$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: mHuzRnD1Yo7N13LZtkes65+CyOYkDF268UIiBh+wluo= Subject key identifier: 1C:DF:7C:81:05:A6:B1:1C:02:A9:E5:3C:01:7A:5D:31:A4:C6:0C:06 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DAB Signing time: Sat 28 Feb 2026 18:03:34 +0000 Manifest this update: Sat 28 Feb 2026 18:03:33 +0000 Manifest next update: Sat 07 Mar 2026 18:03:33 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: SZeVg4SRBrYsJLmpt5qYn6kiWoOXwdVrH+cTZH3XFKA=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: QC75SjGbmRWM75fKvozY3M+N+lG9xWs1cIWZObIwsbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3509 (0xdb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Feb 28 18:03:33 2026 GMT Not After : Mar 7 18:03:33 2026 GMT Subject: CN=69a32df6-126f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:69:4f:16:52:cb:0e:94:e1:d5:93:6b:5a: de:65:69:51:33:61:11:b5:7f:8b:6e:39:02:e3:5e: 82:a2:9a:52:10:9b:4e:98:5f:a8:90:34:72:58:fa: 82:0a:9c:34:be:51:b9:64:17:6e:20:58:86:64:d3: ad:8d:d1:28:4d:c9:fe:68:3a:2d:2e:32:f1:0c:44: 6a:66:63:94:16:f2:ca:40:f6:fb:f9:7d:50:d4:0a: 6e:7e:6e:79:4a:45:e4:7f:74:4a:07:09:0d:c8:36: 03:33:e3:22:fc:b7:ec:6b:c3:8b:ab:01:a7:59:f3: 89:82:15:d3:74:16:e4:f5:e6:46:22:45:8f:85:74: 59:71:e4:0d:4f:18:0e:44:0c:bf:a3:9d:4b:4a:d4: 24:4b:0a:9e:5d:b8:d1:4f:a5:03:c0:dc:f5:78:73: ea:c7:ae:d6:e6:8e:2c:c3:87:30:72:63:b2:c8:90: 74:38:04:6a:1e:e2:74:8e:53:69:ee:97:84:01:24: 36:a4:b7:f6:51:ca:99:5d:de:71:42:7e:f2:f2:14: 89:a4:87:ad:24:e4:54:74:47:a1:69:7f:ca:6b:84: 1b:b0:fc:0a:60:50:d2:76:c1:30:65:8a:41:ef:f1: 44:a2:a2:14:51:75:01:20:16:b8:3f:e2:77:ac:88: 0d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DF:7C:81:05:A6:B1:1C:02:A9:E5:3C:01:7A:5D:31:A4:C6:0C:06 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f0:79:72:4b:a4:fe:98:b8:4b:e1:20:62:e9:01:bb:b8:d6: ec:37:46:ca:cb:f7:e6:f9:4f:24:4f:9a:b5:d3:58:82:b9:8b: 4d:74:9e:d1:6a:86:f3:fa:aa:e2:19:8e:68:31:cf:2d:c0:ad: f8:3e:4f:fb:80:89:1f:91:1c:3c:dd:15:1f:77:c1:05:6b:f5: f1:0a:37:41:26:3b:02:8d:f1:57:25:5d:ab:9f:65:04:e0:dd: 92:05:16:79:94:ed:3b:ed:1c:c5:55:df:58:82:fb:48:93:da: 91:94:24:85:c9:93:01:bb:5a:1f:e6:86:ed:59:62:f4:7a:97: af:72:d0:0e:47:0c:35:aa:bf:28:29:c3:3e:88:4e:6f:f9:90: e9:e1:27:1f:d0:4c:ed:6e:44:35:18:59:ab:62:9c:58:1a:32: 0d:56:3b:58:37:71:f4:4e:4d:db:09:ef:5a:4f:f6:bc:d1:df: 82:a8:e4:fa:a2:41:75:c9:57:df:4f:fd:4a:08:b8:7b:1a:b6: 05:cd:61:a1:71:df:42:ff:73:d2:75:4d:b4:45:58:a6:bc:97: 7e:06:35:58:12:cf:cf:52:7b:1d:58:f3:54:a1:4b:da:20:32: 5e:12:a9:69:a9:3d:b7:b0:89:b1:bc:38:46:30:c4:3c:d9:64: c5:61:5b:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwMjI4MTgwMzMzWhcNMjYwMzA3MTgwMzMzWjAYMRYwFAYD VQQDDA02OWEzMmRmNi0xMjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudBpTxZSyw6U4dWTa1reZWlRM2ERtX+LbjkC416CoppSEJtOmF+okDRyWPqC Cpw0vlG5ZBduIFiGZNOtjdEoTcn+aDotLjLxDERqZmOUFvLKQPb7+X1Q1Apufm55 SkXkf3RKBwkNyDYDM+Mi/Lfsa8OLqwGnWfOJghXTdBbk9eZGIkWPhXRZceQNTxgO RAy/o51LStQkSwqeXbjRT6UDwNz1eHPqx67W5o4sw4cwcmOyyJB0OARqHuJ0jlNp 7peEASQ2pLf2UcqZXd5xQn7y8hSJpIetJORUdEehaX/Ka4QbsPwKYFDSdsEwZYpB 7/FEoqIUUXUBIBa4P+J3rIgNxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzffIEF prEcAqnlPAF6XTGkxgwGMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcPB5ckuk/pi4S+EgYukBu7jW7DdGysv35vlPJE+atdNYgrmLTXSe0WqG8/qq 4hmOaDHPLcCt+D5P+4CJH5EcPN0VH3fBBWv18Qo3QSY7Ao3xVyVdq59lBODdkgUW eZTtO+0cxVXfWIL7SJPakZQkhcmTAbtaH+aG7Vli9HqXr3LQDkcMNaq/KCnDPohO b/mQ6eEnH9BM7W5ENRhZq2KcWBoyDVY7WDdx9E5N2wnvWk/2vNHfgqjk+qJBdclX 30/9Sgi4exq2Bc1hoXHfQv9z0nVNtEVYpryXfgY1WBLPz1J7HVjzVKFL2iAyXhKp aak9t7CJsbw4RjDEPNlkxWFb5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:37 2026 by rpki-client