$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: DsWCW0iWQruxU3RB7odEa9VhFGlEiKbIQGd27q9OFsQ= Subject key identifier: D4:9E:FD:57:A5:8E:77:22:EE:01:85:A3:F8:C0:87:FC:87:43:98:05 Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 34D7 Signing time: Mon 02 Mar 2026 00:37:14 +0000 Manifest this update: Mon 02 Mar 2026 00:37:11 +0000 Manifest next update: Mon 09 Mar 2026 00:37:11 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: 0BngGOwJXfpNbZ+22O6sO5Ix6d3/tjKvRZKvYFXtLdk=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: oojYcBMoonELSfe45pkI581LosRHOK0/3Xt8Hp4n/PY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Mar 2 00:37:11 2026 GMT Not After : Mar 9 00:37:11 2026 GMT Subject: CN=69a4dbba-14eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:98:b1:05:a3:d5:f4:d8:e7:40:82:f2:28: ca:96:03:4d:97:17:b9:fb:fd:b3:72:3a:2d:c6:6b: ba:69:a6:7b:3e:d0:d6:26:32:4a:ff:0e:ca:69:23: 0a:9f:63:b2:d1:62:a3:ef:41:2b:61:64:18:46:fe: 9c:dd:1a:4e:00:7f:9c:f8:4c:18:7b:57:73:b6:5c: 02:d3:58:e0:30:fb:6f:2a:cb:d8:b5:82:a7:b1:5c: 0d:80:90:53:a9:9d:9b:90:5c:dd:c1:8f:93:e1:3b: 82:c2:93:02:c0:a8:93:a9:0e:57:9c:76:b2:0b:c6: 8e:1d:51:34:b3:32:f8:b7:15:7d:f6:46:2c:60:6f: f7:d7:e2:fc:c2:6f:99:5b:8c:b3:36:53:a3:f0:f1: 7a:d1:18:bc:01:36:4d:58:21:b0:99:f6:28:e3:d2: 88:a2:b5:37:7c:44:99:37:a2:33:dd:fb:db:96:2b: 70:e2:3e:02:99:ce:6f:76:01:aa:7e:7f:a4:dc:6f: c2:11:64:ac:8a:8b:39:12:04:f7:b6:39:b8:b3:3e: 5f:d6:2a:b7:31:8a:d7:95:e5:2e:b8:b3:c0:5f:72: bc:74:1b:7f:04:bb:35:1f:42:fa:90:3c:d4:fd:9b: 00:d4:e5:64:b3:f2:91:4e:81:70:78:56:73:3e:99: f2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9E:FD:57:A5:8E:77:22:EE:01:85:A3:F8:C0:87:FC:87:43:98:05 X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:22:f8:21:30:ea:68:fa:d5:84:4b:c2:b6:c6:c8:42:45:c9: 42:05:de:6a:84:a1:90:f6:df:1c:9d:c0:f6:08:f7:82:30:c6: 30:3a:73:a3:1d:6f:d3:9a:25:c7:8d:5e:87:60:e3:90:0d:01: ea:35:fb:de:d8:6c:74:d0:e8:86:cf:b8:7a:ee:58:87:35:90: e7:ff:22:be:a2:d4:05:3d:44:e7:86:20:55:90:a2:93:52:f6: 0f:e0:c3:b6:fe:97:06:01:08:9e:23:33:a7:f8:5f:90:dc:57: 62:25:b0:07:71:94:b1:23:0b:9c:f4:08:61:79:bd:e9:39:fc: 70:3d:66:32:34:6e:d9:8d:ae:6c:2f:5a:07:b0:cf:28:2e:d3: cd:4d:29:8e:7d:b3:75:96:fa:e0:63:05:e6:25:bc:94:d2:5a: a3:b8:78:4e:cd:3f:93:7a:bc:ca:b6:92:60:b3:5c:93:20:5e: 7e:0c:c9:b4:46:aa:74:ee:5b:6f:de:5e:f0:78:e7:d5:a2:bc: 35:58:e4:ed:66:e2:87:06:6f:12:51:c9:cd:3d:22:d0:d8:b8: d0:1d:28:68:34:c3:28:11:78:04:1b:19:8e:d8:f9:8c:54:29: b4:ee:d5:81:4a:28:50:b4:e9:ef:7d:79:29:ff:80:a0:7f:9c: 9f:3b:0c:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjYwMzAyMDAzNzExWhcNMjYwMzA5MDAzNzExWjAYMRYwFAYD VQQDEw02OWE0ZGJiYS0xNGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FCYsQWj1fTY50CC8ijKlgNNlxe5+/2zcjotxmu6aaZ7PtDWJjJK/w7KaSMK n2Oy0WKj70ErYWQYRv6c3RpOAH+c+EwYe1dztlwC01jgMPtvKsvYtYKnsVwNgJBT qZ2bkFzdwY+T4TuCwpMCwKiTqQ5XnHayC8aOHVE0szL4txV99kYsYG/31+L8wm+Z W4yzNlOj8PF60Ri8ATZNWCGwmfYo49KIorU3fESZN6Iz3fvblitw4j4Cmc5vdgGq fn+k3G/CEWSsios5EgT3tjm4sz5f1iq3MYrXleUuuLPAX3K8dBt/BLs1H0L6kDzU /ZsA1OVks/KRToFweFZzPpny2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNSe/Vel jnci7gGFo/jAh/yHQ5gFMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAiL4ITDqaPrVhEvCtsbIQkXJQgXeaoShkPbfHJ3A9gj3gjDGMDpzox1v05ol x41eh2DjkA0B6jX73thsdNDohs+4eu5YhzWQ5/8ivqLUBT1E54YgVZCik1L2D+DD tv6XBgEIniMzp/hfkNxXYiWwB3GUsSMLnPQIYXm96Tn8cD1mMjRu2Y2ubC9aB7DP KC7TzU0pjn2zdZb64GMF5iW8lNJao7h4Ts0/k3q8yraSYLNckyBefgzJtEaqdO5b b95e8Hjn1aK8NVjk7WbihwZvElHJzT0i0Ni40B0oaDTDKBF4BBsZjtj5jFQptO7V gUooULTp7315Kf+AoH+cnzsMag== -----END CERTIFICATE-----Generated at Mon Mar 2 09:22:19 2026 by rpki-client