$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft File: jZIwmM1n9tG_JM--LD3KC2Zau4w.mft (raw, json) Hash identifier: 73/tQeZxbrol+Yh+g0LoSkdBuyhpam/OdrkLNaSohbc= Subject key identifier: 79:12:A9:F3:DB:9F:5C:C9:E0:99:31:72:65:AE:BC:BC:CC:A0:A3:EF Authority key identifier: 8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C Certificate issuer: /CN=A9148B17/serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft Manifest number: 01CB Signing time: Mon 02 Mar 2026 02:52:00 +0000 Manifest this update: Mon 02 Mar 2026 02:51:56 +0000 Manifest next update: Mon 09 Mar 2026 02:51:56 +0000 Files and hashes: 1: jZIwmM1n9tG_JM--LD3KC2Zau4w.crl (hash: mSaXqI6ZJfxd9hkrLFv8wPzsJUQA+IU7e9LEs1ZTC2M=) 2: 4495F306772E11EEB7DE544FC4F9AE02.roa (hash: QMRLPWLbyJt3Y3sf3W4kTGlpvnSbMzh/1dBw79mmT2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B17, serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Validity Not Before: Mar 2 02:51:56 2026 GMT Not After : Mar 9 02:51:56 2026 GMT Subject: CN=69a4fb4f-94e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:fc:6b:d5:c3:e7:19:97:e6:b5:b2:67:5c: 4c:e6:1a:6a:e5:97:d3:9a:c2:01:d9:94:82:fe:b1: df:12:ea:06:e6:99:9b:61:cf:f0:f2:ba:33:da:49: 77:d1:18:7c:1b:04:a1:67:2c:28:03:b3:1c:36:36: 3e:f0:7d:a2:d4:25:be:ea:55:3c:dc:36:2a:1a:d5: a4:97:81:76:d8:f5:bb:b3:e4:96:28:a8:8d:8f:86: 96:ca:6f:49:d6:9a:66:e3:15:e3:b4:54:73:2f:0a: 79:20:08:f7:6b:4a:0a:9e:f8:63:08:91:8e:b0:0a: 9b:a3:1c:ec:71:a6:8b:e1:23:ad:aa:82:20:b3:a3: 46:87:7d:ac:f6:e3:3e:01:f3:50:58:70:e9:f4:3d: 67:89:29:7d:4c:2a:10:be:d8:84:c2:1a:59:e5:f9: 40:3f:17:7b:0c:20:d0:f6:96:a8:dc:c3:9c:c5:5a: 3e:ec:e6:58:fc:e0:5f:16:97:6b:26:cf:aa:ef:00: 83:31:1a:79:7f:72:05:0b:7a:48:af:02:26:d6:b4: a5:ed:5e:9a:b6:0e:2a:ab:5e:bf:3d:5a:32:b3:e3: 5c:1e:d5:70:e1:85:75:45:80:b1:41:d8:9d:b6:9b: 52:2f:ea:6e:54:2d:e5:e4:3c:5c:35:8e:4b:6a:a8: 85:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:12:A9:F3:DB:9F:5C:C9:E0:99:31:72:65:AE:BC:BC:CC:A0:A3:EF X509v3 Authority Key Identifier: keyid:8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:70:6e:cf:70:e2:16:3d:40:11:60:ae:b6:7d:1a:32:79:32: e2:1a:39:9d:cb:73:3f:9b:0a:fc:06:f3:20:84:d7:1c:d8:7a: 30:37:8b:fd:d3:c9:0f:1f:20:16:f0:3f:81:4f:b5:cc:d0:ee: 5b:17:2d:3b:84:3e:7e:18:1b:0e:77:35:26:3b:ac:51:99:9b: 19:da:9b:18:69:2e:0c:b1:cb:09:85:76:cb:b0:46:23:c4:14: da:61:88:9c:21:d4:0c:09:8d:83:30:f9:43:c6:28:da:6e:f5: 23:fa:fd:e9:95:64:5c:c9:41:df:07:ba:0a:26:3c:10:88:8f: 59:f3:0f:a7:6a:75:f6:28:53:b9:89:0d:66:34:51:00:db:f4: 84:c2:29:74:2d:28:ae:64:ad:87:f6:19:25:34:b7:03:f0:5b: 1d:13:fc:17:02:9a:27:fe:cd:e8:a2:93:ae:00:dc:28:c4:97: e8:39:34:f2:83:07:a3:1c:98:c4:c3:0e:27:72:74:25:3f:52: c3:c2:3b:16:ff:9e:09:2e:33:7c:02:8a:01:91:6c:a8:cc:91: d1:dd:2d:90:99:7c:fc:c8:99:28:2c:4d:42:d0:75:0d:fa:51: 91:83:b0:c2:12:a3:60:50:b8:42:b4:a9:fa:fe:ed:ca:95:16: d4:68:bf:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTcxMTAvBgNVBAUTKDhEOTIzMDk4Q0Q2N0Y2RDFCRjI0Q0ZCRTJDM0RDQTBC NjY1QUJCOEMwHhcNMjYwMzAyMDI1MTU2WhcNMjYwMzA5MDI1MTU2WjAYMRYwFAYD VQQDEw02OWE0ZmI0Zi05NGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYP8a9XD5xmX5rWyZ1xM5hpq5ZfTmsIB2ZSC/rHfEuoG5pmbYc/w8roz2kl3 0Rh8GwShZywoA7McNjY+8H2i1CW+6lU83DYqGtWkl4F22PW7s+SWKKiNj4aWym9J 1ppm4xXjtFRzLwp5IAj3a0oKnvhjCJGOsAqboxzscaaL4SOtqoIgs6NGh32s9uM+ AfNQWHDp9D1niSl9TCoQvtiEwhpZ5flAPxd7DCDQ9pao3MOcxVo+7OZY/OBfFpdr Js+q7wCDMRp5f3IFC3pIrwIm1rSl7V6atg4qq16/PVoys+NcHtVw4YV1RYCxQdid tptSL+puVC3l5DxcNY5LaqiF7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHkSqfPb n1zJ4JkxcmWuvLzMoKPvMB8GA1UdIwQYMBaAFI2SMJjNZ/bRvyTPviw9ygtmWruM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxNy9FQTRCMTY1RTY4 RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0R19KTS0tTEQzS0MyWmF1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2paSXdtTTFuOXRHX0pNLS1MRDNLQzJaYXU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEIxNy9FQTRCMTY1RTY4RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0 R19KTS0tTEQzS0MyWmF1NHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM3Buz3DiFj1AEWCutn0aMnky4ho5nctzP5sK/AbzIITXHNh6MDeL/dPJDx8g FvA/gU+1zNDuWxctO4Q+fhgbDnc1JjusUZmbGdqbGGkuDLHLCYV2y7BGI8QU2mGI nCHUDAmNgzD5Q8Yo2m71I/r96ZVkXMlB3we6CiY8EIiPWfMPp2p19ihTuYkNZjRR ANv0hMIpdC0ormSth/YZJTS3A/BbHRP8FwKaJ/7N6KKTrgDcKMSX6Dk08oMHoxyY xMMOJ3J0JT9Sw8I7Fv+eCS4zfAKKAZFsqMyR0d0tkJl8/MiZKCxNQtB1DfpRkYOw whKjYFC4QrSp+v7typUW1Gi/eQ== -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:22 2026 by rpki-client