$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: JOa3c2RQXncWOJZ4SAoBznF+tPrtiLHj2YpCiyy1hE8= Subject key identifier: 22:0F:ED:49:26:02:21:F8:E1:4F:C9:3A:32:32:F9:E4:6B:6E:EB:72 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 0229 Signing time: Mon 02 Mar 2026 01:58:59 +0000 Manifest this update: Mon 02 Mar 2026 01:58:57 +0000 Manifest next update: Mon 09 Mar 2026 01:58:57 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: BdUeqCLoCJsqbDQTq646BF9ZJhJGGRZd52Vk4SCmJyU=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Mar 2 01:58:57 2026 GMT Not After : Mar 9 01:58:57 2026 GMT Subject: CN=69a4eee3-04cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:68:0f:c4:19:ce:88:d9:58:6e:f8:9f:89: e1:3f:38:f5:d8:6d:0b:d0:85:5e:c0:7a:2c:56:f4: 1f:43:8c:ac:45:73:f2:45:49:75:cd:65:c4:20:cd: f4:ca:ff:e4:c5:a4:f0:2a:ec:73:81:ff:b0:ed:d3: 62:77:5f:cf:bd:bc:a3:40:b0:31:3e:46:07:43:fd: cf:c9:fe:64:39:8f:8f:93:a6:cf:34:d8:70:82:24: b1:78:33:c3:99:ec:b5:b1:a5:cf:e3:66:03:49:a0: d8:87:a5:56:9f:04:14:6f:92:50:48:02:19:30:10: e8:9b:74:a4:5e:ca:7a:f6:2a:73:10:fb:65:71:d2: 17:f4:1e:ac:95:5e:74:df:61:3c:44:c2:4a:8a:70: 4f:e4:77:7b:9a:4d:30:5b:17:7f:91:fb:ed:b0:3b: f2:27:3b:8a:64:77:93:0e:33:fa:07:09:ce:cc:22: 9d:1d:f7:8e:84:a9:59:9b:bc:7e:d5:76:54:98:d9: f9:6c:57:78:4a:55:d0:99:f1:45:e1:00:cb:69:39: e8:49:78:56:0a:e0:a6:f7:d0:51:33:55:66:cc:5e: 99:00:36:f6:a6:c0:b8:49:59:08:6b:e6:3c:2e:d5: 25:17:56:a3:f1:4e:0c:35:da:01:ae:09:ed:2a:64: d9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0F:ED:49:26:02:21:F8:E1:4F:C9:3A:32:32:F9:E4:6B:6E:EB:72 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:55:6d:37:a1:50:24:c2:56:4d:a6:cf:a8:56:21:8c:78:bd: 1b:26:b0:95:0a:f2:4a:b4:58:d7:1d:a5:a1:7a:63:4c:25:1e: bf:df:ec:d7:6c:81:8f:d5:9e:13:bd:81:af:16:18:11:6f:c6: 69:9c:92:5d:13:61:e5:2f:dc:85:d5:44:af:bc:6b:8a:26:df: 39:f2:88:a2:31:29:4e:03:d0:91:7b:6f:1b:5f:b5:aa:15:1b: c0:3e:42:1c:c8:56:2a:01:14:38:f1:4a:22:8a:b7:67:34:55: 92:9e:76:71:2a:0a:04:e4:8a:d1:f0:65:f5:a0:92:f3:4f:a2: 1e:77:1f:f7:fe:2a:56:20:df:d9:c2:a2:e8:28:2c:63:b3:f3: 1a:28:82:97:ed:14:91:2d:58:eb:88:30:d1:00:43:c3:38:42: 87:40:f4:6a:b7:4f:82:a6:d3:1d:ef:81:2b:14:12:1b:1c:7e: 85:23:11:bb:91:a9:d1:d7:b0:5b:2d:65:df:c2:3f:5f:ce:d4: 14:74:d6:dd:a7:20:fe:85:34:f9:cb:d2:ca:59:1b:84:2e:1e: 5c:0f:ba:58:32:8a:69:96:5b:48:63:7a:de:16:9b:f4:14:79: e5:7b:a7:46:53:18:16:00:48:a5:4e:dd:df:05:78:02:e0:e3: 13:3a:54:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjYwMzAyMDE1ODU3WhcNMjYwMzA5MDE1ODU3WjAYMRYwFAYD VQQDEw02OWE0ZWVlMy0wNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hNoD8QZzojZWG74n4nhPzj12G0L0IVewHosVvQfQ4ysRXPyRUl1zWXEIM30 yv/kxaTwKuxzgf+w7dNid1/PvbyjQLAxPkYHQ/3Pyf5kOY+Pk6bPNNhwgiSxeDPD mey1saXP42YDSaDYh6VWnwQUb5JQSAIZMBDom3SkXsp69ipzEPtlcdIX9B6slV50 32E8RMJKinBP5Hd7mk0wWxd/kfvtsDvyJzuKZHeTDjP6BwnOzCKdHfeOhKlZm7x+ 1XZUmNn5bFd4SlXQmfFF4QDLaTnoSXhWCuCm99BRM1VmzF6ZADb2psC4SVkIa+Y8 LtUlF1aj8U4MNdoBrgntKmTZ8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCIP7Ukm AiH44U/JOjIy+eRrbutyMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi1VtN6FQJMJWTabPqFYhjHi9GyawlQrySrRY1x2loXpjTCUev9/s12yBj9We E72BrxYYEW/GaZySXRNh5S/chdVEr7xriibfOfKIojEpTgPQkXtvG1+1qhUbwD5C HMhWKgEUOPFKIoq3ZzRVkp52cSoKBOSK0fBl9aCS80+iHncf9/4qViDf2cKi6Cgs Y7PzGiiCl+0UkS1Y64gw0QBDwzhCh0D0ardPgqbTHe+BKxQSGxx+hSMRu5Gp0dew Wy1l38I/X87UFHTW3acg/oU0+cvSylkbhC4eXA+6WDKKaZZbSGN63hab9BR55Xun RlMYFgBIpU7d3wV4AuDjEzpUDw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:42:29 2026 by rpki-client