$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: iBo0Lpie6cRoeqIwpOsc6YnJXdnYOTwYhZ/E1uswBVg= Subject key identifier: FD:CA:C4:9E:EE:9B:AD:3C:D1:C2:64:AF:72:EA:53:0C:6E:9F:EA:FB Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0CD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0CCF Signing time: Sat 28 Feb 2026 18:25:53 +0000 Manifest this update: Sat 28 Feb 2026 18:25:52 +0000 Manifest next update: Sat 07 Mar 2026 18:25:52 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: cGFt6XE5TXFeFI7X5NHRnUj3wJpr+WxVr60y6UAIePc=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: f31uXjqb4DNcM+Zpb2Aaj4CME0IwegAYYNe/FOHZjWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3286 (0xcd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064, serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Feb 28 18:25:52 2026 GMT Not After : Mar 7 18:25:52 2026 GMT Subject: CN=69a33331-ac95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f3:1a:6c:af:f0:d8:0d:75:26:b8:bd:7e:05: c4:a0:c8:7f:6f:53:91:fb:24:a5:9f:cc:af:39:04: f3:31:15:a8:8d:ed:fa:c9:41:d2:22:ed:b9:29:f4: 6a:2b:29:bc:ec:ed:5a:a0:6b:77:87:dd:45:2e:e9: b0:ef:ea:09:5d:9e:e7:25:6b:2a:5d:70:a5:a4:b2: 10:93:04:ab:6c:66:6e:c3:a6:0c:9b:5e:d4:a2:fb: 2f:45:88:ed:cf:71:30:c2:49:0f:e1:cd:48:64:d7: 77:9e:f0:ab:b1:be:a9:0e:42:7b:f9:ce:c9:43:c3: 9d:77:7a:75:ce:89:1a:23:3b:c2:7e:4b:ef:5f:a5: 4c:01:ac:c1:98:da:6f:4c:d1:0a:04:9a:88:0b:21: 81:02:6f:5a:3f:e3:d5:2a:0c:01:c0:54:da:03:2a: f5:d1:35:b6:9e:ae:f3:00:80:b7:41:40:93:35:c3: f7:fd:4b:28:c3:d7:92:a9:7f:0f:e2:a9:1e:68:95: f9:70:97:85:a1:09:be:0a:62:0b:44:2a:52:aa:c7: 4e:b0:d5:87:c2:bb:15:7f:b9:10:19:8c:44:85:3c: cf:d7:65:5f:a1:a9:a2:33:47:11:ba:b7:fd:0c:d2: 24:d7:d4:f8:ac:97:b1:74:a7:95:50:de:65:5b:83: 18:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CA:C4:9E:EE:9B:AD:3C:D1:C2:64:AF:72:EA:53:0C:6E:9F:EA:FB X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:40:01:0a:07:e2:0b:76:33:73:c6:18:54:e5:39:69:90:37: 7d:ab:45:c3:5f:af:47:83:73:32:01:f3:00:ff:1e:fb:86:42: 28:99:44:33:66:ba:a6:73:9a:97:f2:ad:2b:97:65:27:d5:c2: 5a:a9:e0:f1:31:cc:b5:59:db:f2:88:17:72:0f:bd:e7:88:8c: 99:35:02:a0:44:fc:1c:30:cd:01:06:1b:43:07:9a:c1:9e:d2: 88:04:d9:c7:00:db:13:a1:72:2d:8e:b2:dd:6d:e3:2e:79:57: ee:09:97:71:8c:f9:eb:87:a0:90:39:10:01:3d:d9:ba:c2:bd: 02:ae:07:d3:60:9f:e1:7f:10:b5:93:58:26:a7:31:a7:1c:5f: 50:4a:fb:ce:19:2d:53:e9:fc:6a:36:c4:c3:ba:11:29:0a:42: f1:6d:f7:d6:cd:d8:39:3d:14:76:3e:5d:b8:f1:97:a5:1b:07: c9:4b:87:a8:ca:17:6c:47:15:cf:a0:94:80:0d:00:3f:38:ea: d7:57:68:c5:93:c3:4d:59:88:1f:69:20:eb:7e:f4:aa:d6:1c: 3b:a0:b1:ca:0c:61:5e:b8:cc:ed:19:37:7a:9c:9d:9b:23:3c: ca:1b:9e:26:d2:60:65:97:5e:2f:13:0b:2c:e1:e6:bd:2b:64: 3e:56:2c:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjYwMjI4MTgyNTUyWhcNMjYwMzA3MTgyNTUyWjAYMRYwFAYD VQQDDA02OWEzMzMzMS1hYzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPMabK/w2A11Jri9fgXEoMh/b1OR+ySln8yvOQTzMRWoje36yUHSIu25KfRq Kym87O1aoGt3h91FLumw7+oJXZ7nJWsqXXClpLIQkwSrbGZuw6YMm17UovsvRYjt z3EwwkkP4c1IZNd3nvCrsb6pDkJ7+c7JQ8Odd3p1zokaIzvCfkvvX6VMAazBmNpv TNEKBJqICyGBAm9aP+PVKgwBwFTaAyr10TW2nq7zAIC3QUCTNcP3/Usow9eSqX8P 4qkeaJX5cJeFoQm+CmILRCpSqsdOsNWHwrsVf7kQGYxEhTzP12VfoamiM0cRurf9 DNIk19T4rJexdKeVUN5lW4MYpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP3KxJ7u m6080cJkr3LqUwxun+r7MB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC0ABCgfiC3Yzc8YYVOU5aZA3fatFw1+vR4NzMgHzAP8e+4ZCKJlEM2a6pnOa l/KtK5dlJ9XCWqng8THMtVnb8ogXcg+954iMmTUCoET8HDDNAQYbQweawZ7SiATZ xwDbE6FyLY6y3W3jLnlX7gmXcYz564egkDkQAT3ZusK9Aq4H02Cf4X8QtZNYJqcx pxxfUEr7zhktU+n8ajbEw7oRKQpC8W331s3YOT0Udj5duPGXpRsHyUuHqMoXbEcV z6CUgA0APzjq11doxZPDTVmIH2kg6370qtYcO6CxygxhXrjM7Rk3epydmyM8yhue JtJgZZdeLxMLLOHmvStkPlYsVw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:41:34 2026 by rpki-client