$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: Oe73LVaQKoByEeCFBWJ3a16/qSE5X8/+f4cM0b4Pim4= Subject key identifier: 79:59:97:06:F9:ED:96:A9:58:E7:2B:07:60:D8:39:FB:51:F4:E9:92 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2E39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2DB9 Signing time: Mon 02 Mar 2026 15:35:59 +0000 Manifest this update: Mon 02 Mar 2026 15:35:59 +0000 Manifest next update: Mon 09 Mar 2026 15:35:59 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: U9KXL9RmVywzUY2FqXMItZMIf7jaV46rW/yqntWY6QU=) 2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 98d7Szz1xVrKOjRtTK04BwOwzNCfjc24NwJ5XcHSo3Y=) 3: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: I9utLoQOo+FgrMzcmZ+nktkwChduEwkgHWKAKFKVei8=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: WjyM3KD8j7LYktjGDYnf9TzfHp76S+j3QqZZ2zALeh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11833 (0x2e39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Mar 2 15:35:59 2026 GMT Not After : Mar 9 15:35:59 2026 GMT Subject: CN=69a5ae5f-5c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2a:79:03:89:46:fe:85:90:c4:76:db:c7:a9: 8b:56:1e:e0:47:61:52:7a:0b:9f:16:72:ed:11:b5: 05:3f:fb:76:d1:19:63:b3:75:16:9c:13:3b:70:9e: bf:83:e2:41:5f:14:ae:df:62:3c:19:aa:a5:06:65: 00:88:9d:9f:4e:f0:e3:4d:11:a3:98:2a:0b:35:9c: 4a:3f:de:ed:5e:ec:13:3f:2a:c5:8f:66:5e:8d:f6: df:8a:47:01:d0:82:ad:bb:27:6a:78:7a:51:71:b8: 1b:77:91:65:ff:c3:e8:6c:f9:9f:55:63:1b:17:06: 06:0c:05:98:73:c1:dd:f2:80:6a:80:02:ee:7e:6c: 3e:0e:5d:a0:af:80:91:c8:12:06:72:60:81:d2:3e: 45:fe:89:99:4e:60:7d:bf:5c:61:5c:c9:81:3a:7a: e3:0d:25:d5:77:8e:6b:20:02:5c:1c:1b:c0:be:6a: 84:89:e1:eb:b4:91:0b:50:ce:8f:e8:01:6b:52:be: a8:13:6e:0f:8b:69:97:b9:b7:c3:4c:83:3b:3b:c7: 1e:cb:c3:71:b9:a6:60:db:ac:ca:02:25:83:cb:77: 11:48:ef:6a:f6:83:d0:7c:01:0d:c7:24:b5:31:76: 74:68:ce:01:be:ca:f2:c3:12:a5:a3:e9:28:6d:07: d9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:59:97:06:F9:ED:96:A9:58:E7:2B:07:60:D8:39:FB:51:F4:E9:92 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:bd:ce:d0:2e:2b:d5:36:3c:65:0c:99:76:f2:9e:8a:0f:4d: 08:1a:19:27:a3:22:5b:4a:b5:5d:77:1d:2c:28:90:28:2d:83: ae:11:4b:93:71:72:98:a1:9c:58:8b:34:69:1f:5b:2a:70:6b: 22:f2:f2:4d:93:a6:3f:39:84:c8:06:28:c2:73:71:4a:0e:8a: c6:ba:88:8e:ba:a2:a0:7e:75:69:bd:6a:17:1a:4e:84:78:79: fd:9e:da:4f:8f:f7:fe:7f:92:4e:18:66:e7:f8:46:29:c6:25: 2e:c9:f6:7b:1c:86:90:c5:9c:61:df:f0:8b:39:7a:a6:23:20: 64:61:d2:68:c4:77:3c:e1:73:76:aa:3e:35:be:eb:57:d8:67: 82:54:71:3c:54:73:a6:43:e8:d9:b5:78:1b:48:f7:86:23:82: 07:72:ae:ee:c5:1e:8c:be:50:08:d5:6a:96:b3:6b:1b:e8:c5: b5:3e:9a:2a:a4:51:d0:6a:e3:fa:a2:ca:4c:3b:6e:c7:52:98: 4f:4d:a1:dd:c2:e4:7b:fa:f0:98:68:75:22:50:87:b6:48:40: 2a:4a:30:09:23:1f:a4:64:d7:fb:93:ee:d2:13:02:2d:36:3d: c5:e9:53:7d:e1:df:76:ab:8a:a0:6e:6d:6f:7f:74:1f:d4:9b: c8:12:f2:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjYwMzAyMTUzNTU5WhcNMjYwMzA5MTUzNTU5WjAYMRYwFAYD VQQDEw02OWE1YWU1Zi01YzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqip5A4lG/oWQxHbbx6mLVh7gR2FSegufFnLtEbUFP/t20Rljs3UWnBM7cJ6/ g+JBXxSu32I8GaqlBmUAiJ2fTvDjTRGjmCoLNZxKP97tXuwTPyrFj2ZejfbfikcB 0IKtuydqeHpRcbgbd5Fl/8PobPmfVWMbFwYGDAWYc8Hd8oBqgALufmw+Dl2gr4CR yBIGcmCB0j5F/omZTmB9v1xhXMmBOnrjDSXVd45rIAJcHBvAvmqEieHrtJELUM6P 6AFrUr6oE24Pi2mXubfDTIM7O8cey8NxuaZg26zKAiWDy3cRSO9q9oPQfAENxyS1 MXZ0aM4BvsrywxKlo+kobQfZ+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlZlwb5 7ZapWOcrB2DYOftR9OmSMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOr3O0C4r1TY8ZQyZdvKeig9NCBoZJ6MiW0q1XXcdLCiQKC2DrhFLk3FymKGc WIs0aR9bKnBrIvLyTZOmPzmEyAYownNxSg6KxrqIjrqioH51ab1qFxpOhHh5/Z7a T4/3/n+SThhm5/hGKcYlLsn2exyGkMWcYd/wizl6piMgZGHSaMR3POFzdqo+Nb7r V9hnglRxPFRzpkPo2bV4G0j3hiOCB3Ku7sUejL5QCNVqlrNrG+jFtT6aKqRR0Grj +qLKTDtux1KYT02h3cLke/rwmGh1IlCHtkhAKkowCSMfpGTX+5Pu0hMCLTY9xelT feHfdquKoG5tb390H9SbyBLy9Q== -----END CERTIFICATE-----Generated at Mon Mar 2 18:01:09 2026 by rpki-client