$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: 1mNQrkxaxuuXZlai2RoZRwsGK0vy4cvQfnzxo5iQ7eo= Subject key identifier: D8:2E:B4:BE:D7:1A:E7:E4:BD:58:B0:36:15:7D:73:C9:18:DA:EA:B1 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 07E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 07DA Signing time: Mon 02 Mar 2026 02:07:40 +0000 Manifest this update: Mon 02 Mar 2026 02:07:37 +0000 Manifest next update: Mon 09 Mar 2026 02:07:37 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: 2LyNUgb9UTAsE19BeLQ2dZyhsoYDbA5mIHpJfLEOsXw=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: 7ymgcj6P1279S5XXSpCepa419faVvXeGcEB15wSWpx8=) 3: 2C0DD994525511F0A544424DC4F9AE02.roa (hash: P2CEyl9OyHCD/1DuLCNfzXBBwkFTLi3o8drVnlOWDvg=) 4: CE899F0A66C311F08BE17B42C4F9AE02.roa (hash: wHIhwK0cuu0TCIgwSyAlWZMYLOUEIP5XRfvTBvqmJf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Mar 2 02:07:37 2026 GMT Not After : Mar 9 02:07:37 2026 GMT Subject: CN=69a4f0eb-7fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7f:23:66:ef:79:1c:8d:2c:2b:60:f4:f3:f7: 2c:da:89:7f:9c:f6:ef:45:4e:92:ab:84:c1:75:b1: ae:3e:3e:a3:1f:f0:51:1a:f2:0a:ed:8c:dd:0c:64: a7:e1:68:8b:09:fd:46:9f:3b:42:ea:f6:17:de:a2: 5f:de:ec:18:54:5c:82:71:09:e2:07:b6:02:f7:98: c3:e7:43:d7:71:96:cb:85:d2:01:ab:ea:ed:3e:50: 5d:5a:a7:5f:ec:fb:24:94:a4:bb:02:b9:1f:9d:d0: 4c:29:3a:3b:29:d7:67:a2:0c:f0:19:0f:d1:ec:e5: 3c:3f:58:fa:8d:e1:aa:56:70:71:b3:51:84:70:38: 89:e7:6b:49:d1:2b:5e:75:10:1b:0e:1e:97:b7:34: 12:78:c8:20:82:6f:fd:7c:a7:07:39:07:4b:6a:dc: fd:cf:70:42:71:a5:4a:f7:1f:24:24:74:66:68:f7: 48:d1:c8:8d:8f:27:20:a0:ad:db:e4:ba:0d:03:19: 0f:28:8a:be:43:57:22:86:58:15:b6:35:17:7b:4a: 3a:e9:5c:ed:e9:3a:aa:80:4e:38:84:43:6d:bb:c6: 02:8f:97:35:da:9e:b5:94:16:6f:49:11:d6:52:93: 2f:af:e2:8d:c2:2e:87:0e:92:7b:b9:36:10:ac:98: cd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:2E:B4:BE:D7:1A:E7:E4:BD:58:B0:36:15:7D:73:C9:18:DA:EA:B1 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:5d:ee:cc:3c:1a:cc:01:ca:00:2a:5b:91:e1:76:d2:06:6a: 26:27:ad:f7:8d:50:b5:49:08:bc:c2:fc:74:98:bf:71:5b:0f: 39:6f:df:4f:4d:89:48:8d:e4:25:ba:0c:0d:5e:39:2a:ad:f3: 8b:2e:b3:e5:2d:14:36:10:85:9a:60:4a:19:31:1d:8c:31:53: 76:ba:88:8f:0a:d7:0a:61:5a:ce:f1:a0:a9:d3:c9:c2:be:b8: 12:99:98:ea:b8:7c:e3:4f:d3:b1:fa:34:3f:87:77:99:7e:8b: f8:46:8f:3f:b9:13:8b:63:f3:1b:48:e4:ea:a8:12:97:5f:db: 85:b1:72:42:4f:f7:09:c5:eb:7d:ec:c2:53:60:cc:d2:2e:44: 9f:16:7f:0b:f1:b4:f5:b2:66:02:3d:e1:f2:f4:d2:fe:2b:c4: 47:b5:7c:62:77:ff:d4:0c:bb:57:05:d5:39:c7:6e:10:80:b9: 9a:c6:eb:11:a6:28:95:6f:8f:43:74:8a:f0:0d:51:f0:49:93: 34:4e:b3:41:f9:9a:94:0f:39:41:9b:5d:35:4c:29:e2:e1:cd: 1d:27:5a:d7:36:ad:7c:dc:b4:bb:a7:b0:d7:42:b0:5a:9a:14: 30:ea:7d:7e:7b:2f:3d:66:6f:35:20:90:05:83:42:3c:e9:37: 0b:17:77:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjYwMzAyMDIwNzM3WhcNMjYwMzA5MDIwNzM3WjAYMRYwFAYD VQQDEw02OWE0ZjBlYi03ZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtX8jZu95HI0sK2D08/cs2ol/nPbvRU6Sq4TBdbGuPj6jH/BRGvIK7YzdDGSn 4WiLCf1GnztC6vYX3qJf3uwYVFyCcQniB7YC95jD50PXcZbLhdIBq+rtPlBdWqdf 7PsklKS7ArkfndBMKTo7KddnogzwGQ/R7OU8P1j6jeGqVnBxs1GEcDiJ52tJ0Ste dRAbDh6XtzQSeMgggm/9fKcHOQdLatz9z3BCcaVK9x8kJHRmaPdI0ciNjycgoK3b 5LoNAxkPKIq+Q1cihlgVtjUXe0o66Vzt6TqqgE44hENtu8YCj5c12p61lBZvSRHW UpMvr+KNwi6HDpJ7uTYQrJjNLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNgutL7X GufkvViwNhV9c8kY2uqxMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFV3uzDwazAHKACpbkeF20gZqJiet941QtUkIvML8dJi/cVsPOW/fT02JSI3k JboMDV45Kq3ziy6z5S0UNhCFmmBKGTEdjDFTdrqIjwrXCmFazvGgqdPJwr64EpmY 6rh840/Tsfo0P4d3mX6L+EaPP7kTi2PzG0jk6qgSl1/bhbFyQk/3CcXrfezCU2DM 0i5EnxZ/C/G09bJmAj3h8vTS/ivER7V8Ynf/1Ay7VwXVOcduEIC5msbrEaYolW+P Q3SK8A1R8EmTNE6zQfmalA85QZtdNUwp4uHNHSda1zatfNy0u6ew10KwWpoUMOp9 fnsvPWZvNSCQBYNCPOk3Cxd3sA== -----END CERTIFICATE-----Generated at Mon Mar 2 18:33:56 2026 by rpki-client