$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: AlnVjSIw19amQBjUJhYhpsEBef6JaOCOSsWNNWU4o1I= Subject key identifier: 22:CD:B9:51:68:4B:20:C1:D7:EB:3B:3D:94:CC:DB:F9:36:57:9F:2A Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 029A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 0294 Signing time: Mon 02 Mar 2026 01:05:39 +0000 Manifest this update: Mon 02 Mar 2026 01:05:38 +0000 Manifest next update: Mon 09 Mar 2026 01:05:38 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: 21/MNWlI+FJgarVTDmQb1dj7p4RDRJ+XgVD+7DZkzpc=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: akPAZSOa93x2Wngs9MzKkfgLP+esBNNQavCi79ZhFO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Mar 2 01:05:38 2026 GMT Not After : Mar 9 01:05:38 2026 GMT Subject: CN=69a4e263-383e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f5:77:6c:23:8b:d8:66:21:3a:b0:c6:9f:1a: 65:17:b1:69:67:c0:21:7d:e9:5d:dd:6a:0c:23:76: c0:b7:8a:a5:b0:fa:84:88:14:a1:45:b1:53:55:40: 49:91:9c:c5:1d:c5:13:18:16:e3:39:dc:33:79:d3: fe:81:95:d6:36:bd:2a:48:2c:d1:c7:a8:19:7a:8a: 5e:ca:18:05:77:ec:99:78:7a:ae:a5:ae:63:1c:94: 48:b9:53:7b:bb:d7:dc:02:bf:00:83:f6:72:c0:e9: 99:91:99:c0:68:0c:e1:7c:02:28:4c:25:81:31:df: 18:64:2b:68:99:7b:d4:6a:a5:89:60:7c:6f:ae:f7: 66:bd:cd:da:01:4c:0a:99:aa:b1:e1:0c:80:ba:f9: 77:55:1f:f4:95:62:bc:b5:f7:18:b3:bd:7f:67:53: a6:2a:e1:d3:8f:42:67:fc:c9:e6:8e:34:85:dc:85: 81:53:69:5d:3b:8f:33:4b:f0:c8:9d:ab:85:34:d1: 54:69:bd:cc:7d:e7:de:67:7d:00:a4:d9:97:48:bf: b3:0a:7b:9c:92:52:3a:89:a2:6b:b7:23:7e:d4:e8: 35:34:fc:4b:15:ee:3a:aa:c5:7d:1f:15:e0:05:09: df:e9:56:17:3f:f6:b5:fd:ab:9c:bf:3d:fe:c1:98: a5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CD:B9:51:68:4B:20:C1:D7:EB:3B:3D:94:CC:DB:F9:36:57:9F:2A X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:85:e6:39:8c:c5:d8:f8:1d:d3:a6:a6:70:b6:f3:1f:24:4b: c1:ac:d1:a1:6d:ab:fa:94:0e:05:3d:07:ec:31:d7:45:66:13: 2d:87:ff:3a:06:04:b5:b0:1c:f4:d6:d9:6a:6f:d0:80:48:f7: 62:3d:43:71:93:00:af:7c:9a:3e:21:9e:88:24:4b:38:68:b9: fa:cb:c9:6c:75:e4:a3:3a:db:50:a4:b1:44:1e:3a:11:6c:44: e1:f1:2c:33:31:fc:3b:22:8e:18:1b:9a:0f:70:df:2b:b4:8e: ad:1f:c0:d8:eb:e4:d2:c2:83:34:af:92:2e:9c:1d:ff:13:93: 01:9c:0d:9d:d1:14:fc:7f:41:7c:2c:71:32:97:bb:58:8e:d9: 11:d8:e0:4e:11:2e:70:11:6f:13:01:40:4e:5f:58:6d:14:f3: 58:4b:84:24:60:c6:3b:71:93:a9:0e:ce:bf:73:ec:2c:be:2f: 17:e0:26:05:6f:37:c8:5e:30:bf:86:e3:6f:b3:42:09:cf:43: 53:d9:d0:17:12:ab:09:bd:59:66:c1:e6:16:4d:d2:8f:da:44: 44:04:db:74:1d:00:b6:3c:57:fb:24:63:ec:32:8e:b6:27:76: 47:7e:de:41:6c:1e:1e:81:91:05:98:64:c0:66:13:78:a3:4b: 6b:2b:c9:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjYwMzAyMDEwNTM4WhcNMjYwMzA5MDEwNTM4WjAYMRYwFAYD VQQDEw02OWE0ZTI2My0zODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PV3bCOL2GYhOrDGnxplF7FpZ8Ahfeld3WoMI3bAt4qlsPqEiBShRbFTVUBJ kZzFHcUTGBbjOdwzedP+gZXWNr0qSCzRx6gZeopeyhgFd+yZeHqupa5jHJRIuVN7 u9fcAr8Ag/ZywOmZkZnAaAzhfAIoTCWBMd8YZCtomXvUaqWJYHxvrvdmvc3aAUwK maqx4QyAuvl3VR/0lWK8tfcYs71/Z1OmKuHTj0Jn/MnmjjSF3IWBU2ldO48zS/DI nauFNNFUab3MfefeZ30ApNmXSL+zCnucklI6iaJrtyN+1Og1NPxLFe46qsV9HxXg BQnf6VYXP/a1/aucvz3+wZil6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCLNuVFo SyDB1+s7PZTM2/k2V58qMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd4XmOYzF2Pgd06amcLbzHyRLwazRoW2r+pQOBT0H7DHXRWYTLYf/OgYEtbAc 9NbZam/QgEj3Yj1DcZMAr3yaPiGeiCRLOGi5+svJbHXkozrbUKSxRB46EWxE4fEs MzH8OyKOGBuaD3DfK7SOrR/A2Ovk0sKDNK+SLpwd/xOTAZwNndEU/H9BfCxxMpe7 WI7ZEdjgThEucBFvEwFATl9YbRTzWEuEJGDGO3GTqQ7Ov3PsLL4vF+AmBW83yF4w v4bjb7NCCc9DU9nQFxKrCb1ZZsHmFk3Sj9pERATbdB0AtjxX+yRj7DKOtid2R37e QWweHoGRBZhkwGYTeKNLayvJWg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:45:09 2026 by rpki-client