$ rpki-client -vvf rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft File: AryISFcqsaDRBj5XuCIPK1LWvec.mft (raw, json) Hash identifier: drRHuI9nhqEEfpe0JSh5wmrkmzCLFvQSrpdm3QIhK/s= Subject key identifier: 5D:13:A2:C0:3E:AE:96:6D:2B:59:2B:7D:43:9E:49:FE:FF:8E:77:EA Authority key identifier: 02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 Certificate issuer: /CN=A9153B58/serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft Manifest number: 29 Signing time: Sun 01 Mar 2026 10:11:06 +0000 Manifest this update: Sun 01 Mar 2026 10:11:06 +0000 Manifest next update: Sun 08 Mar 2026 10:11:06 +0000 Files and hashes: 1: AryISFcqsaDRBj5XuCIPK1LWvec.crl (hash: Y3V059LDnzSW5FdatRfSJUAo7jTHxpY8ga4SF72MN0I=) 2: 36256C16D96011F0BB00DFAC96D3641D.roa (hash: 6+W+vKMYiOsOm+Y3GN2oawDDGZir37CFnIYDqFPexks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153B58, serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Validity Not Before: Mar 1 10:11:06 2026 GMT Not After : Mar 8 10:11:06 2026 GMT Subject: CN=69a410ba-c364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ae:7e:67:ab:aa:c4:46:fb:cf:42:76:23:cf: b2:45:63:3a:61:f7:66:30:44:51:9d:5c:a0:6f:b9: a6:9a:fc:17:d5:45:76:6d:d7:1b:03:ab:2f:7b:cb: 2c:dc:ec:9e:ca:9d:7d:b8:f9:15:51:50:c2:6f:86: d2:6c:83:b4:fb:e4:aa:d4:a1:74:7d:10:68:74:c3: ff:16:fb:3f:c5:c5:22:c9:e9:0a:58:0e:0d:27:1f: 41:47:9f:cc:59:cc:1e:ea:fc:a4:83:16:03:2d:f3: 23:6a:12:97:20:31:7e:2a:88:ef:e6:2a:27:58:a3: b7:fd:6a:bc:86:a9:ce:1a:2a:ca:a1:95:40:46:47: a4:81:47:9f:2b:ac:42:1f:fe:89:48:86:cc:cf:cb: ed:f8:90:34:17:b8:a9:7e:e4:ca:5b:49:f4:ae:0a: 6e:43:c8:9f:59:d3:50:8a:8e:7c:9e:c6:f6:e9:29: a8:cf:7d:b8:e4:b8:ac:10:85:e3:a5:c8:02:e0:d6: 1b:06:3c:cf:d0:cc:e0:68:8f:bd:dc:25:7f:9c:87: 77:54:ca:b5:77:cf:b9:a1:c5:b9:2c:d1:70:b2:5c: e6:81:3b:6f:c8:a0:ce:64:7c:19:4e:8c:32:e0:f6: a7:87:b2:0c:94:1c:af:b1:df:4f:43:b5:4d:e5:67: 6d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:13:A2:C0:3E:AE:96:6D:2B:59:2B:7D:43:9E:49:FE:FF:8E:77:EA X509v3 Authority Key Identifier: keyid:02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:65:ce:28:f1:5b:af:df:08:d5:5c:b4:5b:9a:a7:b7:c8:f5: e8:f9:88:06:7a:3d:e5:8c:35:0c:05:79:64:40:fd:88:c7:cc: d7:53:55:2b:0c:41:bf:41:3a:3f:0d:06:70:9d:bf:e5:37:ec: 6f:76:19:7e:bf:80:55:bb:13:b9:76:46:c4:84:2d:5b:98:4e: 19:05:13:7b:fe:2f:29:1b:df:f6:6e:b4:09:c3:6e:52:0c:32: ba:8c:da:1a:42:47:c8:e5:8e:82:fa:15:56:e0:b7:fc:3f:fe: 0d:90:00:96:b2:a4:f4:08:b3:9e:7f:46:db:9e:54:f3:b8:a4: b7:84:95:26:09:47:6c:ea:23:fc:fe:b6:2b:c5:ff:70:26:b4: 42:20:2d:c8:ab:b0:95:b2:48:6d:16:78:05:2f:6f:65:0d:48: 22:cf:52:8d:c5:31:82:aa:d0:02:83:25:ec:c6:8b:c9:59:0e: 6f:4a:b7:0b:d0:46:72:ff:57:c1:ca:f8:09:e9:df:69:0b:a7: c1:fc:89:9f:21:6d:15:95:ea:76:05:97:c6:15:5a:56:63:3c: e8:bd:91:d4:da:54:25:7a:68:aa:13:c4:97:aa:92:c1:56:06: dd:b7:5e:18:a5:3f:a9:96:22:6b:4f:81:d8:a9:df:e3:a0:09: 4d:5d:0d:3f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 M0I1ODExMC8GA1UEBRMoMDJCQzg4NDg1NzJBQjFBMEQxMDYzRTU3QjgyMjBGMkI1 MkQ2QkRFNzAeFw0yNjAzMDExMDExMDZaFw0yNjAzMDgxMDExMDZaMBgxFjAUBgNV BAMTDTY5YTQxMGJhLWMzNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDArn5nq6rERvvPQnYjz7JFYzph92YwRFGdXKBvuaaa/BfVRXZt1xsDqy97yyzc 7J7KnX24+RVRUMJvhtJsg7T75KrUoXR9EGh0w/8W+z/FxSLJ6QpYDg0nH0FHn8xZ zB7q/KSDFgMt8yNqEpcgMX4qiO/mKidYo7f9aryGqc4aKsqhlUBGR6SBR58rrEIf /olIhszPy+34kDQXuKl+5MpbSfSuCm5DyJ9Z01CKjnyexvbpKajPfbjkuKwQheOl yALg1hsGPM/QzOBoj73cJX+ch3dUyrV3z7mhxbks0XCyXOaBO2/IoM5kfBlOjDLg 9qeHsgyUHK+x309DtU3lZ20fAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUXROiwD6u lm0rWSt9Q55J/v+Od+owHwYDVR0jBBgwFoAUAryISFcqsaDRBj5XuCIPK1LWvecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzQjU4LzQyQTUyNjQ0RDk1 RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FEUkJqNVh1Q0lQSzFMV3Zl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXJ5SVNGY3FzYURSQmo1WHVDSVBLMUxXdmVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz QjU4LzQyQTUyNjQ0RDk1RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FE UkJqNVh1Q0lQSzFMV3ZlYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDHZc4o8Vuv3wjVXLRbmqe3yPXo+YgGej3ljDUMBXlkQP2Ix8zXU1UrDEG/QTo/ DQZwnb/lN+xvdhl+v4BVuxO5dkbEhC1bmE4ZBRN7/i8pG9/2brQJw25SDDK6jNoa QkfI5Y6C+hVW4Lf8P/4NkACWsqT0CLOef0bbnlTzuKS3hJUmCUds6iP8/rYrxf9w JrRCIC3Iq7CVskhtFngFL29lDUgiz1KNxTGCqtACgyXsxovJWQ5vSrcL0EZy/1fB yvgJ6d9pC6fB/ImfIW0Vlep2BZfGFVpWYzzovZHU2lQlemiqE8SXqpLBVgbdt14Y pT+pliJrT4HYqd/joAlNXQ0/ -----END CERTIFICATE-----Generated at Mon Mar 2 02:15:37 2026 by rpki-client