$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: aVS3Nc7ypnWiOS6V7eZqCtNk8kUZuvkmuOsUe3rrgPc= Subject key identifier: 1B:41:C0:1F:82:E3:41:44:02:92:3C:43:B3:85:54:8A:5C:AD:0E:F9 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 048A Signing time: Mon 02 Mar 2026 01:19:50 +0000 Manifest this update: Mon 02 Mar 2026 01:19:48 +0000 Manifest next update: Mon 09 Mar 2026 01:19:48 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: mtV4UkPOdpZgNCK+P8XIidRYg2BZji0emlEzoRamnlg=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: lB6b/c7YkZB1xUmMUoy51BHUaOehAcAlRWfeJ6RIV+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Mar 2 01:19:48 2026 GMT Not After : Mar 9 01:19:48 2026 GMT Subject: CN=69a4e5b5-7e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d1:83:4e:e1:b2:2c:65:09:0e:a5:60:8b:6c: b6:85:7b:47:fc:89:25:a6:4f:e8:5f:0a:a5:1c:a6: fa:48:7c:18:39:e5:e1:cb:0e:ff:15:58:63:0f:6e: 1b:54:03:fa:0e:e8:6e:70:a4:bb:21:6a:a6:24:c2: 31:4c:82:d2:da:4c:8c:d4:f3:9b:72:6a:f4:cb:6d: b0:55:54:74:13:bd:6a:9a:aa:4e:a8:b1:c5:d1:ff: 29:a7:13:86:c6:87:83:7a:1e:89:0e:20:f2:8b:49: b6:20:67:7e:6a:ce:78:61:d6:a6:d7:1e:33:63:a2: f3:c3:53:e6:23:2a:ac:e7:a4:ff:c0:62:bc:34:ce: 8d:62:95:ae:c5:d1:72:e3:43:c3:e1:aa:65:4a:43: ac:a5:a1:e3:10:19:35:f9:24:d8:60:e9:34:e0:35: 78:7a:cd:3a:5d:58:a7:00:8e:3d:d0:6f:30:28:a1: 19:e7:42:95:96:6f:73:db:c5:10:55:bd:4d:f1:fb: d3:b0:c8:78:20:22:77:9c:1d:be:c9:4d:d2:ee:00: ff:ac:1c:3b:6d:0e:0c:07:2e:42:c0:cd:ae:35:94: 42:8b:f9:a8:5d:da:eb:79:a0:de:74:5f:bd:93:09: 46:13:ac:de:29:50:48:57:48:76:40:fa:c7:ff:ce: 1c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:41:C0:1F:82:E3:41:44:02:92:3C:43:B3:85:54:8A:5C:AD:0E:F9 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a5:33:2f:db:e3:4d:86:d8:b1:de:be:26:2e:e8:1a:4a:1c: 20:4d:25:96:b4:4e:19:69:56:2b:77:8c:b9:30:86:53:f4:d7: 09:e2:b5:28:fe:e0:d6:c4:67:ee:09:f5:fa:53:bc:57:46:00: 35:0a:12:5c:ce:4c:29:b0:a3:23:53:e7:00:a4:e1:32:56:00: db:de:48:0b:14:97:ed:c7:9c:4e:54:40:3b:6c:4e:84:20:4c: 76:9d:c5:06:43:63:bf:d8:8b:6c:90:fa:65:75:bd:4f:4e:21: 13:15:d9:3d:9d:54:e1:80:5b:10:2c:63:a3:b4:29:e9:f6:91: 3a:4a:d0:f7:da:ad:86:62:d5:1e:00:f3:e8:d1:36:2b:6a:a2: 1e:5e:40:9d:cc:88:8f:9b:5c:db:a9:27:49:53:65:d4:04:1d: a4:c8:2c:37:cf:3c:b5:40:89:23:54:54:7c:a8:99:2a:09:6c: 71:00:e1:9a:85:51:47:88:f1:75:01:38:88:47:4c:cd:28:b1: 03:bc:68:03:fb:b4:52:ab:70:1c:9a:a9:e6:ff:9e:cc:49:56: df:b0:09:c8:01:1f:a7:87:cb:7c:43:25:75:1c:54:ab:ba:22: 94:3a:81:8c:32:d4:ba:cf:bd:38:0d:bc:cb:bc:52:42:d2:dc: f5:64:c2:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjYwMzAyMDExOTQ4WhcNMjYwMzA5MDExOTQ4WjAYMRYwFAYD VQQDEw02OWE0ZTViNS03ZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNGDTuGyLGUJDqVgi2y2hXtH/Iklpk/oXwqlHKb6SHwYOeXhyw7/FVhjD24b VAP6DuhucKS7IWqmJMIxTILS2kyM1PObcmr0y22wVVR0E71qmqpOqLHF0f8ppxOG xoeDeh6JDiDyi0m2IGd+as54Ydam1x4zY6Lzw1PmIyqs56T/wGK8NM6NYpWuxdFy 40PD4aplSkOspaHjEBk1+STYYOk04DV4es06XVinAI490G8wKKEZ50KVlm9z28UQ Vb1N8fvTsMh4ICJ3nB2+yU3S7gD/rBw7bQ4MBy5CwM2uNZRCi/moXdrreaDedF+9 kwlGE6zeKVBIV0h2QPrH/84c4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBtBwB+C 40FEApI8Q7OFVIpcrQ75MB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPKUzL9vjTYbYsd6+Ji7oGkocIE0llrROGWlWK3eMuTCGU/TXCeK1KP7g1sRn 7gn1+lO8V0YANQoSXM5MKbCjI1PnAKThMlYA295ICxSX7cecTlRAO2xOhCBMdp3F BkNjv9iLbJD6ZXW9T04hExXZPZ1U4YBbECxjo7Qp6faROkrQ99qthmLVHgDz6NE2 K2qiHl5AncyIj5tc26knSVNl1AQdpMgsN888tUCJI1RUfKiZKglscQDhmoVRR4jx dQE4iEdMzSixA7xoA/u0UqtwHJqp5v+ezElW37AJyAEfp4fLfEMldRxUq7oilDqB jDLUus+9OA28y7xSQtLc9WTCKQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:52:13 2026 by rpki-client