$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: PvK2pMOE2uO6h3n5hMX4ysSzOsw3jxVPNYu75cvL8L0= Subject key identifier: 56:D9:41:E7:9B:EE:71:8D:49:A8:B1:41:4B:AD:20:FA:C6:96:7E:40 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 021D Signing time: Sun 01 Mar 2026 03:35:51 +0000 Manifest this update: Sun 01 Mar 2026 03:35:50 +0000 Manifest next update: Sun 08 Mar 2026 03:35:50 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: EWfYMmcN2hoyKbaizNO5rk6O5mYz3EYh7YpF7YgcLN8=) 2: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 3: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 4: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Mar 1 03:35:50 2026 GMT Not After : Mar 8 03:35:50 2026 GMT Subject: CN=69a3b417-a75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:ce:fa:d3:8b:8c:61:ee:79:54:ee:ee:cb: f3:a3:0c:38:f9:f5:b3:0b:77:32:dc:1f:df:fe:e8: 1e:02:d8:92:6e:3e:f6:57:fa:9a:35:c0:8c:c1:a3: aa:7d:f4:51:3a:ad:f2:ae:7c:34:56:de:ac:45:d2: db:4e:5b:71:30:76:82:36:6a:e7:e9:fc:54:dd:bf: 9b:71:b1:99:ca:8d:9e:a4:73:1f:70:3b:71:86:52: 8e:54:ca:4c:cd:cd:0c:c8:e9:7b:e7:00:3c:dc:21: 2e:b5:dd:25:ba:03:e1:3a:a7:69:03:8c:ee:02:02: b7:ed:94:1a:66:dc:8a:d4:38:09:d1:91:63:ee:6d: 63:f0:fe:b1:cf:0a:83:68:05:6a:ee:e4:1f:fa:b7: 7d:61:fa:df:b9:e3:99:3e:68:6f:17:74:73:a1:75: a6:9d:c4:d6:85:50:cd:1b:9a:1b:30:fc:e4:fb:39: 9a:01:7d:5c:fa:00:84:82:ac:c3:82:d0:0c:f9:3e: 4d:98:da:95:17:5b:52:27:a4:41:51:b5:fa:6e:ac: 05:13:8b:8a:92:70:69:7b:25:c6:2a:74:e2:bb:b5: b7:26:72:22:03:fe:00:2f:86:f9:5a:05:7a:4e:d1: b0:1b:d6:29:82:03:b3:e7:cb:ba:6f:6c:70:1d:e5: ec:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D9:41:E7:9B:EE:71:8D:49:A8:B1:41:4B:AD:20:FA:C6:96:7E:40 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5a:f4:41:40:a6:bb:59:24:d3:0e:7d:b4:b7:4f:a1:04:ae: d9:73:ec:0a:74:7f:79:80:b3:3d:a8:e3:19:ad:c6:e4:ba:29: 57:76:57:a4:ec:e5:25:3b:3e:65:2f:be:79:34:6d:9c:a4:2a: 20:2e:60:43:00:f6:0b:fa:f5:4c:06:d4:5e:65:6b:e1:ff:73: bf:21:3d:85:2f:20:3f:6f:f4:6c:32:54:a7:19:7d:05:dd:be: 45:34:56:f5:21:54:e0:eb:03:ea:20:82:48:47:af:06:ef:b7: e5:0a:83:f4:ed:da:60:84:c4:ad:6e:f7:0d:a6:c0:d6:8e:1d: 21:7b:65:79:e0:85:27:e0:a9:de:c0:cb:80:a7:b1:87:45:fd: f6:97:a0:4d:e3:fd:22:71:39:64:1b:bb:7f:18:da:1d:60:88: a1:95:93:0f:4b:b4:05:ab:21:45:3a:62:b1:fc:1b:54:d9:70: 06:bf:cb:fd:41:39:f7:91:65:aa:df:d9:d4:35:51:da:6b:d6: b3:5e:57:20:a5:27:59:fb:ce:9e:02:cf:fe:db:b6:be:76:ef: d7:d5:29:7b:9f:29:30:20:bd:8b:e0:b3:8e:90:12:9d:5c:5d: e0:7b:ba:50:f9:cb:c0:ea:3f:6a:99:09:38:d3:b2:e4:cc:95: 86:09:cb:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwMzAxMDMzNTUwWhcNMjYwMzA4MDMzNTUwWjAYMRYwFAYD VQQDDA02OWEzYjQxNy1hNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJzO+tOLjGHueVTu7svzoww4+fWzC3cy3B/f/ugeAtiSbj72V/qaNcCMwaOq ffRROq3yrnw0Vt6sRdLbTltxMHaCNmrn6fxU3b+bcbGZyo2epHMfcDtxhlKOVMpM zc0MyOl75wA83CEutd0lugPhOqdpA4zuAgK37ZQaZtyK1DgJ0ZFj7m1j8P6xzwqD aAVq7uQf+rd9YfrfueOZPmhvF3RzoXWmncTWhVDNG5obMPzk+zmaAX1c+gCEgqzD gtAM+T5NmNqVF1tSJ6RBUbX6bqwFE4uKknBpeyXGKnTiu7W3JnIiA/4AL4b5WgV6 TtGwG9YpggOz58u6b2xwHeXsDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFbZQeeb 7nGNSaixQUutIPrGln5AMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQVr0QUCmu1kk0w59tLdPoQSu2XPsCnR/eYCzPajjGa3G5LopV3ZXpOzlJTs+ ZS++eTRtnKQqIC5gQwD2C/r1TAbUXmVr4f9zvyE9hS8gP2/0bDJUpxl9Bd2+RTRW 9SFU4OsD6iCCSEevBu+35QqD9O3aYITErW73DabA1o4dIXtleeCFJ+Cp3sDLgKex h0X99pegTeP9InE5ZBu7fxjaHWCIoZWTD0u0BashRTpisfwbVNlwBr/L/UE595Fl qt/Z1DVR2mvWs15XIKUnWfvOngLP/tu2vnbv19Upe58pMCC9i+CzjpASnVxd4Hu6 UPnLwOo/apkJONOy5MyVhgnL/g== -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:16 2026 by rpki-client