:5d:b9:b1:21:3b:53:84:ac: e3:eb:02:16:32:6a:eb:b3:d1:d3:c8:e3:a6:4d:07: b5:c7:25:61:51:ee:1a:6f:14:ea:8f:f9:ff:15:78: 60:e6:55:6a:79:f2:c6:a5:22:07:db:35:aa:98:19: e5:de:48:14:2d:99:7c:db:dc:9e:51:b0:f8:ec:00: ef:b4:5a:8c:8a:05:2c:23:81:57:36:a8:37:dd:e6: cc:1b:62:51:5f:71:8e:25:a3:08:a4:b0:35:bf:c7: f3:84:9f:c7:67:af:39:a0:2b:d9:dd:e0:9c:9b:70: 78:cf:4f:4c:be:16:23:47:76:41:be:45:90:a7:0e: 2e:62:f8:a5:32:bd:c4:da:3f:7a:25:ab:b1:9b:8c: 74:f4:68:8e:0d:25:53:9c:e6:da:d9:48:6a:83:86: 72:a9:72:67:ce:ca:25:5a:9f:cd:f4:8a:01:0d:4b: 41:c4:f8:13:53:68:1d:43:c5:0d:4e:27:15:76:34: b1:7f:5e:61:43:e4:32:4e:35:55:a1:75:12:b8:1c: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:96:4F:43:BE:3A:33:48:56:0C:99:BF:B1:71:90:3C:7A:F7:4B:0E X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:da:88:f5:d7:38:23:1d:78:52:74:a6:07:32:1a:b2:ec:f1: 50:28:2d:16:88:d5:40:5a:d2:ec:c2:fe:75:eb:92:7f:2c:6f: 79:11:06:04:39:f0:89:d2:d6:7d:e3:7a:fd:08:f4:a4:7a:bb: b3:70:ed:3b:ea:07:60:e0:d9:ed:75:e3:b1:7f:cd:55:ba:72: eb:b1:6c:ca:79:c9:9a:92:3b:55:27:1a:9c:fd:68:84:8a:e8: 4b:b1:d1:fa:d7:a3:82:3d:2e:ce:7f:80:1c:c7:e6:75:48:75: de:47:65:a1:4b:77:f2:72:2a:73:94:80:6f:b4:19:03:a6:b6: c1:78:0b:76:96:99:53:ea:33:3d:e7:b1:b2:54:2e:9e:a1:b0: 69:80:48:d3:eb:c1:e5:60:41:f7:10:30:56:17:62:2f:1c:26: 88:85:7c:8c:76:e2:3a:ea:da:4a:fa:78:a6:37:ce:21:9d:f2: 92:9f:3d:86:88:40:33:a4:d5:6e:6e:26:e1:b3:55:3e:fa:75: 8c:65:1b:98:f8:14:bc:66:d0:88:07:ef:ba:4b:16:bb:9c:0f: c2:f0:7f:fa:0a:c5:49:27:50:7c:03:81:eb:f4:e5:59:53:24: f8:78:80:97:36:2a:c1:42:dc:2d:fd:6b:a0:a2:f7:c2:97:a4: ae:a7:5c:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwMzAxMDExNTMxWhcNMjYwMzA4MDExNTMxWjAYMRYwFAYD VQQDDA02OWEzOTMzNC1hZjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9MiVS4nn68OP1Wn8zgFUiXE5rIXTfyTAL3WASa6c3iN9eoT3PQ2KUKtiljm KzSdnDrXXbmxITtThKzj6wIWMmrrs9HTyOOmTQe1xyVhUe4abxTqj/n/FXhg5lVq efLGpSIH2zWqmBnl3kgULZl829yeUbD47ADvtFqMigUsI4FXNqg33ebMG2JRX3GO JaMIpLA1v8fzhJ/HZ685oCvZ3eCcm3B4z09MvhYjR3ZBvkWQpw4uYvilMr3E2j96 Jauxm4x09GiODSVTnOba2Uhqg4ZyqXJnzsolWp/N9IoBDUtBxPgTU2gdQ8UNTicV djSxf15hQ+QyTjVVoXUSuByKvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBaWT0O+ OjNIVgyZv7FxkDx690sOMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArtqI9dc4Ix14UnSmBzIasuzxUCgtFojVQFrS7ML+deuSfyxveREGBDnwidLW feN6/Qj0pHq7s3DtO+oHYODZ7XXjsX/NVbpy67FsynnJmpI7VScanP1ohIroS7HR +tejgj0uzn+AHMfmdUh13kdloUt38nIqc5SAb7QZA6a2wXgLdpaZU+ozPeexslQu nqGwaYBI0+vB5WBB9xAwVhdiLxwmiIV8jHbiOuraSvp4pjfOIZ3ykp89hohAM6TV bm4m4bNVPvp1jGUbmPgUvGbQiAfvuksWu5wPwvB/+grFSSdQfAOB6/TlWVMk+HiA lzYqwULcLf1roKL3wpekrqdcnA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:17:08 2026 by rpki-client