$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: eUU82HREBJYxrPKSifBOtp7ZRDU5zt2B0YwraEyQeiA= Subject key identifier: 4F:39:36:FB:3E:D6:40:3D:4E:FB:EC:67:AD:90:F2:DF:DD:00:AB:A6 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0554 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 0546 Signing time: Mon 02 Mar 2026 02:56:04 +0000 Manifest this update: Mon 02 Mar 2026 02:56:03 +0000 Manifest next update: Mon 09 Mar 2026 02:56:03 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: E3IESYVkojUiYix8yzmmMmX6Oqu8w/43v7X9Ttv+gZ0=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: KV+oymiCQ8SI81Nw8YLk5LKF58JCB1ujUEL9Z05HDyg=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: 5f9ml2EUZAGAD2c6U/Z9/PW0M3VyIhaGC3vHQZLyq8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1364 (0x554) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Mar 2 02:56:03 2026 GMT Not After : Mar 9 02:56:03 2026 GMT Subject: CN=69a4fc44-e4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:6a:ac:9a:2c:cc:53:fb:7c:f8:3a:56:b1: 0b:e8:df:8a:68:85:a4:14:d1:2d:e6:02:ff:cd:0d: cf:e9:41:f2:53:ae:9a:6e:85:c8:93:7c:d0:8a:3c: 2c:f6:58:b9:74:6f:a1:5d:53:6a:ea:30:f6:cb:2f: 4d:5c:34:2e:de:cc:c3:8d:18:4b:b0:f6:ae:12:7d: 75:0a:7b:d3:5d:af:00:4b:aa:98:06:87:14:8b:04: 11:ad:1e:4d:29:2f:53:0f:5a:0c:54:42:f4:fc:50: e3:36:c7:00:93:a9:56:d2:a5:36:25:6c:ac:d3:bc: 0d:ed:f7:17:99:52:7a:d4:7c:16:e4:50:fc:94:dd: 17:9a:13:00:ba:dc:5f:01:41:03:db:f1:29:fb:b0: e8:a7:a2:14:3f:c9:5c:46:6d:05:26:aa:45:6f:88: d6:16:3a:42:d0:f8:34:69:6a:69:d8:78:36:21:a3: 30:fe:b3:b0:4c:56:9b:92:0f:5a:ff:84:dc:3d:bb: 1f:ad:18:c2:8c:e3:c5:d6:4a:82:57:82:51:00:54: 75:88:a4:43:18:21:8e:b0:09:48:d7:91:fb:cb:3b: 9b:35:bd:37:9f:ce:d2:e0:ef:33:8a:da:2a:50:3e: e2:71:54:af:78:8c:10:a1:fb:87:16:c5:ed:02:c6: ad:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:39:36:FB:3E:D6:40:3D:4E:FB:EC:67:AD:90:F2:DF:DD:00:AB:A6 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f0:80:ff:24:72:af:d2:7a:9e:30:78:a8:05:ae:eb:b6:f5: 23:34:82:5c:a9:8e:c7:eb:c1:59:43:2a:40:1b:4d:44:de:b8: e8:d2:fa:b2:6c:4e:65:ca:91:f1:8b:9b:cc:39:54:ac:d4:fe: e3:db:ed:b5:11:c6:f8:f1:cd:07:43:43:6c:14:99:74:c6:cf: df:88:36:f8:82:3a:93:00:81:8c:03:ad:50:d3:ed:76:de:8d: fa:62:51:38:99:f6:7d:6d:70:1e:a8:ee:0e:3c:bd:c4:40:66: a6:ff:ff:76:e0:f8:3e:e2:30:6e:13:4d:43:d4:80:89:7a:4e: 24:cc:b8:94:30:c7:ca:9d:30:28:ad:2c:be:b1:9d:b0:39:b9: 38:37:46:07:d7:0b:c4:35:6b:a3:93:c7:42:8d:0a:17:57:f9: f0:ee:fd:db:23:43:cb:5b:1e:a9:b9:5f:83:a0:8d:c0:ef:31: 23:7a:fe:38:8d:1c:b4:dd:f0:de:ef:b9:17:da:c8:5a:f4:a2: fa:ec:7d:fa:62:ea:92:63:ad:f4:f7:0d:eb:0b:1b:74:e1:be: a9:10:3e:3b:88:6a:94:9b:2f:78:57:8f:4d:7e:59:44:35:c2: 6f:01:82:9e:5a:03:26:46:75:e4:5d:c0:cd:9e:c4:c9:b4:b7: a0:c8:96:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjYwMzAyMDI1NjAzWhcNMjYwMzA5MDI1NjAzWjAYMRYwFAYD VQQDEw02OWE0ZmM0NC1lNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuN9qrJoszFP7fPg6VrEL6N+KaIWkFNEt5gL/zQ3P6UHyU66aboXIk3zQijws 9li5dG+hXVNq6jD2yy9NXDQu3szDjRhLsPauEn11CnvTXa8AS6qYBocUiwQRrR5N KS9TD1oMVEL0/FDjNscAk6lW0qU2JWys07wN7fcXmVJ61HwW5FD8lN0XmhMAutxf AUED2/Ep+7Dop6IUP8lcRm0FJqpFb4jWFjpC0Pg0aWpp2Hg2IaMw/rOwTFabkg9a /4TcPbsfrRjCjOPF1kqCV4JRAFR1iKRDGCGOsAlI15H7yzubNb03n87S4O8zitoq UD7icVSveIwQofuHFsXtAsattwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE85Nvs+ 1kA9TvvsZ62Q8t/dAKumMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEfCA/yRyr9J6njB4qAWu67b1IzSCXKmOx+vBWUMqQBtNRN646NL6smxOZcqR 8YubzDlUrNT+49vttRHG+PHNB0NDbBSZdMbP34g2+II6kwCBjAOtUNPtdt6N+mJR OJn2fW1wHqjuDjy9xEBmpv//duD4PuIwbhNNQ9SAiXpOJMy4lDDHyp0wKK0svrGd sDm5ODdGB9cLxDVro5PHQo0KF1f58O792yNDy1seqblfg6CNwO8xI3r+OI0ctN3w 3u+5F9rIWvSi+ux9+mLqkmOt9PcN6wsbdOG+qRA+O4hqlJsveFePTX5ZRDXCbwGC nloDJkZ15F3AzZ7EybS3oMiWbQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:59:45 2026 by rpki-client