$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: 0ZuG9LEW9zVdug0vzA5dgXBt+IRxFIXYSTygm/udLiE= Subject key identifier: A9:88:F7:AB:86:56:AC:6C:FE:E3:9B:AD:E4:BD:65:6C:29:5D:0F:FC Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 7F Signing time: Sun 01 Mar 2026 09:01:16 +0000 Manifest this update: Sun 01 Mar 2026 09:01:15 +0000 Manifest next update: Sun 08 Mar 2026 09:01:15 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: h3NUfTs2sGpQkkmwQPBBr0qcW++Oq1VnxLK0pOO3zNY=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: weUBuaqXjk5/5+ZvfK6KOqbWfTtXBnBwNWpgK2K7P90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Mar 1 09:01:15 2026 GMT Not After : Mar 8 09:01:15 2026 GMT Subject: CN=69a4005b-6297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:da:ea:c8:16:5d:85:dd:69:ce:08:2c:29:28: 35:b4:78:a5:3e:6a:ef:74:da:c8:61:b3:96:e5:1e: 59:97:cb:55:c1:cc:49:35:a9:36:0a:99:2a:96:6f: a5:20:39:a1:10:9b:19:81:bb:28:01:f4:f6:1a:1f: 6d:9c:7f:92:09:c2:f3:f8:56:f7:e6:e1:b9:60:44: 86:4b:3d:ac:42:2a:51:1f:8f:6b:81:c3:56:79:7a: 29:57:bc:97:89:c7:2d:b7:df:cd:16:7d:72:67:0b: f2:01:8c:21:79:bd:59:1e:7d:e4:6d:f1:06:f0:70: 25:09:61:19:80:f3:f2:f9:34:89:a3:3f:17:32:15: a8:1e:ac:cf:bb:56:28:34:08:0a:f0:d5:11:4a:b9: 32:f0:aa:6e:b7:84:42:26:6e:92:e8:fb:df:1a:cf: c0:2b:16:69:53:5d:56:fe:1a:a6:fe:4b:85:54:bf: f3:93:6d:86:ce:f2:0a:c2:2f:ce:58:eb:ad:30:d6: 55:cf:3f:23:2c:64:69:ef:55:15:ee:ca:47:26:ee: d8:c6:e9:42:d2:42:25:ce:e8:0a:d7:bd:5e:b8:bd: e3:20:af:3b:a8:e7:45:89:30:b9:3e:df:89:c9:e0: 0c:94:9f:db:f0:76:54:be:92:93:a7:44:a1:72:33: d3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:88:F7:AB:86:56:AC:6C:FE:E3:9B:AD:E4:BD:65:6C:29:5D:0F:FC X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:ae:cf:ee:4d:ec:a9:19:73:98:55:1a:ec:14:81:52:44:17: fc:09:df:4e:11:68:36:d1:24:13:23:4e:e8:ae:d8:80:ef:26: 2a:0c:47:0d:3d:29:14:be:c7:6b:b4:c1:b4:af:c9:64:83:f8: 97:0b:e8:71:06:39:98:73:11:0c:79:d6:02:a2:55:33:aa:3d: 1e:85:fb:28:47:5c:1f:17:f3:46:b1:84:84:21:06:c9:0c:d3: 1b:26:3e:b4:68:ce:72:5f:10:d8:ff:6b:e5:52:f2:b4:96:f9: 4e:1d:d3:dd:d3:0a:f7:7d:cd:80:c9:c3:0c:0b:ff:c6:d8:48: b9:20:d2:f2:21:92:09:e9:9f:9b:5c:13:bd:52:25:f6:59:f9: 4b:22:ef:d9:0b:d4:67:27:62:1a:aa:a5:fa:9d:12:90:49:bd: 23:89:d6:be:47:46:12:0d:89:d3:74:4a:d6:06:9b:75:e7:3b: b2:12:35:56:17:cf:8e:54:67:ae:82:4e:44:e5:69:3e:2e:4c: 07:66:79:99:64:2f:9d:2c:57:69:c3:e9:29:87:52:86:23:a6: 4e:b2:07:40:a5:7a:24:b6:cc:c4:e4:82:fe:92:c4:a9:2f:6c: e2:e5:16:37:a7:f4:f8:5e:29:8b:bb:50:b2:5e:38:56:bb:53: 8e:f6:80:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKEQ0MjU2RURDMkJDMTFDODQ1REI1MDdCN0MwQTg5MzU0 NDYyRUI2M0QwHhcNMjYwMzAxMDkwMTE1WhcNMjYwMzA4MDkwMTE1WjAYMRYwFAYD VQQDEw02OWE0MDA1Yi02Mjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4drqyBZdhd1pzggsKSg1tHilPmrvdNrIYbOW5R5Zl8tVwcxJNak2Cpkqlm+l IDmhEJsZgbsoAfT2Gh9tnH+SCcLz+Fb35uG5YESGSz2sQipRH49rgcNWeXopV7yX icctt9/NFn1yZwvyAYwheb1ZHn3kbfEG8HAlCWEZgPPy+TSJoz8XMhWoHqzPu1Yo NAgK8NURSrky8Kput4RCJm6S6PvfGs/AKxZpU11W/hqm/kuFVL/zk22GzvIKwi/O WOutMNZVzz8jLGRp71UV7spHJu7YxulC0kIlzugK171euL3jIK87qOdFiTC5Pt+J yeAMlJ/b8HZUvpKTp0ShcjPT7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKmI96uG Vqxs/uObreS9ZWwpXQ/8MB8GA1UdIwQYMBaAFNQlbtwrwRyEXbUHt8Cok1RGLrY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DNTU5NDI0QTU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJUmR0UWUzd0tpVFZFWXV0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DNTU5NDI0QTU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJ UmR0UWUzd0tpVFZFWXV0ajAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAna7P7k3sqRlzmFUa7BSBUkQX/AnfThFoNtEkEyNO6K7YgO8mKgxHDT0pFL7H a7TBtK/JZIP4lwvocQY5mHMRDHnWAqJVM6o9HoX7KEdcHxfzRrGEhCEGyQzTGyY+ tGjOcl8Q2P9r5VLytJb5Th3T3dMK933NgMnDDAv/xthIuSDS8iGSCemfm1wTvVIl 9ln5SyLv2QvUZydiGqql+p0SkEm9I4nWvkdGEg2J03RK1gabdec7shI1VhfPjlRn roJOROVpPi5MB2Z5mWQvnSxXacPpKYdShiOmTrIHQKV6JLbMxOSC/pLEqS9s4uUW N6f0+F4pi7tQsl44VrtTjvaA0g== -----END CERTIFICATE-----Generated at Mon Mar 2 09:33:21 2026 by rpki-client