$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: 8vvoWaffbmMBTJQ4BFRces9HhCRBcYBaE4mt+RM80GA= Subject key identifier: FD:19:EE:54:E9:FF:3E:F3:18:D0:50:D0:A8:4A:A2:7C:9B:4D:14:ED Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 022C Signing time: Sun 01 Mar 2026 03:25:50 +0000 Manifest this update: Sun 01 Mar 2026 03:25:50 +0000 Manifest next update: Sun 08 Mar 2026 03:25:50 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: P2SM0EOyqoVFpThevJ38d5QAQaot16PD7AjjiMjCiJQ=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Mar 1 03:25:50 2026 GMT Not After : Mar 8 03:25:50 2026 GMT Subject: CN=69a3b1be-6e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:e1:93:a5:f8:82:b5:4a:9c:78:50:53:a4: 38:be:fd:7f:b1:75:25:14:84:35:5d:1e:83:ba:f1: fa:89:ec:47:0a:b2:87:52:fd:d0:dd:c2:b8:34:9f: fd:c0:a9:12:56:87:ff:ea:30:e4:dd:bc:a2:de:c9: 16:59:1d:d9:73:43:12:5e:bf:24:a6:fe:99:67:ca: d0:d3:ef:7f:c5:d5:9b:ce:6c:46:50:c0:d4:60:81: f6:93:ca:df:ae:21:ef:73:be:89:95:61:5f:07:ab: 9e:c6:5f:9c:13:8a:5a:0e:ad:21:58:3f:69:a0:f0: da:bd:a7:99:2e:b6:53:1e:fa:07:a1:27:3b:0d:ad: bd:65:a0:76:c3:4a:0d:2e:11:c7:38:24:ae:33:d6: 1d:f4:13:72:8f:96:4c:ab:6f:c4:8d:19:a6:02:4e: 21:84:ce:f7:15:c6:f3:3b:8e:10:35:6b:b9:51:1b: f3:cc:ad:67:82:eb:26:19:92:de:03:b5:9d:ba:1f: 32:24:02:fb:4b:3f:47:2f:5e:ed:a3:15:fc:e5:60: ca:5b:5d:44:d6:a7:5e:25:a3:77:df:c1:cc:f2:6a: df:98:41:2c:ec:a8:24:18:bb:59:ed:c5:0d:b8:c9: 9a:2b:63:0e:54:4a:89:d6:67:91:54:c9:3c:a4:f6: 3a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:19:EE:54:E9:FF:3E:F3:18:D0:50:D0:A8:4A:A2:7C:9B:4D:14:ED X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e9:fc:38:71:24:07:82:ec:56:63:64:53:5e:07:6e:fa:f1: 60:0b:c2:8b:fa:ab:72:c6:4d:e7:67:75:1b:15:65:bb:65:23: 02:c5:c3:36:f4:86:c7:a1:51:61:72:2b:7a:c5:48:1f:4c:86: 77:86:9b:f2:42:c7:4b:88:cb:b1:7d:0c:c3:3b:1f:3f:54:58: 29:00:ec:74:b9:b7:04:19:a8:3f:86:33:82:f5:e6:65:b7:24: fd:95:f2:93:3a:0b:9b:f5:d9:72:36:58:59:92:42:ab:8a:da: 57:8d:d4:17:17:b7:fb:5c:63:46:4f:34:d2:8d:7c:8a:a2:52: 5e:47:f0:23:a4:f8:20:b9:c9:de:4c:73:ea:b2:aa:46:b5:a4: 01:4c:61:ca:30:5a:08:7b:9a:30:85:ff:c2:30:90:9f:5c:52: f1:0b:24:67:2a:ae:2d:f4:e2:b0:21:c6:fc:72:20:30:53:42: ec:6a:03:36:11:6e:d7:ad:04:dc:e2:ba:d1:2d:ef:a8:7b:d5: 4d:d4:fc:2d:65:4f:73:2d:8a:8f:73:83:c2:6f:ba:46:fc:43: 5d:61:ec:c5:62:10:aa:14:3f:45:d9:58:5c:d0:3a:d4:00:d8: 48:e8:e2:f0:d3:40:df:b4:04:7e:82:50:16:68:0b:18:72:17: 41:85:eb:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwMzAxMDMyNTUwWhcNMjYwMzA4MDMyNTUwWjAYMRYwFAYD VQQDDA02OWEzYjFiZS02ZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDLhk6X4grVKnHhQU6Q4vv1/sXUlFIQ1XR6DuvH6iexHCrKHUv3Q3cK4NJ/9 wKkSVof/6jDk3byi3skWWR3Zc0MSXr8kpv6ZZ8rQ0+9/xdWbzmxGUMDUYIH2k8rf riHvc76JlWFfB6uexl+cE4paDq0hWD9poPDavaeZLrZTHvoHoSc7Da29ZaB2w0oN LhHHOCSuM9Yd9BNyj5ZMq2/EjRmmAk4hhM73FcbzO44QNWu5URvzzK1ngusmGZLe A7Wduh8yJAL7Sz9HL17toxX85WDKW11E1qdeJaN338HM8mrfmEEs7KgkGLtZ7cUN uMmaK2MOVEqJ1meRVMk8pPY6eQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP0Z7lTp /z7zGNBQ0KhKonybTRTtMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuun8OHEkB4LsVmNkU14HbvrxYAvCi/qrcsZN52d1GxVlu2UjAsXDNvSGx6FR YXIresVIH0yGd4ab8kLHS4jLsX0MwzsfP1RYKQDsdLm3BBmoP4YzgvXmZbck/ZXy kzoLm/XZcjZYWZJCq4raV43UFxe3+1xjRk800o18iqJSXkfwI6T4ILnJ3kxz6rKq RrWkAUxhyjBaCHuaMIX/wjCQn1xS8QskZyquLfTisCHG/HIgMFNC7GoDNhFu160E 3OK60S3vqHvVTdT8LWVPcy2Kj3ODwm+6RvxDXWHsxWIQqhQ/RdlYXNA61ADYSOji 8NNA37QEfoJQFmgLGHIXQYXrmQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:06 2026 by rpki-client