$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: bskG5leYpbnqd6xaWzxw1R0qcYBtVyvFC2Me1NUhwTo= Subject key identifier: 42:5E:D0:2F:A5:70:16:19:5F:F1:F7:51:E8:8F:4F:69:30:B3:11:9E Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 02EF Signing time: Sun 01 Mar 2026 22:41:49 +0000 Manifest this update: Sun 01 Mar 2026 22:41:48 +0000 Manifest next update: Sun 08 Mar 2026 22:41:48 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: DlA/QVCb/uAHRTGBtwAenPOcuWJZ+7VeeFIZYaImv2k=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: CHlJpAmUO3HeXSZX7Pc0z854lGAon91AqOY8MRP1VAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Mar 1 22:41:48 2026 GMT Not After : Mar 8 22:41:48 2026 GMT Subject: CN=69a4c0ad-8a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3c:7a:7c:2b:2b:37:cc:92:da:bc:0f:0d:37: 1c:43:49:59:69:69:8c:a5:e3:26:ee:02:4a:67:47: d9:78:f5:f2:84:e3:ed:ad:35:9a:52:b6:70:f0:4c: 63:08:12:81:e1:b8:af:c8:73:6e:b8:2c:6f:bd:ca: 34:74:db:cf:a2:3d:0b:ab:b5:29:6c:e5:29:b9:f9: a4:99:b6:92:59:0b:dd:30:26:10:1c:f0:c4:b7:55: 60:a3:47:7f:30:d4:53:2f:c2:09:b6:13:a6:cf:2a: b9:09:79:cc:86:2b:1b:45:a8:3c:f7:c8:a7:1e:ce: 07:65:0f:24:6f:0d:2b:e6:97:52:b8:9e:42:71:e6: 78:25:6d:fc:72:a5:14:1c:50:12:ae:90:b5:9d:76: d0:f9:15:7c:7d:34:08:58:30:41:2c:2b:40:f4:13: 56:89:2f:d1:6a:5b:82:03:91:25:46:1b:be:b0:74: 7e:3d:65:f6:0f:c9:4d:e6:72:bd:d2:2a:fc:11:ab: 41:4f:40:18:fb:1d:01:ba:ac:c7:48:2f:6e:47:08: b4:99:54:1c:9b:21:bb:a1:e6:36:37:18:7a:9e:59: 04:a0:b6:57:5c:f6:66:3f:24:61:c6:d8:88:38:29: 2e:e3:7e:d5:2f:0b:86:ff:65:ce:e0:a5:f8:07:2f: 6e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:5E:D0:2F:A5:70:16:19:5F:F1:F7:51:E8:8F:4F:69:30:B3:11:9E X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a6:c7:e9:38:93:00:9c:ed:8a:6a:1b:59:82:d0:b8:77:64: 54:f4:12:5a:30:69:d7:d2:ad:3b:15:1c:11:9f:31:13:ff:16: e1:86:8b:62:34:c1:a3:ee:e9:d5:d5:0c:ef:49:84:c7:59:11: 59:06:dd:54:c4:50:73:3d:b0:32:96:7e:0e:a4:69:28:5e:9d: 56:fb:41:75:fd:fe:82:e0:2a:04:53:28:2a:f8:03:68:f4:19: 1e:ef:2d:4b:b0:00:40:26:23:d7:1b:0e:e4:7e:6f:38:e0:44: c8:b6:a8:f7:05:c6:fc:3a:f0:ab:b9:73:44:8a:86:ce:96:64: 15:cd:5a:7c:fd:04:85:fd:c5:97:3a:45:a2:66:c6:05:7a:62: 85:b3:ba:d8:1d:cb:01:41:3d:9f:d3:08:f9:5b:22:7f:13:4f: 01:02:f7:38:54:ff:bc:dd:d6:4a:d2:c0:91:08:f0:e8:71:e4: 97:34:e2:c2:d7:0c:5d:46:dd:7d:68:76:5f:60:ff:66:77:69: d1:19:15:83:82:94:a5:43:a4:a8:f9:18:93:5e:00:d8:35:ef: 2c:4f:2a:5b:41:5b:59:75:d1:89:d2:a9:00:2b:a4:61:38:3a: 3d:a3:63:51:cb:d1:48:69:60:f3:bb:06:bb:fa:f4:c3:c4:b2: 61:7c:d4:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjYwMzAxMjI0MTQ4WhcNMjYwMzA4MjI0MTQ4WjAYMRYwFAYD VQQDEw02OWE0YzBhZC04YTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTx6fCsrN8yS2rwPDTccQ0lZaWmMpeMm7gJKZ0fZePXyhOPtrTWaUrZw8Exj CBKB4bivyHNuuCxvvco0dNvPoj0Lq7UpbOUpufmkmbaSWQvdMCYQHPDEt1Vgo0d/ MNRTL8IJthOmzyq5CXnMhisbRag898inHs4HZQ8kbw0r5pdSuJ5CceZ4JW38cqUU HFASrpC1nXbQ+RV8fTQIWDBBLCtA9BNWiS/RaluCA5ElRhu+sHR+PWX2D8lN5nK9 0ir8EatBT0AY+x0BuqzHSC9uRwi0mVQcmyG7oeY2Nxh6nlkEoLZXXPZmPyRhxtiI OCku437VLwuG/2XO4KX4By9uCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEJe0C+l cBYZX/H3UeiPT2kwsxGeMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALqbH6TiTAJztimobWYLQuHdkVPQSWjBp19KtOxUcEZ8xE/8W4YaLYjTBo+7p 1dUM70mEx1kRWQbdVMRQcz2wMpZ+DqRpKF6dVvtBdf3+guAqBFMoKvgDaPQZHu8t S7AAQCYj1xsO5H5vOOBEyLao9wXG/Drwq7lzRIqGzpZkFc1afP0Ehf3FlzpFombG BXpihbO62B3LAUE9n9MI+VsifxNPAQL3OFT/vN3WStLAkQjw6HHklzTiwtcMXUbd fWh2X2D/Zndp0RkVg4KUpUOkqPkYk14A2DXvLE8qW0FbWXXRidKpACukYTg6PaNj UcvRSGlg87sGu/r0w8SyYXzUSQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:23:58 2026 by rpki-client