$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: ZSDDArDWwaQiyP1tYNKlSaVkruyPPZaKo9UZriro5Xs= Subject key identifier: F9:AA:47:F9:B2:70:28:84:3E:6A:61:C9:A0:BD:00:6A:2B:2C:7D:B7 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: BD Signing time: Sun 01 Mar 2026 08:14:01 +0000 Manifest this update: Sun 01 Mar 2026 08:14:01 +0000 Manifest next update: Sun 08 Mar 2026 08:14:01 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: JizWVxzleFDD4Bb2KzffT1MJyOeIpxGrfWEz15FYaGk=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: of8AlvwK4X00BuuTuihGMd1ULxZ1QoX1Mgh1oMkuuXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Mar 1 08:14:01 2026 GMT Not After : Mar 8 08:14:01 2026 GMT Subject: CN=69a3f549-f893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:66:4c:a7:a5:58:71:f8:cd:9a:c8:c1:09:6c: 82:4b:e6:c3:3e:bf:72:70:ca:02:c7:9d:68:69:e4: 02:f3:cf:6c:fc:db:a2:83:64:1d:7b:b0:82:06:f5: fc:10:09:61:e5:e5:65:54:57:34:c9:01:f6:5a:03: e5:63:d0:56:fa:26:b9:10:de:bf:ab:4f:11:41:96: 7b:9f:79:b4:85:08:1d:a1:80:84:60:92:fe:73:7b: 25:d8:be:cc:7d:79:ec:83:4f:a7:dc:cc:4b:11:a0: 7d:f5:af:f2:8a:a1:43:36:dc:02:8e:6f:21:14:d5: aa:3f:7e:5e:58:59:aa:8f:7f:9c:0c:84:1b:e4:b2: f4:fe:2f:23:0d:10:d9:4a:15:50:04:8e:2f:53:fd: 05:45:51:58:50:b9:d2:bd:85:33:8d:3f:9f:1a:3e: f4:89:12:d0:11:33:f6:fa:21:f6:41:59:b3:d8:91: e5:69:3e:ce:7b:d3:17:80:d8:16:28:8d:4a:56:a3: ff:17:f4:ae:06:4c:16:fa:5f:3e:5a:77:0f:77:38: 4e:16:86:7b:0b:bd:83:5e:c5:ba:27:30:16:41:8b: b2:23:9e:05:81:58:5f:36:f4:b4:fb:b2:57:e4:3c: 67:81:91:9f:5a:dc:16:8c:d4:65:c7:f1:61:2b:e0: 80:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AA:47:F9:B2:70:28:84:3E:6A:61:C9:A0:BD:00:6A:2B:2C:7D:B7 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:eb:75:24:1f:3b:db:9b:30:4e:7f:84:34:76:82:76:06:4f: 7e:bf:61:12:5b:a7:a1:e0:69:d6:a9:97:42:8b:db:a2:66:71: c5:75:52:91:eb:24:a2:ce:af:6f:7b:8a:4a:f9:b9:e3:07:33: 5d:9a:72:ea:d3:21:85:af:85:94:1c:dc:c1:67:a3:d6:22:08: 89:ba:7e:22:46:b1:45:b1:74:6c:32:d0:d3:9c:43:53:03:55: 13:c1:82:dd:dd:56:40:5b:ee:4e:91:35:82:b8:c3:52:a2:72: 1d:be:a4:bb:a0:29:07:6b:17:f3:29:9e:7d:36:7d:f8:e1:e8: 50:6a:78:20:12:14:8f:c0:23:43:a3:40:56:46:ba:87:4f:7d: 03:79:39:93:93:85:00:ad:1e:05:56:5c:57:30:7b:8b:8f:f6: f1:22:87:15:3a:b4:d5:61:27:3e:7b:93:72:e8:91:1d:c2:75: 88:6c:81:f5:c5:54:02:76:aa:c7:22:35:3b:50:d1:52:9f:b8: 49:4e:a1:2f:3a:81:20:3d:86:bd:5b:e3:54:54:10:53:94:24: 2f:e9:5f:46:7e:76:2d:30:23:c9:6d:86:08:d3:5c:af:fa:ff: 35:dd:af:7b:59:83:77:71:5f:54:ab:51:38:48:a1:51:3e:65: 70:a5:88:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzMUQxMTAvBgNVBAUTKEU2MjgyMjBGM0ZEMDBGNDE3Qjk5NzJFMUQ0QTBGNjQx Njk2RTc5OTkwHhcNMjYwMzAxMDgxNDAxWhcNMjYwMzA4MDgxNDAxWjAYMRYwFAYD VQQDEw02OWEzZjU0OS1mODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5mZMp6VYcfjNmsjBCWyCS+bDPr9ycMoCx51oaeQC889s/Nuig2Qde7CCBvX8 EAlh5eVlVFc0yQH2WgPlY9BW+ia5EN6/q08RQZZ7n3m0hQgdoYCEYJL+c3sl2L7M fXnsg0+n3MxLEaB99a/yiqFDNtwCjm8hFNWqP35eWFmqj3+cDIQb5LL0/i8jDRDZ ShVQBI4vU/0FRVFYULnSvYUzjT+fGj70iRLQETP2+iH2QVmz2JHlaT7Oe9MXgNgW KI1KVqP/F/SuBkwW+l8+WncPdzhOFoZ7C72DXsW6JzAWQYuyI54FgVhfNvS0+7JX 5DxngZGfWtwWjNRlx/FhK+CAvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPmqR/my cCiEPmphyaC9AGorLH23MB8GA1UdIwQYMBaAFOYoIg8/0A9Be5ly4dSg9kFpbnmZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTMxRC8yQ0Y2QjhCMEY5 QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQwRjdtWExoMUtEMlFXbHVl WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTMxRC8yQ0Y2QjhCMEY5QzkxMUVGQTU0Rjc2MkFDNEY5QUUwMi81aWdpRHpfUUQw RjdtWExoMUtEMlFXbHVlWmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAy+t1JB8725swTn+ENHaCdgZPfr9hElunoeBp1qmXQovbomZxxXVSkeskos6v b3uKSvm54wczXZpy6tMhha+FlBzcwWej1iIIibp+IkaxRbF0bDLQ05xDUwNVE8GC 3d1WQFvuTpE1grjDUqJyHb6ku6ApB2sX8ymefTZ9+OHoUGp4IBIUj8AjQ6NAVka6 h099A3k5k5OFAK0eBVZcVzB7i4/28SKHFTq01WEnPnuTcuiRHcJ1iGyB9cVUAnaq xyI1O1DRUp+4SU6hLzqBID2GvVvjVFQQU5QkL+lfRn52LTAjyW2GCNNcr/r/Nd2v e1mDd3FfVKtROEihUT5lcKWIqQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:59:34 2026 by rpki-client