$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: zuN7nULLOHcgdYTy0XXP9dSPhtYgiuYQVdGb/9H1uLo= Subject key identifier: 1F:6D:44:E8:90:13:52:06:63:F9:F2:B0:9B:4D:0E:AF:A5:0A:3C:9E Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 0311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 030D Signing time: Sun 01 Mar 2026 02:01:16 +0000 Manifest this update: Sun 01 Mar 2026 02:01:15 +0000 Manifest next update: Sun 08 Mar 2026 02:01:15 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: vcPo3bjfzO15hJOaaJMIE1DJxMWX0ashUD5CZWhvIV4=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: XQQlM6hNFAUKcUE8JK0r1I7v7DiMWYg0+Wov0CdSVM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586, serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Validity Not Before: Mar 1 02:01:15 2026 GMT Not After : Mar 8 02:01:15 2026 GMT Subject: CN=69a39dec-6b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:6e:26:03:33:93:75:59:d4:ba:0a:72:72:f5: c5:41:28:26:ba:97:2b:fe:c7:d4:aa:cf:be:20:6e: 93:10:a9:f4:c6:a2:af:56:0a:5c:0a:19:d0:29:6b: 8b:56:7c:70:9d:52:f9:e1:82:c1:cb:79:57:cc:15: 04:cf:ec:53:19:9d:b1:78:48:e0:e6:51:48:01:ef: 90:a7:05:93:4b:fc:98:0b:f9:e7:c4:de:e7:18:7e: f3:58:8b:7a:33:4f:3b:e5:90:52:31:76:5e:11:c6: ee:71:53:41:c2:a3:01:d4:8f:e3:e2:b1:05:cc:44: 1f:04:8f:69:17:c3:3e:6c:ba:97:30:d5:c6:b8:f9: 33:8f:b2:67:27:e2:fa:34:be:5b:ee:80:69:10:2a: a1:54:dd:f6:5d:90:11:1c:a6:25:00:31:15:23:8b: a5:fd:6e:db:69:11:0c:61:bf:47:b1:51:69:6d:ac: 07:ab:96:00:4e:41:e8:05:c4:1f:53:2e:b6:87:8e: ee:95:9a:d2:f9:f5:7c:50:1b:ac:f7:37:cc:53:62: 24:a5:0d:87:d0:76:2d:2e:9b:23:52:c5:c3:92:9e: 99:60:30:34:62:48:a2:5b:58:0a:ca:d3:84:d0:94: 73:3d:e1:57:6c:16:94:1f:d8:f3:4f:c0:36:64:4c: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:6D:44:E8:90:13:52:06:63:F9:F2:B0:9B:4D:0E:AF:A5:0A:3C:9E X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:2a:26:fe:c5:23:0b:00:90:51:b5:e3:94:08:8d:cd:18:44: dd:89:5f:b9:3a:ba:54:e9:50:c7:ad:88:5e:c5:7c:84:b4:39: e4:e9:97:eb:77:86:98:2c:84:10:c1:08:e2:13:49:56:0b:d2: d3:02:63:aa:7b:d2:5f:df:45:24:b9:22:89:db:32:9e:cf:a4: 13:ed:90:2a:c0:d2:01:8f:cd:82:e8:02:3c:da:87:8b:67:bc: 22:f0:c3:f3:55:3a:c8:2e:10:dd:9a:c1:3f:32:46:b2:cc:31: b4:24:a1:27:62:f1:dc:93:69:6c:9b:70:4b:a3:0c:72:1f:b4: 82:e6:e8:54:d0:34:55:14:cb:ca:4e:d4:ab:9c:27:85:a5:4c: e8:2a:9d:c0:24:0e:6c:d3:8d:95:b2:10:3d:d7:97:b2:c2:eb: ee:ed:1e:da:54:9e:37:67:f5:37:39:5d:20:3c:c2:53:ac:8e: 1b:a5:72:cf:7a:2a:d1:f1:d9:3a:d6:b3:de:e2:77:cc:e3:61: 98:80:7b:e2:bf:ae:78:15:1d:33:da:1e:43:76:18:c8:75:4d: d0:34:e1:07:8b:92:4e:f2:f5:3b:6c:e4:fd:14:90:0f:07:9c: 83:ba:88:bd:ae:b8:bf:5e:71:66:ee:04:0a:66:21:4c:9b:54: 2b:8a:52:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjYwMzAxMDIwMTE1WhcNMjYwMzA4MDIwMTE1WjAYMRYwFAYD VQQDDA02OWEzOWRlYy02YjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjG4mAzOTdVnUugpycvXFQSgmupcr/sfUqs++IG6TEKn0xqKvVgpcChnQKWuL VnxwnVL54YLBy3lXzBUEz+xTGZ2xeEjg5lFIAe+QpwWTS/yYC/nnxN7nGH7zWIt6 M0875ZBSMXZeEcbucVNBwqMB1I/j4rEFzEQfBI9pF8M+bLqXMNXGuPkzj7JnJ+L6 NL5b7oBpECqhVN32XZARHKYlADEVI4ul/W7baREMYb9HsVFpbawHq5YATkHoBcQf Uy62h47ulZrS+fV8UBus9zfMU2IkpQ2H0HYtLpsjUsXDkp6ZYDA0YkiiW1gKytOE 0JRzPeFXbBaUH9jzT8A2ZEyKzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB9tROiQ E1IGY/nysJtNDq+lCjyeMB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYyom/sUjCwCQUbXjlAiNzRhE3YlfuTq6VOlQx62IXsV8hLQ55OmX63eGmCyE EMEI4hNJVgvS0wJjqnvSX99FJLkiidsyns+kE+2QKsDSAY/NgugCPNqHi2e8IvDD 81U6yC4Q3ZrBPzJGsswxtCShJ2Lx3JNpbJtwS6MMch+0guboVNA0VRTLyk7Uq5wn haVM6CqdwCQObNONlbIQPdeXssLr7u0e2lSeN2f1NzldIDzCU6yOG6Vyz3oq0fHZ Otaz3uJ3zONhmIB74r+ueBUdM9oeQ3YYyHVN0DThB4uSTvL1O2zk/RSQDwecg7qI va64v15xZu4ECmYhTJtUK4pSig== -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:58 2026 by rpki-client