$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: iA7A2thlQQiJzHzlBn6WXjo+ZsOPCXGX7Srpv6XQ31A= Subject key identifier: 20:F2:0F:57:44:DF:B0:61:BB:8C:FD:80:BF:D6:96:D9:0D:E1:2C:22 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09EA Signing time: Mon 02 Mar 2026 00:19:30 +0000 Manifest this update: Mon 02 Mar 2026 00:19:29 +0000 Manifest next update: Mon 09 Mar 2026 00:19:29 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: Nhfk1O4pvLofVX6+O5h/MGW2Bae9bO2BAk8+hnbL4mI=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Od5KYLxvqq8bPa97Fy0kuI4FHkEaW4Gm3D6V7HRmSiU=) 3: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: Zmk+e16+6eqsGa5Xu4c3qgkHkTU472qL2Fssh+v6Tm4=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: LO9ouDVpuivnYHBghIyjyP9NLDarWKgm/7HMedCaaUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2574 (0xa0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Mar 2 00:19:29 2026 GMT Not After : Mar 9 00:19:29 2026 GMT Subject: CN=69a4d792-e1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:99:56:75:5c:bf:4d:d2:84:11:19:3a:b6:e7: c6:8f:aa:39:9f:d4:48:fa:a3:39:c0:e4:ca:1b:34: 09:f2:2c:60:92:24:91:92:c1:39:3f:45:dc:87:5b: b5:9a:d5:3e:ae:54:c6:16:95:1f:68:85:2a:45:99: 16:43:90:75:aa:80:57:05:23:4f:40:21:ea:e2:03: 36:d9:01:d4:4c:bd:c5:12:e3:7d:89:8f:8e:4f:ac: 23:f5:4b:f9:8e:12:b2:66:05:b6:49:00:06:d3:df: a4:cb:1d:79:85:c9:41:26:5a:68:9c:58:56:21:6b: b0:13:3e:dd:8e:39:57:69:98:42:a5:ec:a7:9d:c5: 4e:da:e0:53:43:53:c1:6e:82:23:30:6e:d3:a9:32: ca:00:5a:c4:2e:38:b6:74:4a:6c:f2:d0:ff:49:4b: 69:d5:fa:3c:db:7a:26:1b:9c:e3:e4:0b:4a:88:33: d3:90:88:15:4d:f6:27:e3:59:53:6d:b3:93:02:ab: a1:07:c8:9b:85:c7:48:24:5b:29:17:a0:a7:47:70: 7c:83:f3:1e:a6:f8:6f:14:63:ed:7d:f3:3e:58:99: 34:45:b9:65:a3:8a:ea:19:29:9e:06:29:1c:ea:cc: 72:14:14:45:48:f4:ee:eb:27:ee:42:94:e1:ec:8a: c6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F2:0F:57:44:DF:B0:61:BB:8C:FD:80:BF:D6:96:D9:0D:E1:2C:22 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:40:47:79:05:9b:a2:04:52:9e:8a:56:a3:35:5d:ec:95:08: 1e:fa:ca:18:03:a8:24:e1:5d:4c:f4:4c:f9:3f:3c:f1:34:b5: c8:c1:57:7e:4e:c5:04:94:8c:0a:40:20:72:97:79:bc:4a:13: 38:60:ee:15:e0:aa:2b:52:84:d2:13:64:99:7f:45:fd:c7:63: 32:ee:fb:58:f3:3c:cc:a1:ca:df:86:19:8f:15:d9:9a:9a:90: b0:2f:8c:2b:b4:f8:98:c4:40:3b:88:43:63:a2:2a:8f:e5:2d: 13:54:e7:e3:b2:e5:14:8e:e5:42:9d:c8:51:19:d1:f6:32:40: ee:31:00:ed:35:8f:11:1a:89:e4:79:be:f5:cc:36:19:1f:b5: 68:c3:58:66:c0:05:a3:df:fb:81:f1:64:70:dd:8b:34:08:ce: cf:e0:b1:f5:e2:6a:ef:94:ba:82:06:b7:f6:55:cd:5c:02:f6: be:63:55:86:a0:4f:49:d6:39:2c:b3:38:54:d6:b2:65:0a:f0: 5f:f9:d7:27:d6:29:14:b9:24:1c:10:2d:61:aa:c9:74:25:b2: 4a:13:f6:20:6f:b4:6d:9a:74:04:55:4e:f1:72:59:2b:8c:6f: 73:5f:ff:12:8d:79:0f:77:2d:d8:85:07:b9:de:79:0e:65:c8: e4:76:98:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwMzAyMDAxOTI5WhcNMjYwMzA5MDAxOTI5WjAYMRYwFAYD VQQDEw02OWE0ZDc5Mi1lMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZlWdVy/TdKEERk6tufGj6o5n9RI+qM5wOTKGzQJ8ixgkiSRksE5P0Xch1u1 mtU+rlTGFpUfaIUqRZkWQ5B1qoBXBSNPQCHq4gM22QHUTL3FEuN9iY+OT6wj9Uv5 jhKyZgW2SQAG09+kyx15hclBJlponFhWIWuwEz7djjlXaZhCpeynncVO2uBTQ1PB boIjMG7TqTLKAFrELji2dEps8tD/SUtp1fo823omG5zj5AtKiDPTkIgVTfYn41lT bbOTAquhB8ibhcdIJFspF6CnR3B8g/MepvhvFGPtffM+WJk0Rbllo4rqGSmeBikc 6sxyFBRFSPTu6yfuQpTh7IrGmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCDyD1dE 37Bhu4z9gL/WltkN4SwiMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALUBHeQWbogRSnopWozVd7JUIHvrKGAOoJOFdTPRM+T888TS1yMFXfk7FBJSM CkAgcpd5vEoTOGDuFeCqK1KE0hNkmX9F/cdjMu77WPM8zKHK34YZjxXZmpqQsC+M K7T4mMRAO4hDY6Iqj+UtE1Tn47LlFI7lQp3IURnR9jJA7jEA7TWPERqJ5Hm+9cw2 GR+1aMNYZsAFo9/7gfFkcN2LNAjOz+Cx9eJq75S6gga39lXNXAL2vmNVhqBPSdY5 LLM4VNayZQrwX/nXJ9YpFLkkHBAtYarJdCWyShP2IG+0bZp0BFVO8XJZK4xvc1// Eo15D3ct2IUHud55DmXI5HaY/A== -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:08 2026 by rpki-client