$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: CJzSB0pnJJq5JO/Q3MqSb/m2dBlbS4zY3fi1gloLNlc= Subject key identifier: 44:48:20:93:51:DB:74:A2:32:92:63:E1:FE:A4:A8:05:98:9D:99:97 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 0292 Signing time: Sun 01 Mar 2026 02:23:35 +0000 Manifest this update: Sun 01 Mar 2026 02:23:35 +0000 Manifest next update: Sun 08 Mar 2026 02:23:35 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: qR9Q5k9qq7NjYZwqTEe2/cTdbaZ0iU8yl/+6G23t9Dw=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: R3jRDvm0E8vyU2n+jY+lrRNs85d0z5lzmVh9QqpC5jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Mar 1 02:23:35 2026 GMT Not After : Mar 8 02:23:35 2026 GMT Subject: CN=69a3a327-5f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5a:d1:6b:83:32:3c:36:2f:de:3e:04:ce:da: e4:3f:2f:4b:16:7c:b4:9a:c3:37:fa:13:20:ac:0f: 49:f5:1d:93:14:8a:dc:ec:63:a9:2b:dd:00:47:a5: 75:6f:6a:46:57:47:9f:37:a1:1e:9f:81:c3:36:84: 7b:26:55:b5:f9:18:36:97:37:59:fa:14:96:68:6f: 38:db:6b:5a:e0:b2:bc:98:64:3c:9f:9d:bb:e9:84: 19:37:ae:5f:ff:00:11:ff:bc:e8:8b:f4:9a:73:3d: 39:3f:8f:58:88:e0:49:07:f2:09:92:8f:1b:56:57: bb:33:a5:57:90:80:4c:46:25:59:24:23:b6:4e:09: d7:1f:fd:19:fb:1e:03:ed:49:6b:de:f6:cf:99:5d: c6:01:42:ce:df:eb:39:50:41:b5:f7:25:af:b9:e0: e3:a3:af:9d:e1:bd:cb:97:4c:1d:52:4c:95:e2:16: 00:4a:88:1f:5e:ab:3e:54:fa:ca:bf:63:af:be:5a: f1:56:a3:67:23:c2:5a:8a:ec:23:14:c3:bc:fb:d7: 72:7a:c9:46:1c:0b:22:65:0d:87:ce:bd:4f:fc:eb: 12:b4:0f:77:41:2f:84:19:36:72:1a:a0:31:05:6a: 29:87:8c:85:75:e9:a6:66:ef:ef:a3:0d:a2:9f:a3: 5a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:48:20:93:51:DB:74:A2:32:92:63:E1:FE:A4:A8:05:98:9D:99:97 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:69:ff:42:b0:60:75:61:8f:7a:b2:cc:8c:b6:72:8f:ba:66: e1:ca:af:13:c4:5f:12:08:4c:78:32:5e:d6:67:6e:68:2a:48: f7:9d:73:42:95:61:f2:89:73:c6:e3:c2:14:3d:d8:0a:2c:f7: 59:50:f4:01:cd:61:a9:35:3b:5a:8f:22:a1:95:10:42:3c:96: 20:32:33:28:99:96:a7:10:2d:7a:a3:95:0c:4f:dd:e1:fb:d1: 9b:21:e1:62:74:d4:87:c6:15:ab:74:fa:7f:0e:5e:1d:e9:d1: 4c:16:c5:a0:ed:dc:9b:69:b1:0f:e9:16:5f:7b:89:98:62:ae: 71:e6:e8:3c:88:fc:23:9b:3e:0c:6c:04:a0:6c:7e:38:f1:14: c5:bf:fc:08:84:c3:9b:75:fc:c6:6a:2a:8e:d7:bd:3e:39:53: 52:ad:a5:4b:c3:53:a1:91:3e:13:52:20:89:d7:55:4f:ca:66: 3d:89:62:71:d6:25:1f:9e:06:d7:92:6b:c0:90:50:f1:7f:b2: f2:6d:48:a0:64:f1:67:f3:38:17:85:cd:2f:7f:71:75:ca:3a: 0e:39:e1:77:3b:72:4c:4f:94:8e:4f:db:93:67:e5:9e:60:c3: 35:7a:e0:15:c2:3f:3e:67:1d:bc:40:06:29:17:e3:2d:4b:01: 46:03:ce:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjYwMzAxMDIyMzM1WhcNMjYwMzA4MDIyMzM1WjAYMRYwFAYD VQQDDA02OWEzYTMyNy01Zjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1rRa4MyPDYv3j4EztrkPy9LFny0msM3+hMgrA9J9R2TFIrc7GOpK90AR6V1 b2pGV0efN6Een4HDNoR7JlW1+Rg2lzdZ+hSWaG8422ta4LK8mGQ8n5276YQZN65f /wAR/7zoi/Sacz05P49YiOBJB/IJko8bVle7M6VXkIBMRiVZJCO2TgnXH/0Z+x4D 7Ulr3vbPmV3GAULO3+s5UEG19yWvueDjo6+d4b3Ll0wdUkyV4hYASogfXqs+VPrK v2OvvlrxVqNnI8JaiuwjFMO8+9dyeslGHAsiZQ2Hzr1P/OsStA93QS+EGTZyGqAx BWoph4yFdemmZu/vow2in6NaoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFERIIJNR 23SiMpJj4f6kqAWYnZmXMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnmn/QrBgdWGPerLMjLZyj7pm4cqvE8RfEghMeDJe1mduaCpI951zQpVh8olz xuPCFD3YCiz3WVD0Ac1hqTU7Wo8ioZUQQjyWIDIzKJmWpxAteqOVDE/d4fvRmyHh YnTUh8YVq3T6fw5eHenRTBbFoO3cm2mxD+kWX3uJmGKuceboPIj8I5s+DGwEoGx+ OPEUxb/8CITDm3X8xmoqjte9PjlTUq2lS8NToZE+E1IgiddVT8pmPYlicdYlH54G 15JrwJBQ8X+y8m1IoGTxZ/M4F4XNL39xdco6DjnhdztyTE+Ujk/bk2flnmDDNXrg FcI/PmcdvEAGKRfjLUsBRgPOxg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:09:07 2026 by rpki-client