$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft File: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft (raw, json) Hash identifier: gPIbCnrONFbfuy7g2+V8WqSYTYLi6qAgjre0t2a6eEA= Subject key identifier: 1C:F0:7A:B1:05:5F:F1:4D:3C:66:53:C2:30:3B:0F:C0:94:DF:DC:A9 Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft Manifest number: A9 Signing time: Sun 01 Mar 2026 08:30:35 +0000 Manifest this update: Sun 01 Mar 2026 08:30:35 +0000 Manifest next update: Sun 08 Mar 2026 08:30:35 +0000 Files and hashes: 1: -bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl (hash: mxFXThSjcnUhis50FqhjJGYQmHYb1LnOm2M3hxMk8sw=) 2: 2857C712141411F08D862A74C4F9AE02.roa (hash: czYgB2K9ELXxl3qXUS3kMmBpdXg0JqAkIMZOVSMU8L4=) 3: 28BBA728141411F08D862A74C4F9AE02.roa (hash: ra8NJZTUcyiWqjXLwgusOnBE1YYNuVcDRO1oAIqvXng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Mar 1 08:30:35 2026 GMT Not After : Mar 8 08:30:35 2026 GMT Subject: CN=69a3f92b-4165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:d4:cf:2c:f2:7e:c1:f8:bc:02:64:29:f6: 54:e0:79:97:ba:41:3f:b0:de:03:58:c4:b5:87:b5: c1:c2:dd:6e:4b:a7:c5:c2:fb:7a:32:67:b3:dc:c8: 0e:89:5b:2e:96:ad:c3:1d:12:1a:e4:47:01:98:97: e7:cc:c6:1d:34:d0:41:9a:1e:36:be:3e:77:33:6f: 23:69:37:1d:05:b9:7a:39:28:a6:bd:a8:1b:9e:e7: 32:a9:f3:62:be:4b:6d:53:17:3a:0b:a1:a1:22:48: 64:fe:a3:d1:f6:5b:a0:ab:ce:72:47:b3:a5:ed:5e: 5a:f6:42:a8:2c:4b:04:6d:d2:d8:ad:e2:4e:65:a8: 66:b9:4b:f7:10:d3:01:00:d3:0e:54:eb:fe:dd:e5: e4:c3:2a:9d:43:2e:c6:a3:ff:e7:f5:5f:db:ec:22: 82:72:e8:ec:8c:8e:2c:b5:8e:10:f6:c0:8a:0c:f8: f0:e1:60:87:00:45:3d:27:0e:f1:6e:12:8e:4f:ca: 5e:b6:68:68:e8:a9:81:d0:11:8a:0c:26:85:0e:45: 73:21:ee:38:aa:b8:fe:50:38:a3:d4:1d:a8:65:b6: 5d:12:f9:e7:85:89:04:e0:26:01:90:ec:d8:c3:03: 20:a1:10:65:0b:63:5d:66:be:58:47:5b:a0:ad:30: f1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F0:7A:B1:05:5F:F1:4D:3C:66:53:C2:30:3B:0F:C0:94:DF:DC:A9 X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:15:2e:72:df:9b:38:bb:84:e6:65:5a:fc:11:61:f2:30:a7: ba:2c:ce:5a:fd:fb:95:ab:dd:f7:62:78:b2:51:b7:ba:13:57: c2:4a:bf:83:f3:85:85:c4:c3:b6:a6:d4:eb:6b:19:ca:21:e5: 07:05:ce:3e:2d:6d:43:6d:3e:6f:b8:3c:f5:09:31:1f:1b:3d: 58:03:0c:0d:80:42:15:c2:74:bc:73:8a:b2:c2:6e:d4:8b:a1: 21:d8:27:6d:ff:8a:22:3c:33:8d:ec:41:29:36:14:da:f5:1c: 44:e6:57:cb:40:13:52:eb:0a:fe:1e:0c:d0:e0:77:31:c4:dc: 1f:3f:8b:68:6f:75:73:d0:a9:1d:fa:f7:5f:fe:41:5c:23:5d: 71:38:3a:31:2c:fd:bd:c9:30:e1:60:ea:39:ee:e9:b3:8e:85: 44:fe:5d:73:7b:55:8e:cc:b8:d6:32:3e:f4:e5:78:8f:56:43: a5:5a:7e:ec:e3:5d:b0:74:62:48:03:af:46:1a:04:56:fb:71: 00:65:ee:5d:ed:8b:ff:84:ef:0d:54:f3:98:bb:f1:21:0e:b7: 8b:9c:61:03:22:f9:c4:e5:4a:10:e1:78:c8:ec:56:41:7c:c0: e0:90:ee:da:68:25:9d:bf:08:60:35:61:96:41:05:46:0c:2e: c8:00:18:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMTIxMTAvBgNVBAUTKEY5QjQwMjJDMDI5RTdEOUU1QTYzNDk2OEZEQkE0QTBF OUNENjI0RTQwHhcNMjYwMzAxMDgzMDM1WhcNMjYwMzA4MDgzMDM1WjAYMRYwFAYD VQQDEw02OWEzZjkyYi00MTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AbUzyzyfsH4vAJkKfZU4HmXukE/sN4DWMS1h7XBwt1uS6fFwvt6Mmez3MgO iVsulq3DHRIa5EcBmJfnzMYdNNBBmh42vj53M28jaTcdBbl6OSimvagbnucyqfNi vkttUxc6C6GhIkhk/qPR9lugq85yR7Ol7V5a9kKoLEsEbdLYreJOZahmuUv3ENMB ANMOVOv+3eXkwyqdQy7Go//n9V/b7CKCcujsjI4stY4Q9sCKDPjw4WCHAEU9Jw7x bhKOT8petmho6KmB0BGKDCaFDkVzIe44qrj+UDij1B2oZbZdEvnnhYkE4CYBkOzY wwMgoRBlC2NdZr5YR1ugrTDx/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzwerEF X/FNPGZTwjA7D8CU39ypMB8GA1UdIwQYMBaAFPm0AiwCnn2eWmNJaP26Sg6c1iTk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAxMi9CODFBQTI1ODE0 MTMxMUYwQjY4RTczNzNDNEY5QUUwMi8tYlFDTEFLZWZaNWFZMGxvX2JwS0RweldK T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAxMi9CODFBQTI1ODE0MTMxMUYwQjY4RTczNzNDNEY5QUUwMi8tYlFDTEFLZWZa NWFZMGxvX2JwS0RweldKT1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARBUuct+bOLuE5mVa/BFh8jCnuizOWv37lavd92J4slG3uhNXwkq/g/OFhcTD tqbU62sZyiHlBwXOPi1tQ20+b7g89QkxHxs9WAMMDYBCFcJ0vHOKssJu1IuhIdgn bf+KIjwzjexBKTYU2vUcROZXy0ATUusK/h4M0OB3McTcHz+LaG91c9CpHfr3X/5B XCNdcTg6MSz9vckw4WDqOe7ps46FRP5dc3tVjsy41jI+9OV4j1ZDpVp+7ONdsHRi SAOvRhoEVvtxAGXuXe2L/4TvDVTzmLvxIQ63i5xhAyL5xOVKEOF4yOxWQXzA4JDu 2mglnb8IYDVhlkEFRgwuyAAYlQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:25:44 2026 by rpki-client