$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: kd5t3yswtQ0G2UCMTpWmNcKg5sdFpObt638upob6q/4= Subject key identifier: 7D:A2:06:E4:D1:B1:B9:22:5C:B1:80:59:13:C8:B0:FC:93:37:6F:C5 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01DF Signing time: Sun 01 Mar 2026 04:11:44 +0000 Manifest this update: Sun 01 Mar 2026 04:11:44 +0000 Manifest next update: Sun 08 Mar 2026 04:11:44 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: jc4AtCSVisIX4TBA90tZpVWIYthFAGxUcJHLZjGQ5f4=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Mar 1 04:11:44 2026 GMT Not After : Mar 8 04:11:44 2026 GMT Subject: CN=69a3bc80-7c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:88:bc:c8:df:1e:51:46:83:ca:ff:8b:0c:3d: ff:80:b7:5b:0c:9f:27:ee:6f:db:26:07:d9:64:f7: 3f:29:8d:35:0c:69:34:68:01:a8:27:9a:a2:67:ea: 17:b9:2a:3f:da:17:b5:09:46:4a:34:27:e2:d4:18: c2:ac:c4:6f:e8:71:11:29:82:cc:01:7c:11:2c:fc: 83:a6:7a:b7:0e:1b:6d:d9:2e:43:da:42:a4:26:ce: 19:70:55:4b:fc:5a:67:7d:39:a8:b6:5e:15:48:82: fe:0b:4b:2c:02:25:6d:1d:31:e9:e5:d2:53:bb:a8: 69:a4:5b:10:62:86:8c:86:cb:d5:8c:b8:72:c7:f8: c7:80:57:4e:23:95:c8:cf:75:ab:3d:60:58:e0:63: 5a:c1:b0:dc:5b:14:4c:52:33:5e:64:da:cd:26:43: 0c:a2:54:e3:0b:b7:c3:d5:93:48:92:09:5d:e8:2c: 4a:75:b6:09:5a:7d:64:26:a0:b4:b7:a6:c1:74:ea: 84:73:d7:15:d2:12:6d:fc:d6:e8:da:57:cf:fb:9e: ac:c1:26:91:dc:1d:ae:33:42:48:6c:f3:43:78:2d: b5:12:33:66:a8:f0:01:b9:d3:35:d6:39:72:3e:0e: 66:e3:f8:85:00:16:cd:8b:6f:ed:08:94:d3:fb:cb: 6d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A2:06:E4:D1:B1:B9:22:5C:B1:80:59:13:C8:B0:FC:93:37:6F:C5 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:4a:69:6b:c3:8f:c6:e6:a7:5d:61:16:5a:07:85:3a:68:38: 59:1d:0f:b1:f0:6e:10:e0:42:12:5d:c1:0b:fa:fd:7c:bf:86: 21:bb:5b:36:0a:1c:3f:22:00:cc:39:6a:c0:58:16:4a:10:b3: 9b:67:6c:8a:ad:f9:d6:c9:26:8e:6a:01:95:c0:7a:a1:32:57: 81:d4:e5:ed:99:94:10:54:99:cb:dc:c8:1b:13:6e:d3:7f:9b: 31:65:e4:16:58:b2:72:b9:93:af:c8:b5:77:e1:7d:46:94:dc: 35:43:fc:45:af:81:9c:73:34:d6:dc:9f:1b:25:66:9c:f8:3c: 29:3e:86:70:dc:24:22:0f:88:3b:91:5a:36:a6:13:58:4f:7b: 8d:a1:c5:a4:54:cf:bf:a9:60:ab:a1:2a:05:75:c4:0b:2f:32: 31:0e:01:19:02:5c:5b:92:08:26:18:ec:8b:65:18:4f:ef:7b: cc:5f:a2:af:ca:fe:16:d3:62:b4:c5:ab:c7:17:3d:60:51:68: c3:84:90:70:7d:8f:73:35:e4:c2:4b:88:68:9e:8f:1a:83:99: 0d:51:9d:6d:47:16:10:51:cc:8c:97:af:63:ed:ea:b6:df:47: f0:88:79:f6:7d:78:d5:ef:12:54:bb:cb:01:e1:58:75:1c:ba: 25:d7:27:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwMzAxMDQxMTQ0WhcNMjYwMzA4MDQxMTQ0WjAYMRYwFAYD VQQDDA02OWEzYmM4MC03YzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYi8yN8eUUaDyv+LDD3/gLdbDJ8n7m/bJgfZZPc/KY01DGk0aAGoJ5qiZ+oX uSo/2he1CUZKNCfi1BjCrMRv6HERKYLMAXwRLPyDpnq3Dhtt2S5D2kKkJs4ZcFVL /FpnfTmotl4VSIL+C0ssAiVtHTHp5dJTu6hppFsQYoaMhsvVjLhyx/jHgFdOI5XI z3WrPWBY4GNawbDcWxRMUjNeZNrNJkMMolTjC7fD1ZNIkgld6CxKdbYJWn1kJqC0 t6bBdOqEc9cV0hJt/Nbo2lfP+56swSaR3B2uM0JIbPNDeC21EjNmqPABudM11jly Pg5m4/iFABbNi2/tCJTT+8ttXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH2iBuTR sbkiXLGAWRPIsPyTN2/FMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbUppa8OPxuanXWEWWgeFOmg4WR0PsfBuEOBCEl3BC/r9fL+GIbtbNgocPyIA zDlqwFgWShCzm2dsiq351skmjmoBlcB6oTJXgdTl7ZmUEFSZy9zIGxNu03+bMWXk FliycrmTr8i1d+F9RpTcNUP8Ra+BnHM01tyfGyVmnPg8KT6GcNwkIg+IO5FaNqYT WE97jaHFpFTPv6lgq6EqBXXECy8yMQ4BGQJcW5IIJhjsi2UYT+97zF+ir8r+FtNi tMWrxxc9YFFow4SQcH2PczXkwkuIaJ6PGoOZDVGdbUcWEFHMjJevY+3qtt9H8Ih5 9n141e8SVLvLAeFYdRy6Jdcnrg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:57 2026 by rpki-client