$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: eSx+DwA0h9Lg342Kx9CDLubyv7y61wFjzzqtTdYeq6w= Subject key identifier: 71:60:02:29:16:5D:55:3A:75:63:84:09:E1:A4:3F:B2:48:DA:DC:99 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 0A47 Signing time: Mon 02 Mar 2026 01:33:57 +0000 Manifest this update: Mon 02 Mar 2026 01:33:56 +0000 Manifest next update: Mon 09 Mar 2026 01:33:56 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: yQ4ahcf94LR/ZOKLTZLJQ66eC3RlOXvV9Ri9JIFC7S4=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: xYf6QNwyh/TfYBwfKMFox0Y2KD6yEqZCCyhoM2C9YaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Mar 2 01:33:56 2026 GMT Not After : Mar 9 01:33:56 2026 GMT Subject: CN=69a4e905-9ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:6f:36:70:2e:c8:b3:eb:31:20:b9:24:c6: da:67:3a:5f:31:70:f3:ce:3b:c7:97:b6:1f:fd:db: 45:36:fb:db:bd:29:d1:f3:13:57:09:ef:fa:98:60: df:fa:fb:a9:04:95:81:cc:2f:4d:09:50:b2:27:61: b1:56:76:1a:b4:d9:3d:a9:00:66:a3:78:77:d9:bc: 97:1a:35:5b:e7:f1:e6:98:39:17:54:d6:c9:4c:16: b7:0e:0a:2e:76:7a:37:2b:ba:6a:90:7b:93:8f:59: 5c:d0:d6:f9:41:76:ec:4a:ed:de:13:16:87:d0:aa: 05:df:c0:13:c5:52:df:87:23:37:a5:98:24:0f:c0: 9e:6f:a5:16:58:47:fd:b8:e1:aa:a9:f2:3b:2c:a5: d6:35:9c:a2:51:d9:07:96:e8:bd:db:c5:09:a2:93: 79:09:cf:16:2f:9d:0a:b9:e8:f6:b4:6a:5b:5e:14: f7:99:5f:e3:ba:9a:9c:fb:88:e4:9e:e6:b7:b5:43: 8e:2d:28:02:9d:9a:2e:da:78:82:65:e1:7c:a6:db: 77:0f:2f:76:4b:14:b0:96:b2:7f:13:ad:dc:69:9b: 22:df:2a:88:35:4a:5c:29:86:04:78:ae:a5:0e:47: 3d:22:cc:aa:d9:ee:ed:d0:bc:22:8e:a0:7e:0d:59: b8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:60:02:29:16:5D:55:3A:75:63:84:09:E1:A4:3F:B2:48:DA:DC:99 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:66:ed:00:71:30:d2:a1:ba:13:c6:e7:9c:a3:aa:a0:d8:7d: 26:cb:a2:d2:6e:c1:09:31:e9:f7:cf:93:72:63:80:b4:5d:de: e5:0b:54:90:63:1d:3b:d7:d1:d7:7c:12:96:7d:26:24:08:b0: 72:06:bf:56:cf:1b:50:62:53:21:d8:61:64:39:47:c4:96:96: 3b:4a:17:a8:32:71:8d:ab:a3:45:12:e8:d1:25:3d:6b:bb:6d: 9f:c6:e7:df:2c:c5:8b:13:88:8b:20:05:f7:0c:40:e3:94:7f: f8:00:45:d3:8a:b6:58:e8:3e:f4:6e:c9:a1:1c:98:5f:21:d4: 92:e3:e7:50:a4:20:9e:cc:35:c4:69:54:aa:4d:45:50:af:5a: 49:1c:e2:3d:e9:27:8b:f2:fb:79:e2:56:2c:11:31:ba:4a:58: 86:0c:81:f0:31:f3:28:25:e7:a8:11:1f:33:64:7d:a7:66:d7: c5:53:36:36:a1:20:f2:3d:14:2f:13:89:99:06:2d:ef:97:4f: df:0f:c0:01:17:7e:6c:2b:ac:9d:56:63:20:4a:9e:07:27:35: c9:b7:3c:3f:63:1b:bf:e4:9e:ef:6b:6a:dc:d0:0e:66:c1:fe: b6:f6:ab:f4:e3:0c:11:cc:65:5a:51:b8:4b:40:b5:1d:c8:46: a8:44:21:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjYwMzAyMDEzMzU2WhcNMjYwMzA5MDEzMzU2WjAYMRYwFAYD VQQDEw02OWE0ZTkwNS05ZWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSVvNnAuyLPrMSC5JMbaZzpfMXDzzjvHl7Yf/dtFNvvbvSnR8xNXCe/6mGDf +vupBJWBzC9NCVCyJ2GxVnYatNk9qQBmo3h32byXGjVb5/HmmDkXVNbJTBa3Dgou dno3K7pqkHuTj1lc0Nb5QXbsSu3eExaH0KoF38ATxVLfhyM3pZgkD8Ceb6UWWEf9 uOGqqfI7LKXWNZyiUdkHlui928UJopN5Cc8WL50Kuej2tGpbXhT3mV/jupqc+4jk nua3tUOOLSgCnZou2niCZeF8ptt3Dy92SxSwlrJ/E63caZsi3yqINUpcKYYEeK6l Dkc9Isyq2e7t0LwijqB+DVm4RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFgAikW XVU6dWOECeGkP7JI2tyZMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxGbtAHEw0qG6E8bnnKOqoNh9Jsui0m7BCTHp98+TcmOAtF3e5QtUkGMdO9fR 13wSln0mJAiwcga/Vs8bUGJTIdhhZDlHxJaWO0oXqDJxjaujRRLo0SU9a7ttn8bn 3yzFixOIiyAF9wxA45R/+ABF04q2WOg+9G7JoRyYXyHUkuPnUKQgnsw1xGlUqk1F UK9aSRziPekni/L7eeJWLBExukpYhgyB8DHzKCXnqBEfM2R9p2bXxVM2NqEg8j0U LxOJmQYt75dP3w/AARd+bCusnVZjIEqeByc1ybc8P2Mbv+Se72tq3NAOZsH+tvar 9OMMEcxlWlG4S0C1HchGqEQhqA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:11 2026 by rpki-client