$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: J2kZ167dLYa+DhDlWEPzdp00mJoydW/ohouv45fvCWY= Subject key identifier: A7:FF:21:65:86:D1:30:13:5B:C1:A3:36:76:30:CD:E9:35:90:A0:96 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DB8 Signing time: Mon 02 Mar 2026 02:16:05 +0000 Manifest this update: Mon 02 Mar 2026 02:16:03 +0000 Manifest next update: Mon 09 Mar 2026 02:16:03 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: KeZuvmReC/QXn6tCmE12SYmP1Ffp//YcpoX52S4awVM=) 2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 3: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11832 (0x2e38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Mar 2 02:16:03 2026 GMT Not After : Mar 9 02:16:03 2026 GMT Subject: CN=69a4f2e5-a469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ac:c7:14:3d:a8:05:be:9f:c6:cc:f7:68:c4: d1:c4:5d:9a:82:ff:e2:bb:66:61:89:70:f7:52:c6: 13:b6:0b:80:6e:fe:d0:1a:7e:08:1a:df:ac:07:f2: b4:09:68:b1:dd:54:ab:67:00:b4:b7:99:c6:00:b4: c9:5f:dd:ed:80:f0:65:2b:68:97:4b:d0:25:07:13: 83:65:eb:b4:48:e1:8a:5e:45:a8:26:87:a3:4d:50: 1a:e6:1f:59:b8:99:fd:c7:eb:fe:18:ac:30:39:2c: 79:dc:23:64:ca:9f:d5:5c:17:88:2a:2d:44:01:41: b7:a2:5a:80:83:4c:b9:42:ef:c1:35:af:9d:14:58: cf:f1:91:66:a3:10:8b:0a:82:a0:45:6e:79:95:22: 03:f8:6e:d6:50:1a:09:94:5a:b1:d5:4a:3c:0c:56: b7:ec:12:ac:2c:19:09:6f:47:41:cc:1c:7a:93:7c: f4:d1:89:d9:ca:4d:2c:f1:ec:8c:f9:80:69:57:1d: 06:11:3a:89:c8:ed:76:34:96:15:06:5c:6b:96:97: 1f:9a:7c:7d:2b:3b:2d:59:e7:07:bb:18:f0:9f:7f: 7d:c0:df:4f:dd:23:f8:35:4e:cd:3f:7b:e1:f7:d0: ab:0c:a6:10:39:88:f3:65:8c:82:1e:b2:9d:54:79: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FF:21:65:86:D1:30:13:5B:C1:A3:36:76:30:CD:E9:35:90:A0:96 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:32:e7:2c:46:b4:75:e7:b9:ee:1a:a7:2e:fb:0c:77:35:6a: 83:b4:db:3a:ec:cf:a7:0a:49:70:16:d5:2c:6d:49:fb:ff:33: 64:15:e3:ac:da:4f:b4:a0:34:51:7b:ba:22:09:43:90:29:d8: 03:68:cb:c1:79:3a:2e:c4:73:84:ba:1f:3f:38:7c:24:4e:67: b8:1c:d8:21:f3:30:6e:b5:83:2d:39:a2:64:55:b8:df:65:32: 76:d5:1a:bb:db:fb:98:d1:18:8e:a5:f9:6e:ae:34:09:23:6b: 37:4f:6a:10:9f:6e:10:98:a5:db:10:9e:d6:37:4b:d9:ea:a6: 9b:54:5f:67:41:69:01:35:8a:7b:29:d0:62:3b:4a:fa:62:34: 73:1f:43:77:6c:17:27:17:ed:66:52:0c:1a:ef:e9:ce:a9:88: 0f:af:1e:b1:e7:6f:a0:27:86:a1:1d:8a:b5:86:34:90:d5:ff: 90:6d:7c:32:5f:64:c0:18:54:c6:4b:7a:09:f2:e1:63:d3:df: 9d:a5:04:14:4c:7b:8e:f9:1c:3d:9d:40:6d:13:18:b2:40:53: 75:f1:99:4b:62:da:bc:4d:3b:7d:10:a0:ef:b8:8d:04:55:9e: 70:7a:0c:02:8d:da:b0:a1:10:83:05:99:05:61:71:02:db:61: 4b:2c:b8:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwMzAyMDIxNjAzWhcNMjYwMzA5MDIxNjAzWjAYMRYwFAYD VQQDEw02OWE0ZjJlNS1hNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6zHFD2oBb6fxsz3aMTRxF2agv/iu2ZhiXD3UsYTtguAbv7QGn4IGt+sB/K0 CWix3VSrZwC0t5nGALTJX93tgPBlK2iXS9AlBxODZeu0SOGKXkWoJoejTVAa5h9Z uJn9x+v+GKwwOSx53CNkyp/VXBeIKi1EAUG3olqAg0y5Qu/BNa+dFFjP8ZFmoxCL CoKgRW55lSID+G7WUBoJlFqx1Uo8DFa37BKsLBkJb0dBzBx6k3z00YnZyk0s8eyM +YBpVx0GETqJyO12NJYVBlxrlpcfmnx9KzstWecHuxjwn399wN9P3SP4NU7NP3vh 99CrDKYQOYjzZYyCHrKdVHlC5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKf/IWWG 0TATW8GjNnYwzek1kKCWMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAODLnLEa0dee57hqnLvsMdzVqg7TbOuzPpwpJcBbVLG1J+/8zZBXjrNpPtKA0 UXu6IglDkCnYA2jLwXk6LsRzhLofPzh8JE5nuBzYIfMwbrWDLTmiZFW432UydtUa u9v7mNEYjqX5bq40CSNrN09qEJ9uEJil2xCe1jdL2eqmm1RfZ0FpATWKeynQYjtK +mI0cx9Dd2wXJxftZlIMGu/pzqmID68esedvoCeGoR2KtYY0kNX/kG18Ml9kwBhU xkt6CfLhY9PfnaUEFEx7jvkcPZ1AbRMYskBTdfGZS2LavE07fRCg77iNBFWecHoM Ao3asKEQgwWZBWFxAtthSyy4FA== -----END CERTIFICATE-----Generated at Mon Mar 2 16:56:53 2026 by rpki-client