$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: BA99BAysDne07v3eH80eVYKSPHPhGV96W21q9acU8FE= Subject key identifier: 94:D6:04:D3:97:FB:05:A2:BB:BA:60:9D:8F:7A:C6:77:21:36:F1:E0 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 07AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2E22 Signing time: Mon 02 Mar 2026 00:15:40 +0000 Manifest this update: Mon 02 Mar 2026 00:15:39 +0000 Manifest next update: Mon 09 Mar 2026 00:15:39 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: HYlsXm+jhCm00L4pmzBtds01K3ZAFVZo1nievBvfccE=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: V2s04hpKMBAVv/lJnUKiNjyWl7KXuZCsoHa55XAdO8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Mar 2 00:15:39 2026 GMT Not After : Mar 9 00:15:39 2026 GMT Subject: CN=69a4d6ac-a626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:b8:c3:a0:53:f6:32:a7:82:00:02:00:7d: 62:e5:81:e8:37:2b:93:b5:93:4b:8a:37:e6:8b:98: 1d:04:9a:c7:ca:49:2a:a7:20:37:8d:09:cd:28:96: b6:c9:9e:5e:b8:9d:10:ca:96:c9:41:8e:2b:99:ec: 99:cc:95:c7:ea:08:a3:ce:3f:81:2c:e8:ac:20:db: 7e:40:e7:1c:d0:2b:ff:0d:03:c9:f6:dd:58:fc:06: a3:b2:cd:21:d5:8a:ea:b5:f3:17:0f:90:6a:bb:72: 6a:3f:d7:d4:2b:a3:35:3f:80:e7:13:54:0b:b4:8f: f1:cc:9e:3f:a4:f5:7c:0c:f7:fc:a1:e3:30:50:67: 4c:87:d3:3a:be:43:e9:78:2b:70:d3:a8:63:da:d0: 86:19:a1:b3:75:ec:a3:b6:22:7b:1e:2c:ab:9c:ea: 65:ce:ad:37:d1:e9:dc:26:5f:60:43:29:24:a1:8e: 02:03:dc:42:6b:05:15:9a:15:95:8c:75:f3:0b:b9: 87:19:56:df:ab:fc:1c:82:42:c5:40:65:77:47:98: 71:75:90:de:1a:6f:42:b2:33:60:37:d0:c6:9e:14: cc:04:2e:5f:6f:92:c7:3a:5d:ec:a0:7c:6a:8d:67: 18:79:8b:77:c8:62:fd:6b:2b:79:b5:cc:33:6f:20: f7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D6:04:D3:97:FB:05:A2:BB:BA:60:9D:8F:7A:C6:77:21:36:F1:E0 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f5:1f:fc:f5:78:e3:78:89:3e:40:eb:4a:b6:5c:ed:86:bd: 43:32:8d:63:b2:ab:50:68:d1:75:1d:b6:cb:61:79:a1:c9:4f: 5a:15:41:64:3b:48:8d:85:e8:16:21:39:e7:ba:3f:ce:4b:3f: e7:a1:72:87:60:70:94:9c:52:c6:bd:c3:95:3e:14:9d:0c:cd: 64:8b:ee:a6:21:9a:e2:c4:fd:ba:e5:14:4a:55:2d:7d:30:09: 1a:0b:14:d1:71:b6:77:0a:be:51:93:cf:dc:52:e2:8d:30:8a: de:ac:fc:52:da:6a:e4:6f:3f:7f:d0:aa:76:8d:7c:27:6a:7e: d4:76:ca:a3:57:cf:90:a9:78:67:9b:db:11:46:a4:33:af:c2: 44:d6:e0:c0:27:29:05:1a:87:d7:5e:10:8b:a9:ab:99:ac:ef: eb:a4:3c:f1:fb:68:2a:0c:3a:09:1f:24:a6:21:d1:eb:c0:32: 26:40:a5:92:e2:2b:a7:95:52:08:30:f4:2e:41:bf:c7:5b:39: a7:70:af:d4:6f:7e:e2:d6:6a:ca:51:0d:47:c0:ee:0d:bc:e3: 9b:03:34:c9:fb:e8:fd:3f:f3:f0:76:4f:8f:6d:7b:c8:63:05: f3:2c:d3:68:0f:3b:1c:fd:e8:cb:aa:53:89:0b:a2:9c:59:a6: 60:97:cb:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjYwMzAyMDAxNTM5WhcNMjYwMzA5MDAxNTM5WjAYMRYwFAYD VQQDEw02OWE0ZDZhYy1hNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBG4w6BT9jKnggACAH1i5YHoNyuTtZNLijfmi5gdBJrHykkqpyA3jQnNKJa2 yZ5euJ0QypbJQY4rmeyZzJXH6gijzj+BLOisINt+QOcc0Cv/DQPJ9t1Y/Aajss0h 1YrqtfMXD5Bqu3JqP9fUK6M1P4DnE1QLtI/xzJ4/pPV8DPf8oeMwUGdMh9M6vkPp eCtw06hj2tCGGaGzdeyjtiJ7HiyrnOplzq030encJl9gQykkoY4CA9xCawUVmhWV jHXzC7mHGVbfq/wcgkLFQGV3R5hxdZDeGm9CsjNgN9DGnhTMBC5fb5LHOl3soHxq jWcYeYt3yGL9ayt5tcwzbyD31wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJTWBNOX +wWiu7pgnY96xnchNvHgMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnPUf/PV443iJPkDrSrZc7Ya9QzKNY7KrUGjRdR22y2F5oclPWhVBZDtIjYXo FiE557o/zks/56Fyh2BwlJxSxr3DlT4UnQzNZIvupiGa4sT9uuUUSlUtfTAJGgsU 0XG2dwq+UZPP3FLijTCK3qz8Utpq5G8/f9Cqdo18J2p+1HbKo1fPkKl4Z5vbEUak M6/CRNbgwCcpBRqH114Qi6mrmazv66Q88ftoKgw6CR8kpiHR68AyJkClkuIrp5VS CDD0LkG/x1s5p3Cv1G9+4tZqylENR8DuDbzjmwM0yfvo/T/z8HZPj217yGMF8yzT aA87HP3oy6pTiQuinFmmYJfLGA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:10:14 2026 by rpki-client