$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: WQ7nvq4xjQNrXgsJMI3BAeGtyDdsgLN6bfIxAF1epco= Subject key identifier: 53:AB:94:79:3F:19:D3:FD:98:26:B9:AD:9D:08:BC:BD:7C:E7:7B:18 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CB5 Signing time: Sat 28 Feb 2026 18:37:14 +0000 Manifest this update: Sat 28 Feb 2026 18:37:13 +0000 Manifest next update: Sat 07 Mar 2026 18:37:13 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: KmiF7Cxv2hsXOIDVKI+7KWukr1kLdazvkfZ0wzQgdrg=) 2: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Feb 28 18:37:13 2026 GMT Not After : Mar 7 18:37:13 2026 GMT Subject: CN=69a335da-f165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:39:44:00:68:84:cd:91:e7:d4:80:a0:f0: 52:c6:cb:29:01:79:00:5b:21:6a:96:50:b2:68:16: 3f:20:27:c0:b9:13:87:f8:6c:8c:6c:55:f1:9c:f1: 38:d1:77:b5:03:9d:40:fb:e9:f2:ad:52:87:8f:45: 93:ed:eb:47:c7:23:69:7a:88:c4:16:95:1d:d8:c8: f3:3e:71:6b:d0:91:65:30:bb:c2:5f:5a:68:51:72: ed:ab:76:d4:06:ea:a8:2e:53:86:bd:f9:bf:c8:d7: 4f:8b:d1:b9:92:7b:19:7d:a9:cf:56:cd:72:2f:75: e9:03:5d:46:c7:cd:fa:1b:1b:64:a4:0f:29:21:7b: 15:53:12:c3:ce:de:10:ce:cf:2b:07:6f:a7:02:3d: 15:e3:8b:64:99:64:f2:c3:38:fc:0f:76:61:e9:6f: 3b:4a:73:86:81:6f:2b:f1:e2:5f:70:d3:a7:2d:01: c2:09:27:f3:b1:9e:01:7e:c1:7a:4e:2a:b1:35:70: d1:af:73:43:9a:42:c9:10:4a:a2:c3:53:b3:4f:0c: 87:ba:b6:79:ad:4e:ba:64:87:d4:fd:9e:43:6f:96: 97:bb:a4:67:65:11:ce:c1:4e:10:74:51:54:69:50: 13:2d:77:06:97:0a:ab:3e:86:63:a0:98:b7:47:ca: bf:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AB:94:79:3F:19:D3:FD:98:26:B9:AD:9D:08:BC:BD:7C:E7:7B:18 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:56:42:8d:24:06:fe:3c:df:c3:2a:9d:63:92:24:8e:56:16: e3:65:31:59:93:4d:5c:18:cd:66:c0:59:7f:71:6a:50:71:61: a2:c6:40:52:a0:c2:d6:eb:4a:52:2e:90:af:94:da:d8:d1:02: 63:c4:a9:12:d9:c8:e7:c4:fb:9b:37:ea:2a:5f:2a:fd:86:2b: ca:f9:2d:69:fe:31:25:9e:7d:3d:3d:13:40:10:79:70:bd:69: 06:8b:7d:8d:89:22:84:22:8a:a5:ec:ef:81:f4:68:f6:a8:50: cf:2c:57:1b:5c:d0:fb:3e:af:91:0a:d0:a0:9e:75:e9:39:5d: b2:b8:fe:07:24:9a:51:40:78:67:3f:74:e4:09:34:ac:34:e8: f3:12:3e:b8:a6:92:fb:68:54:56:2f:2a:70:9a:6b:3d:28:cb: d8:e7:e5:85:b7:eb:4f:91:88:14:af:0e:93:b4:eb:3a:da:5c: 00:79:99:4d:d2:c8:18:e0:b8:42:0f:55:e4:22:93:0f:1e:28: 0a:ab:55:89:a7:ae:9e:65:c0:9a:23:d6:bd:c8:80:dc:de:26: e6:0c:23:70:94:73:7f:eb:53:ce:54:f8:e5:92:f4:fc:d9:09: a2:30:0c:e5:a0:f0:4e:d7:70:61:2a:b9:3f:b4:96:73:ec:15: fa:6b:05:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwMjI4MTgzNzEzWhcNMjYwMzA3MTgzNzEzWjAYMRYwFAYD VQQDDA02OWEzMzVkYS1mMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApds5RABohM2R59SAoPBSxsspAXkAWyFqllCyaBY/ICfAuROH+GyMbFXxnPE4 0Xe1A51A++nyrVKHj0WT7etHxyNpeojEFpUd2MjzPnFr0JFlMLvCX1poUXLtq3bU BuqoLlOGvfm/yNdPi9G5knsZfanPVs1yL3XpA11Gx836GxtkpA8pIXsVUxLDzt4Q zs8rB2+nAj0V44tkmWTywzj8D3Zh6W87SnOGgW8r8eJfcNOnLQHCCSfzsZ4BfsF6 TiqxNXDRr3NDmkLJEEqiw1OzTwyHurZ5rU66ZIfU/Z5Db5aXu6RnZRHOwU4QdFFU aVATLXcGlwqrPoZjoJi3R8q/pwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFOrlHk/ GdP9mCa5rZ0IvL1853sYMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf1ZCjSQG/jzfwyqdY5IkjlYW42UxWZNNXBjNZsBZf3FqUHFhosZAUqDC1utK Ui6Qr5Ta2NECY8SpEtnI58T7mzfqKl8q/YYryvktaf4xJZ59PT0TQBB5cL1pBot9 jYkihCKKpezvgfRo9qhQzyxXG1zQ+z6vkQrQoJ516Tldsrj+BySaUUB4Zz905Ak0 rDTo8xI+uKaS+2hUVi8qcJprPSjL2OflhbfrT5GIFK8Ok7TrOtpcAHmZTdLIGOC4 Qg9V5CKTDx4oCqtViaeunmXAmiPWvciA3N4m5gwjcJRzf+tTzlT45ZL0/NkJojAM 5aDwTtdwYSq5P7SWc+wV+msF8Q== -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:55 2026 by rpki-client