$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: waWNEOOAaiapBcrT3hIPyxyKfmRcn8bWicJEupmK7UY= Subject key identifier: 6A:27:62:A9:7F:43:BF:CE:32:6A:D0:C1:FB:98:90:22:B1:D0:4F:4A Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 02FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 02F2 Signing time: Sun 01 Mar 2026 02:11:09 +0000 Manifest this update: Sun 01 Mar 2026 02:11:09 +0000 Manifest next update: Sun 08 Mar 2026 02:11:09 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: Jhf8WFrhfQf44q31j0GHFdJRPC2xV4MWnUgw9ci4p9M=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: hbJJRaC5M5LUQTbnkq8W618J1VcGyMM13Drb0UsxWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 764 (0x2fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Mar 1 02:11:09 2026 GMT Not After : Mar 8 02:11:09 2026 GMT Subject: CN=69a3a03d-16c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:31:d3:a6:af:48:a2:8a:1d:74:4d:9d:a8:74: 46:dd:17:d2:1f:56:f2:5e:a2:33:73:72:96:ec:d0: 66:9c:5f:7c:ee:7d:74:ae:13:cd:52:ee:17:86:21: ad:fd:59:5a:69:47:15:b4:50:c8:bc:5e:a0:a9:28: 93:2a:a3:8b:1e:4f:1c:8f:aa:61:e0:d0:13:84:8a: 58:33:78:1b:c2:ba:ef:34:7b:4d:36:0c:b2:60:38: b4:4c:52:d6:0c:88:f4:17:bc:73:8c:ce:5a:83:d7: 34:51:a3:bb:75:7d:fd:d5:c6:a8:85:80:a6:65:a0: ac:13:99:88:b8:ec:bc:10:f6:86:7e:3f:ef:52:76: 56:2a:2d:e1:71:51:c3:d4:42:0d:ae:e9:c7:fa:10: 9c:5e:bf:f9:1d:67:61:52:60:6a:ea:c1:d6:38:73: ac:d9:cd:21:13:27:8c:20:8e:18:2f:bd:74:81:84: 56:92:1d:ac:9d:f0:23:c9:81:b2:f5:72:87:52:3c: 33:38:4e:9b:c9:16:9f:b8:1c:ad:8e:92:f2:d4:c3: bf:fa:45:18:28:32:0c:c4:ff:ef:d0:a7:66:35:4b: fc:bf:4b:5f:5d:cd:bd:75:77:e0:f6:18:8b:67:59: bd:ef:3b:7f:36:61:1f:1d:e9:04:df:27:bb:d4:23: 47:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:27:62:A9:7F:43:BF:CE:32:6A:D0:C1:FB:98:90:22:B1:D0:4F:4A X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:31:6e:b8:d0:5f:5d:55:00:d2:e7:8f:7a:a6:6b:10:42:01: 81:1a:dc:47:dd:ba:b8:72:0d:53:a7:73:19:70:c3:f5:c5:d5: c2:d2:0d:26:9a:6e:1e:29:2b:46:70:87:f5:a0:89:78:28:95: b4:64:e3:6a:2e:6d:d3:1e:48:4b:d7:9f:5a:83:e2:1b:70:5a: 6f:ac:e5:8d:41:ae:6e:c8:dc:3a:fe:8f:34:96:4f:7f:c9:67: 93:08:c1:99:91:91:a3:96:d8:11:20:86:dc:93:5c:cf:38:5c: d9:19:31:69:d5:9f:98:14:2e:b6:e7:a8:41:24:4e:1b:1c:8b: 80:35:d3:f8:ed:97:63:ca:06:ed:0f:2e:de:b0:99:3f:9c:d3: 9c:d7:26:ee:ee:60:d6:00:b0:42:93:11:f4:7a:8c:ed:36:eb: dc:3d:09:26:54:4e:fd:ae:c2:e4:63:3c:c6:b3:3b:01:6c:dd: 7e:74:e8:17:40:94:21:b6:56:d5:9e:a7:fb:84:85:b5:f2:e7: f6:fc:7e:42:51:28:86:56:b5:b3:77:de:58:f0:4f:c0:c2:a6: d3:75:7d:58:c5:e1:7a:ea:8b:6b:f3:e9:77:b9:d3:6c:23:10: 3a:ce:b6:06:3d:c7:67:4e:1c:b9:da:fe:9b:21:d4:13:f2:a0: a2:5e:42:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjYwMzAxMDIxMTA5WhcNMjYwMzA4MDIxMTA5WjAYMRYwFAYD VQQDDA02OWEzYTAzZC0xNmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTHTpq9IoooddE2dqHRG3RfSH1byXqIzc3KW7NBmnF987n10rhPNUu4XhiGt /VlaaUcVtFDIvF6gqSiTKqOLHk8cj6ph4NAThIpYM3gbwrrvNHtNNgyyYDi0TFLW DIj0F7xzjM5ag9c0UaO7dX391caohYCmZaCsE5mIuOy8EPaGfj/vUnZWKi3hcVHD 1EINrunH+hCcXr/5HWdhUmBq6sHWOHOs2c0hEyeMII4YL710gYRWkh2snfAjyYGy 9XKHUjwzOE6byRafuBytjpLy1MO/+kUYKDIMxP/v0KdmNUv8v0tfXc29dXfg9hiL Z1m97zt/NmEfHekE3ye71CNHOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGonYql/ Q7/OMmrQwfuYkCKx0E9KMB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKjFuuNBfXVUA0uePeqZrEEIBgRrcR926uHINU6dzGXDD9cXVwtINJppuHikr RnCH9aCJeCiVtGTjai5t0x5IS9efWoPiG3Bab6zljUGubsjcOv6PNJZPf8lnkwjB mZGRo5bYESCG3JNczzhc2RkxadWfmBQutueoQSROGxyLgDXT+O2XY8oG7Q8u3rCZ P5zTnNcm7u5g1gCwQpMR9HqM7Tbr3D0JJlRO/a7C5GM8xrM7AWzdfnToF0CUIbZW 1Z6n+4SFtfLn9vx+QlEohla1s3feWPBPwMKm03V9WMXheuqLa/Ppd7nTbCMQOs62 Bj3HZ04cudr+myHUE/Kgol5C0w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:50 2026 by rpki-client