$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: RT+uFiTXH+Hd71Lnj/mGQm3DIcaZGPLDp0EwsQ8BoBg= Subject key identifier: F3:72:8F:CE:BE:58:1C:C1:B1:DA:4C:AD:50:7B:53:AE:E8:15:81:18 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 058C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0587 Signing time: Mon 02 Mar 2026 02:52:56 +0000 Manifest this update: Mon 02 Mar 2026 02:52:55 +0000 Manifest next update: Mon 09 Mar 2026 02:52:55 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: 1QdteZMRv6cUBYa3TF05fwXXZbOr6dAjfMIL1WCZVG0=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1420 (0x58c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Mar 2 02:52:55 2026 GMT Not After : Mar 9 02:52:55 2026 GMT Subject: CN=69a4fb88-d5f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:e2:a5:56:20:2d:30:9c:b1:4c:59:d6:c1: d8:89:a2:e4:f8:1b:4e:3a:26:48:ca:b2:bb:5f:df: 6e:5d:c0:37:7e:01:93:a1:7c:74:bc:8c:91:48:78: 27:07:89:84:72:5c:2e:a4:47:10:e5:79:4c:cf:9d: 1b:ff:20:40:f3:1b:50:26:d4:0f:5f:ee:03:e2:7b: d4:fa:ca:13:f9:6b:7b:8f:cc:7e:5c:b8:24:1a:67: 41:b9:5b:3e:c0:b0:d5:9b:da:84:8f:ad:56:78:a5: fa:1d:b1:19:91:4c:3c:c1:58:1a:87:d9:ee:cf:15: 64:c0:59:67:e2:e9:30:2b:a2:b0:f2:2a:b2:86:b9: 2a:2c:71:e0:c7:05:e4:9b:b1:b2:d7:41:29:f0:4f: db:e7:c4:75:88:34:2c:e9:54:b3:d8:d2:52:b8:c7: 5e:dd:d4:5c:39:22:0a:46:7d:f7:80:e2:48:dd:85: 93:50:21:a2:43:e3:fc:8c:5b:fd:e0:10:e3:7f:62: 6e:12:25:e8:9b:cb:63:77:d6:cb:28:69:d4:1b:92: 54:63:dc:1f:ae:d0:9a:ac:e0:b1:94:68:bb:76:5a: e0:87:da:b0:e5:ec:be:df:aa:c9:f2:a3:9d:d6:da: cd:7e:09:c4:89:21:1d:9b:58:50:56:7f:8c:29:76: 33:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:72:8F:CE:BE:58:1C:C1:B1:DA:4C:AD:50:7B:53:AE:E8:15:81:18 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2d:83:11:49:67:90:de:c5:1d:ef:5e:36:80:28:9e:13:57: 74:e4:65:b2:ae:92:a9:8b:f9:77:1f:2e:d4:b3:bf:e7:4d:1e: 19:37:c9:da:87:2a:e8:89:0a:cc:e2:ac:54:66:bf:b3:90:aa: e0:02:7c:c3:f7:b8:77:c0:fd:f0:59:97:db:3a:b6:4f:a4:40: 13:54:82:a1:36:f5:f5:88:ae:c2:a1:ed:75:4b:b3:9f:25:88: b5:83:6e:8d:76:1a:6d:05:fa:97:44:29:c9:25:a4:ed:27:ec: 6a:9b:a9:d9:1e:41:e5:4a:30:29:cd:97:f7:ad:ba:20:2d:01: 2a:0a:52:3b:98:dd:5f:2f:e6:ab:17:71:b4:76:6b:e9:ba:67: f2:49:f6:cb:44:48:b6:ac:0d:2b:90:28:01:30:f4:48:db:a7: 18:d1:7e:74:57:7b:26:98:6d:35:70:f9:dc:9c:7d:41:30:15: cf:e7:a2:af:f3:df:62:34:37:e4:e4:31:45:d1:0b:ef:e0:40: f2:a4:cd:ab:c6:bb:02:1a:63:c5:25:e1:12:70:62:9f:78:5a: bb:f9:d3:37:07:4d:57:02:36:9b:c5:bd:ef:c3:8b:7d:99:85: ee:10:51:2d:f3:bb:93:01:cb:7c:92:37:45:25:d0:2c:ba:b8: b2:d3:fb:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjYwMzAyMDI1MjU1WhcNMjYwMzA5MDI1MjU1WjAYMRYwFAYD VQQDEw02OWE0ZmI4OC1kNWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrLipVYgLTCcsUxZ1sHYiaLk+BtOOiZIyrK7X99uXcA3fgGToXx0vIyRSHgn B4mEclwupEcQ5XlMz50b/yBA8xtQJtQPX+4D4nvU+soT+Wt7j8x+XLgkGmdBuVs+ wLDVm9qEj61WeKX6HbEZkUw8wVgah9nuzxVkwFln4ukwK6Kw8iqyhrkqLHHgxwXk m7Gy10Ep8E/b58R1iDQs6VSz2NJSuMde3dRcOSIKRn33gOJI3YWTUCGiQ+P8jFv9 4BDjf2JuEiXom8tjd9bLKGnUG5JUY9wfrtCarOCxlGi7dlrgh9qw5ey+36rJ8qOd 1trNfgnEiSEdm1hQVn+MKXYzmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPNyj86+ WBzBsdpMrVB7U67oFYEYMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOi2DEUlnkN7FHe9eNoAonhNXdORlsq6SqYv5dx8u1LO/500eGTfJ2ocq6IkK zOKsVGa/s5Cq4AJ8w/e4d8D98FmX2zq2T6RAE1SCoTb19YiuwqHtdUuznyWItYNu jXYabQX6l0QpySWk7Sfsapup2R5B5UowKc2X9626IC0BKgpSO5jdXy/mqxdxtHZr 6bpn8kn2y0RItqwNK5AoATD0SNunGNF+dFd7JphtNXD53Jx9QTAVz+eir/PfYjQ3 5OQxRdEL7+BA8qTNq8a7AhpjxSXhEnBin3hau/nTNwdNVwI2m8W978OLfZmF7hBR LfO7kwHLfJI3RSXQLLq4stP7lg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:31:42 2026 by rpki-client