$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: 5zSUbZY2nVEPAXUlp4FQaHY+46/37hVU9SNAkjun4GU= Subject key identifier: D4:C8:D0:F7:E6:60:92:58:FE:57:AC:E0:E5:56:93:26:BB:B2:2F:9A Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0D01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0CF5 Signing time: Sun 01 Mar 2026 23:58:43 +0000 Manifest this update: Sun 01 Mar 2026 23:58:42 +0000 Manifest next update: Sun 08 Mar 2026 23:58:42 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: eH5xamSHPt33cHo3DyxUMPJxbsO3asa+sFho6eG5Mkk=) 2: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: ev3YW2NLkO0rjwyR3qqZhC4fRgKa7uqRJcOoJlN/Fyo=) 3: 44FEC394589711F0B981A181C4F9AE02.roa (hash: XgVbFRUMdQn7YMgDUvllzDbhgw5VgTScVk8o1raBf8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Mar 1 23:58:42 2026 GMT Not After : Mar 8 23:58:42 2026 GMT Subject: CN=69a4d2b3-e5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8b:98:e8:ff:ba:a9:d6:56:ce:fe:a8:d6:17: e0:b2:8c:97:c5:99:7e:0a:c3:fd:05:50:ea:42:d0: e4:64:1b:80:7e:00:13:0d:e0:66:ba:3c:c2:ba:a0: 34:2d:e5:a8:7d:3d:22:3b:b7:eb:75:89:d9:81:7e: 40:76:9a:b1:4e:6f:3e:06:55:ca:88:77:2c:86:74: a0:e0:6a:a1:f0:69:78:14:37:d0:ac:a8:5e:28:0c: e2:85:0b:0e:56:65:48:4c:d9:6a:52:7a:6d:54:d3: f1:5f:69:4d:64:19:16:18:43:6d:81:72:44:67:b0: 7a:52:ae:5f:3d:89:39:c7:52:54:50:0e:16:f0:bb: 93:b2:19:46:f8:c6:e9:4d:44:88:5b:04:84:34:30: a4:24:e3:c4:96:f9:d7:45:b0:b8:c3:12:65:f7:1d: ae:5b:18:26:dd:92:dd:78:23:2f:37:6b:f5:3b:10: 39:60:5c:8c:bf:00:dd:bb:ed:ea:ab:10:5b:86:cf: a0:9a:c6:ae:12:a1:8c:c4:1b:d4:54:ed:09:cc:da: 92:fd:7c:3d:ad:61:7b:5d:dc:92:bd:fc:f6:0f:86: 83:ed:6e:a8:0b:d9:e8:d4:58:36:b3:e1:22:cc:f6: 04:6c:3b:d1:fb:04:47:27:b5:2f:c0:9c:26:25:35: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C8:D0:F7:E6:60:92:58:FE:57:AC:E0:E5:56:93:26:BB:B2:2F:9A X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:01:95:5e:dd:4d:bb:7b:a3:8a:ed:82:3b:af:ae:56:da:48: 1b:60:c0:50:51:29:9b:03:4e:a0:84:72:d3:4b:d9:75:56:82: 3e:ca:b9:f0:43:1c:de:ee:c9:ae:9e:96:83:dc:a5:b7:db:4f: be:f9:9e:66:af:8e:fc:53:54:e3:be:ee:2e:aa:07:55:2e:96: 9b:f2:9e:2c:0c:70:6b:7a:32:6a:10:af:cc:ba:47:1f:6c:5e: 50:23:52:33:76:31:32:8b:cd:3b:4d:6e:46:84:7b:f5:70:f9: 55:f3:e4:a7:8d:62:96:07:b0:c6:38:ef:5e:72:ab:0c:34:5f: 9f:24:f8:4a:94:64:a1:51:92:85:32:ec:59:b0:ea:df:3f:4f: a9:c5:bb:9d:d6:bb:72:a7:2c:09:f8:82:a5:e4:84:a6:31:70: fa:ab:cd:2d:a7:f0:22:44:92:0f:16:0a:68:1c:13:fa:1f:02: d4:0b:07:55:a7:0a:65:2b:0c:2c:5f:06:08:49:e9:67:b0:53: db:01:52:bd:4a:92:a6:b4:b1:7c:df:c7:9b:c0:7d:aa:d5:a1: 42:46:6b:c4:41:65:9a:e3:13:9f:6f:69:e8:1e:fc:be:7f:cf: 4d:ec:59:4f:10:35:2c:6d:0b:13:7f:40:75:f8:6b:02:06:b1: b2:4a:76:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjYwMzAxMjM1ODQyWhcNMjYwMzA4MjM1ODQyWjAYMRYwFAYD VQQDEw02OWE0ZDJiMy1lNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIuY6P+6qdZWzv6o1hfgsoyXxZl+CsP9BVDqQtDkZBuAfgATDeBmujzCuqA0 LeWofT0iO7frdYnZgX5AdpqxTm8+BlXKiHcshnSg4Gqh8Gl4FDfQrKheKAzihQsO VmVITNlqUnptVNPxX2lNZBkWGENtgXJEZ7B6Uq5fPYk5x1JUUA4W8LuTshlG+Mbp TUSIWwSENDCkJOPElvnXRbC4wxJl9x2uWxgm3ZLdeCMvN2v1OxA5YFyMvwDdu+3q qxBbhs+gmsauEqGMxBvUVO0JzNqS/Xw9rWF7XdySvfz2D4aD7W6oC9no1Fg2s+Ei zPYEbDvR+wRHJ7UvwJwmJTUf4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTI0Pfm YJJY/les4OVWkya7si+aMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZwGVXt1Nu3ujiu2CO6+uVtpIG2DAUFEpmwNOoIRy00vZdVaCPsq58EMc3u7J rp6Wg9ylt9tPvvmeZq+O/FNU477uLqoHVS6Wm/KeLAxwa3oyahCvzLpHH2xeUCNS M3YxMovNO01uRoR79XD5VfPkp41ilgewxjjvXnKrDDRfnyT4SpRkoVGShTLsWbDq 3z9PqcW7nda7cqcsCfiCpeSEpjFw+qvNLafwIkSSDxYKaBwT+h8C1AsHVacKZSsM LF8GCEnpZ7BT2wFSvUqSprSxfN/Hm8B9qtWhQkZrxEFlmuMTn29p6B78vn/PTexZ TxA1LG0LE39AdfhrAgaxskp2uw== -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:41 2026 by rpki-client