$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: IL8km8aCsV6fRP7CZZnTW8XcEoKE0driOkhARQYKYb8= Subject key identifier: F4:7E:1E:C2:B9:53:A1:49:57:D9:55:6C:B6:3E:6F:05:E7:AF:7A:5B Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: B9 Signing time: Sun 01 Mar 2026 08:13:54 +0000 Manifest this update: Sun 01 Mar 2026 08:13:53 +0000 Manifest next update: Sun 08 Mar 2026 08:13:53 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: 0ZV6S6if/S+KcB88caCd36tb7wtEkquAsPOmojdC9Qw=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: EILeiHdgRS5T+00CqE1QLUGZWDX5PLvwuDPP5GaU2OM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Mar 1 08:13:53 2026 GMT Not After : Mar 8 08:13:53 2026 GMT Subject: CN=69a3f542-d514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:e7:85:b6:fb:35:81:24:c4:5c:8c:e7:9e: e2:01:71:ec:aa:5a:68:06:9f:61:3d:5b:8b:d8:47: bc:7c:91:ea:63:b0:75:d2:ec:fc:93:c7:f5:0f:3c: e3:e0:c9:0c:8b:00:81:2c:3c:97:8c:d9:54:66:7e: 8b:21:62:a3:5c:f5:f2:9a:a1:97:57:57:49:d6:7b: 18:0a:70:76:90:c3:e6:8e:2b:0c:9d:5e:05:84:eb: 6a:9b:f4:4d:77:3a:c4:50:cc:e9:fa:0c:57:76:34: 4a:8c:4f:0c:48:f8:1a:b7:56:1a:22:a1:29:69:a7: 60:ae:28:91:de:29:92:c2:f6:74:8e:ae:64:ce:ba: ba:0f:cd:ad:c2:44:30:2a:12:d2:b3:37:e9:ca:76: d0:9b:42:5f:b4:27:39:66:f1:f8:3c:ce:1d:c8:84: 92:17:bc:ce:55:08:27:c7:78:55:de:39:d6:a9:05: be:ae:c0:5e:7a:ff:a9:31:00:8b:48:c4:13:63:e5: 07:aa:b7:18:69:1b:a1:26:79:5a:a7:f6:78:22:55: d5:18:d3:b3:e9:c1:ab:26:db:fd:6c:96:43:b7:04: b4:8d:8a:76:d9:b4:dc:6d:96:f0:83:f9:5b:bf:8f: 14:86:cc:c6:c6:05:17:34:98:8c:24:ec:c3:e5:89: 13:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7E:1E:C2:B9:53:A1:49:57:D9:55:6C:B6:3E:6F:05:E7:AF:7A:5B X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b5:26:db:43:7c:8a:82:25:7e:18:ae:9f:44:c2:5e:69:81: 60:ab:42:44:40:72:40:c2:46:7c:15:a5:5c:09:ea:2c:0e:37: fc:fd:fb:73:f9:44:db:65:ad:ae:a6:86:e5:49:83:42:3f:9f: af:c6:02:84:8b:df:83:cd:74:5e:f4:c1:aa:aa:4e:68:d2:74: 21:e3:a1:80:15:83:20:4b:4f:e3:ef:08:99:ad:04:28:f5:15: b3:0d:53:35:7c:a3:c4:b0:00:61:a3:7a:38:e3:0d:85:50:e8: e3:f6:3b:61:c9:cd:46:58:95:8e:ea:de:17:88:69:bd:40:46: 21:8b:17:1d:2b:ba:6f:a6:9c:c7:66:db:3f:3a:48:3b:5d:d4: fe:6f:09:9d:74:87:0d:1d:3a:49:05:fa:19:b9:8a:98:dc:c8: b2:bd:24:0f:a8:58:e9:44:42:f0:c8:17:58:93:07:bf:56:0a: 69:39:3d:a3:50:0e:02:01:47:2a:9c:d8:fe:74:83:93:69:fa: bb:73:f3:26:ee:91:71:f7:73:a2:03:d5:c5:47:c7:c9:19:b5: 6d:3a:ba:64:36:b7:77:cf:53:7b:75:86:e6:47:62:3a:6b:fd: 1c:8e:2a:0a:d1:8c:79:b6:57:6c:c0:5a:25:f6:0b:4c:db:e3: a4:9c:c7:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlGNDkxMTAvBgNVBAUTKDcxNzE5OENEMUE0Njc5QUQ5RDQ1MkVFMURCMDJEMDAx MkE0Mzc0RUMwHhcNMjYwMzAxMDgxMzUzWhcNMjYwMzA4MDgxMzUzWjAYMRYwFAYD VQQDEw02OWEzZjU0Mi1kNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGDnhbb7NYEkxFyM557iAXHsqlpoBp9hPVuL2Ee8fJHqY7B10uz8k8f1Dzzj 4MkMiwCBLDyXjNlUZn6LIWKjXPXymqGXV1dJ1nsYCnB2kMPmjisMnV4FhOtqm/RN dzrEUMzp+gxXdjRKjE8MSPgat1YaIqEpaadgriiR3imSwvZ0jq5kzrq6D82twkQw KhLSszfpynbQm0JftCc5ZvH4PM4dyISSF7zOVQgnx3hV3jnWqQW+rsBeev+pMQCL SMQTY+UHqrcYaRuhJnlap/Z4IlXVGNOz6cGrJtv9bJZDtwS0jYp22bTcbZbwg/lb v48UhszGxgUXNJiMJOzD5YkTdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPR+HsK5 U6FJV9lVbLY+bwXnr3pbMB8GA1UdIwQYMBaAFHFxmM0aRnmtnUUu4dsC0AEqQ3Ts MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUY0OS9CMkM1RkI5QUY5 QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2VhMmRSUzdoMndMUUFTcERk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUY0OS9CMkM1RkI5QUY5QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2Vh MmRSUzdoMndMUUFTcERkT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUbUm20N8ioIlfhiun0TCXmmBYKtCREByQMJGfBWlXAnqLA43/P37c/lE22Wt rqaG5UmDQj+fr8YChIvfg810XvTBqqpOaNJ0IeOhgBWDIEtP4+8Ima0EKPUVsw1T NXyjxLAAYaN6OOMNhVDo4/Y7YcnNRliVjureF4hpvUBGIYsXHSu6b6acx2bbPzpI O13U/m8JnXSHDR06SQX6GbmKmNzIsr0kD6hY6URC8MgXWJMHv1YKaTk9o1AOAgFH KpzY/nSDk2n6u3PzJu6RcfdzogPVxUfHyRm1bTq6ZDa3d89Te3WG5kdiOmv9HI4q CtGMebZXbMBaJfYLTNvjpJzHAA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:14:23 2026 by rpki-client