$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: fcwN8K5oHAJXh7ddQv9RhUun+aT5p52janMKoOPpHS8= Subject key identifier: CC:48:06:5B:FB:C2:26:FF:3D:39:F2:FF:32:A3:32:1B:68:5B:EA:15 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0185 Signing time: Mon 02 Mar 2026 13:15:04 +0000 Manifest this update: Mon 02 Mar 2026 13:15:04 +0000 Manifest next update: Mon 09 Mar 2026 13:15:04 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: kmQQ+stQzMtibIkBEw4kM92w0pv9VPF7QNSRdbxd8sw=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: el0auHxpyh9tTDqL7rCm8mkEP/Vt83P2QDxniQ8jfv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Mar 2 13:15:04 2026 GMT Not After : Mar 9 13:15:04 2026 GMT Subject: CN=69a58d58-6609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:64:9e:8c:12:25:63:bf:1e:04:f7:60:9c: c3:c3:5e:85:31:8b:d2:ba:43:f7:a8:b0:29:23:71: 12:a0:cb:a1:54:86:a4:e2:aa:c6:e5:a5:b5:01:c6: 60:e8:64:82:0b:1b:10:b3:72:e0:d4:f9:ca:4f:c9: 22:aa:2f:48:e4:b9:7c:22:7f:bf:41:0f:a8:0f:2f: 04:b0:6e:44:f5:91:b5:be:d4:d8:55:65:36:66:03: b9:dc:b4:e6:59:b2:6e:6f:26:26:c7:e6:a5:34:aa: 6d:da:ea:13:48:ef:52:1a:89:5b:28:52:2f:b9:6c: 3f:0f:0d:f8:8c:02:b5:d3:34:ae:a9:03:b0:42:35: 08:2b:8b:93:76:2c:4c:ba:cc:ce:dc:99:9e:e3:91: 52:8f:40:20:ec:0f:80:4f:d3:73:e9:5e:e2:0c:bd: 23:88:c0:a6:c3:9c:d9:e3:18:d4:6b:77:53:c5:19: 80:c6:59:61:49:02:2d:be:cc:38:48:76:6e:83:f5: 4e:09:5c:eb:37:5d:fc:ba:36:2e:6a:30:16:06:6c: 09:41:9d:33:33:45:37:44:01:ea:93:25:fe:0b:20: eb:88:c4:32:cf:40:4a:5f:29:2e:4c:69:c7:40:08: aa:bc:5f:12:b9:4f:43:dd:ca:ad:f2:52:cd:c3:31: 78:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:48:06:5B:FB:C2:26:FF:3D:39:F2:FF:32:A3:32:1B:68:5B:EA:15 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:6d:93:7a:11:43:17:ad:d4:a3:5c:73:ec:19:09:d9:a1:fd: fd:b2:db:27:1e:56:5d:e7:df:89:5b:20:8f:c2:13:fc:f8:28: 5b:7a:ee:71:39:47:0d:69:d2:82:7c:ba:f2:40:80:ea:92:30: f7:ed:bc:6a:d8:1d:45:22:6f:b7:71:58:a0:d6:93:13:b3:5c: 49:b6:8d:eb:88:cc:0a:42:41:c2:2f:69:7b:bc:25:36:8a:31: f6:0e:27:59:d9:9e:46:5c:77:c3:46:f0:2b:b1:ee:1b:f0:86: 29:ad:16:d0:c9:e0:66:5a:73:da:df:fd:6e:96:d7:67:e1:09: 58:c5:df:1f:d0:2d:f2:79:8e:84:1e:ca:f0:26:cd:b9:d0:fb: 73:82:60:23:a2:4d:d2:60:12:4f:ec:7c:ce:39:c8:8c:9a:84: 25:d6:ed:98:65:4c:15:ae:d1:4b:55:5e:b2:a4:f8:89:7d:02: 93:80:9a:e4:e1:cb:91:14:24:86:29:8e:80:0a:bb:3c:5e:ac: b6:78:28:61:73:2f:89:9b:42:e6:17:09:46:4a:47:b1:be:5f: 53:d1:0d:80:05:0a:ea:cb:ab:1a:d8:dc:25:50:77:d5:1e:73: ed:f4:2c:14:55:0b:8d:39:ec:25:a5:7a:ce:5f:da:1c:26:f0: 9a:82:b9:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjYwMzAyMTMxNTA0WhcNMjYwMzA5MTMxNTA0WjAYMRYwFAYD VQQDEw02OWE1OGQ1OC02NjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XxknowSJWO/HgT3YJzDw16FMYvSukP3qLApI3ESoMuhVIak4qrG5aW1AcZg 6GSCCxsQs3Lg1PnKT8kiqi9I5Ll8In+/QQ+oDy8EsG5E9ZG1vtTYVWU2ZgO53LTm WbJubyYmx+alNKpt2uoTSO9SGolbKFIvuWw/Dw34jAK10zSuqQOwQjUIK4uTdixM uszO3Jme45FSj0Ag7A+AT9Nz6V7iDL0jiMCmw5zZ4xjUa3dTxRmAxllhSQItvsw4 SHZug/VOCVzrN138ujYuajAWBmwJQZ0zM0U3RAHqkyX+CyDriMQyz0BKXykuTGnH QAiqvF8SuU9D3cqt8lLNwzF4pQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxIBlv7 wib/PTny/zKjMhtoW+oVMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHG2TehFDF63Uo1xz7BkJ2aH9/bLbJx5WXeffiVsgj8IT/PgoW3rucTlHDWnS gny68kCA6pIw9+28atgdRSJvt3FYoNaTE7NcSbaN64jMCkJBwi9pe7wlNoox9g4n WdmeRlx3w0bwK7HuG/CGKa0W0MngZlpz2t/9bpbXZ+EJWMXfH9At8nmOhB7K8CbN udD7c4JgI6JN0mAST+x8zjnIjJqEJdbtmGVMFa7RS1VesqT4iX0Ck4Ca5OHLkRQk himOgAq7PF6stngoYXMviZtC5hcJRkpHsb5fU9ENgAUK6surGtjcJVB31R5z7fQs FFULjTnsJaV6zl/aHCbwmoK5XA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:45:25 2026 by rpki-client