$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: x3ZtzzfnvPXnrO0TU3GLXf5hcpWVyLhpVhjinRyf0XI= Subject key identifier: 0A:9E:B1:34:D5:E3:11:85:4E:D1:09:77:AC:A9:9D:CB:37:09:98:8C Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 042E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0422 Signing time: Sun 01 Mar 2026 01:08:03 +0000 Manifest this update: Sun 01 Mar 2026 01:08:02 +0000 Manifest next update: Sun 08 Mar 2026 01:08:02 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: MAttknjOoV+Ve1ei9FW1Q8p+0yzSRFs4zxr2t8yh1jQ=) 2: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Mar 1 01:08:02 2026 GMT Not After : Mar 8 01:08:02 2026 GMT Subject: CN=69a39173-1147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:58:d2:ca:4c:7a:b9:2d:73:36:6f:c9:76:39: 3c:41:88:ec:cb:fa:35:a8:98:b0:9d:5f:21:f7:c1: 83:68:8b:92:72:4c:ca:18:4a:71:56:61:cc:e9:5c: 13:36:42:ba:85:17:b9:0b:d5:56:48:ac:61:73:ec: d5:9d:45:d0:ff:59:8f:11:3b:5e:22:74:70:25:1f: c5:fb:e7:0c:92:65:e7:7b:fd:f2:30:2e:d9:6a:0d: e5:12:f3:03:b6:2e:8a:70:e1:5e:e2:94:cc:c8:ec: 4a:b1:fd:9c:2e:d5:4e:a3:bf:32:78:a4:54:c3:ec: 02:2e:11:e6:a1:18:48:2b:2d:99:ed:28:ec:a6:a6: b1:1f:b3:b0:dd:8b:4c:eb:02:3c:3e:84:df:55:e3: db:70:20:85:bf:ae:59:61:d3:7c:0e:74:87:9e:71: 4a:3d:08:ba:7f:9b:ef:5c:02:c4:dc:4d:f6:35:87: ac:c3:93:df:d7:67:9c:dd:96:31:2b:73:8e:16:ad: 5d:38:df:f5:1f:5e:de:17:ba:54:7e:2f:d9:68:15: 49:e6:a3:64:c5:31:f2:86:c8:56:99:54:98:79:44: bc:c5:ea:87:34:9f:bd:30:33:ab:b1:90:f0:a1:50: 36:e0:2b:a0:ee:b2:44:3c:c0:d8:b6:84:b2:bf:27: 95:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9E:B1:34:D5:E3:11:85:4E:D1:09:77:AC:A9:9D:CB:37:09:98:8C X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:50:90:80:8f:a8:38:8f:39:e2:7e:83:da:8c:d4:3d:ea:ac: 4c:cc:cb:22:19:b2:37:23:92:78:89:4c:c3:e8:2c:cd:8b:a5: bb:09:4d:62:ec:42:37:a1:42:db:d1:89:c0:0a:dc:dc:24:cb: 39:cd:61:11:fd:78:7a:31:d0:b4:47:be:a3:77:97:2f:2f:8f: 8b:43:ee:02:00:e7:0a:1f:04:06:b3:c4:8b:38:2a:49:0d:8a: 44:a5:79:a2:24:bb:f1:bb:1a:44:19:96:ba:dc:6d:e5:51:b2: ab:a4:23:51:4e:5d:60:a9:a6:4f:dd:fa:31:55:5d:74:51:2a: d5:c9:48:c3:1b:13:2b:89:2b:4c:49:7a:78:10:be:9c:64:ec: a3:38:b6:d3:64:f4:1e:f8:6e:c4:24:25:3b:14:12:ea:de:69: bb:56:33:a0:fd:4a:26:99:ba:ca:18:37:f0:c1:29:91:81:e8: 5d:33:84:1f:3b:13:93:87:79:17:44:68:ac:d3:e1:ca:08:73: 27:5d:01:a8:ce:88:2f:22:81:62:f7:fc:65:3c:57:c5:33:ed: a3:ac:67:4c:39:f3:b1:d3:15:14:80:80:44:ee:27:77:17:17: 97:15:4e:55:6a:6a:e6:94:93:2a:92:5e:f3:97:37:1c:d6:43: de:00:9b:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwMzAxMDEwODAyWhcNMjYwMzA4MDEwODAyWjAYMRYwFAYD VQQDDA02OWEzOTE3My0xMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFjSykx6uS1zNm/Jdjk8QYjsy/o1qJiwnV8h98GDaIuSckzKGEpxVmHM6VwT NkK6hRe5C9VWSKxhc+zVnUXQ/1mPETteInRwJR/F++cMkmXne/3yMC7Zag3lEvMD ti6KcOFe4pTMyOxKsf2cLtVOo78yeKRUw+wCLhHmoRhIKy2Z7SjspqaxH7Ow3YtM 6wI8PoTfVePbcCCFv65ZYdN8DnSHnnFKPQi6f5vvXALE3E32NYesw5Pf12ec3ZYx K3OOFq1dON/1H17eF7pUfi/ZaBVJ5qNkxTHyhshWmVSYeUS8xeqHNJ+9MDOrsZDw oVA24Cug7rJEPMDYtoSyvyeVJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAqesTTV 4xGFTtEJd6ypncs3CZiMMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcFCQgI+oOI854n6D2ozUPeqsTMzLIhmyNyOSeIlMw+gszYuluwlNYuxCN6FC 29GJwArc3CTLOc1hEf14ejHQtEe+o3eXLy+Pi0PuAgDnCh8EBrPEizgqSQ2KRKV5 oiS78bsaRBmWutxt5VGyq6QjUU5dYKmmT936MVVddFEq1clIwxsTK4krTEl6eBC+ nGTsozi202T0HvhuxCQlOxQS6t5pu1YzoP1KJpm6yhg38MEpkYHoXTOEHzsTk4d5 F0RorNPhyghzJ10BqM6ILyKBYvf8ZTxXxTPto6xnTDnzsdMVFICARO4ndxcXlxVO VWpq5pSTKpJe85c3HNZD3gCbvg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:33:13 2026 by rpki-client