$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: C1u8GrvmQ+a1V/xDP+AolP5jN8YUz5uhIiag2n+wxf4= Subject key identifier: 96:3B:49:46:11:24:1C:60:19:8B:DC:21:EA:08:71:5E:6D:64:8E:D9 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 01FE Signing time: Mon 02 Mar 2026 00:55:49 +0000 Manifest this update: Mon 02 Mar 2026 00:55:47 +0000 Manifest next update: Mon 09 Mar 2026 00:55:47 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: /70UsvZYedeeaxpTFLdf93Cw000xBS5XVhA9C0r2chE=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Mar 2 00:55:47 2026 GMT Not After : Mar 9 00:55:47 2026 GMT Subject: CN=69a4e015-3718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5b:1d:ea:84:19:a7:b0:be:60:cc:54:ac:73: 22:91:a9:51:3b:11:5e:6f:de:0f:f8:e0:d8:88:9c: 2d:d5:d1:ba:7f:71:26:75:fc:ba:e9:e4:bf:65:76: 04:c3:2f:ca:ff:0f:46:4a:92:6d:7a:6b:01:8a:75: 6d:64:54:0e:dd:9a:27:fc:23:f5:d4:a2:90:c8:3e: 87:6b:12:40:e5:09:2c:dc:29:42:09:9b:f4:ac:f2: a6:7a:fd:e6:08:16:93:7d:e9:b2:75:e4:9f:bb:de: 26:b8:cc:2a:85:67:e1:cc:71:4a:7a:ec:87:5d:13: e1:eb:68:84:a6:47:7d:35:a7:f1:14:83:af:93:6d: 4d:00:f2:ed:71:1b:b8:bc:6f:2b:67:af:b2:81:c8: 71:7d:74:bd:bb:59:fc:ce:00:81:7e:2c:6c:a6:9d: de:57:10:17:3d:84:10:16:98:30:8c:12:c3:87:d6: 1b:9e:9f:38:4a:45:c6:3d:c0:a8:61:43:09:d4:2b: e8:63:c0:f2:93:c3:33:90:ae:cb:9c:f1:40:16:f3: 7e:16:ef:d1:0b:3c:b9:21:84:04:83:25:b8:b1:76: 88:fb:15:ee:52:f5:ee:92:c5:b5:26:09:86:87:9a: 22:0c:d4:b6:74:cd:96:6e:3d:18:43:7b:c9:c1:40: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3B:49:46:11:24:1C:60:19:8B:DC:21:EA:08:71:5E:6D:64:8E:D9 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:35:5e:11:a1:a4:b2:86:e6:cd:26:02:9c:f5:78:8e:0d:b9: 2e:ee:30:35:6b:06:3d:a9:17:15:63:fe:7b:0d:eb:e0:27:21: 51:11:3a:ae:59:87:34:49:d1:99:eb:39:45:9c:92:f8:89:b0: d9:f7:16:0f:d9:34:5f:cd:9c:40:1b:b7:1a:72:2b:98:60:13: 43:80:ae:ad:97:3c:fa:36:13:2e:67:e7:80:1c:77:2c:fc:7a: 30:23:6d:ce:6f:84:c4:0f:ee:e2:e1:e0:6b:16:97:94:7d:b9: ac:d2:bc:cf:29:06:90:61:e7:84:9c:d3:36:b5:a7:98:4b:49: 4d:c4:b8:08:41:30:51:f4:14:77:7c:9c:19:7c:af:69:b4:db: 51:5f:f5:3c:6f:2f:8d:ac:22:00:5c:3d:a7:c5:48:8b:19:b1: 44:77:3d:67:91:d4:5c:36:38:8d:27:1c:f8:eb:53:87:f6:72: cc:21:23:e6:0b:fb:2d:08:3e:c3:60:c6:75:6f:df:73:85:7e: 49:5f:cd:b8:af:2b:ca:bf:c2:3a:5d:ad:28:b9:12:19:86:c8: 27:ea:3f:c8:cf:b2:0a:a1:22:47:5d:90:b6:d4:4c:d0:9f:76: 26:23:c4:52:64:17:47:e6:dd:87:78:8e:a8:7d:2c:31:f0:6c: b3:7d:7c:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwMzAyMDA1NTQ3WhcNMjYwMzA5MDA1NTQ3WjAYMRYwFAYD VQQDEw02OWE0ZTAxNS0zNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1sd6oQZp7C+YMxUrHMikalROxFeb94P+ODYiJwt1dG6f3Emdfy66eS/ZXYE wy/K/w9GSpJtemsBinVtZFQO3Zon/CP11KKQyD6HaxJA5Qks3ClCCZv0rPKmev3m CBaTfemydeSfu94muMwqhWfhzHFKeuyHXRPh62iEpkd9NafxFIOvk21NAPLtcRu4 vG8rZ6+ygchxfXS9u1n8zgCBfixspp3eVxAXPYQQFpgwjBLDh9Ybnp84SkXGPcCo YUMJ1CvoY8Dyk8MzkK7LnPFAFvN+Fu/RCzy5IYQEgyW4sXaI+xXuUvXuksW1JgmG h5oiDNS2dM2Wbj0YQ3vJwUCYcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJY7SUYR JBxgGYvcIeoIcV5tZI7ZMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANzVeEaGksobmzSYCnPV4jg25Lu4wNWsGPakXFWP+ew3r4CchURE6rlmHNEnR mes5RZyS+Imw2fcWD9k0X82cQBu3GnIrmGATQ4CurZc8+jYTLmfngBx3LPx6MCNt zm+ExA/u4uHgaxaXlH25rNK8zykGkGHnhJzTNrWnmEtJTcS4CEEwUfQUd3ycGXyv abTbUV/1PG8vjawiAFw9p8VIixmxRHc9Z5HUXDY4jScc+OtTh/ZyzCEj5gv7LQg+ w2DGdW/fc4V+SV/NuK8ryr/COl2tKLkSGYbIJ+o/yM+yCqEiR12QttRM0J92JiPE UmQXR+bdh3iOqH0sMfBss318WA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:00 2026 by rpki-client