$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: 7ihL5Z9eML+YBl7zMq0gEkLfnjCQgVEGfAUzptoVxy8= Subject key identifier: A3:B3:5C:D1:23:DB:4A:84:D9:68:FD:DA:D3:D4:C4:86:0F:A6:0E:F6 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 019A Signing time: Sun 01 Mar 2026 23:58:49 +0000 Manifest this update: Sun 01 Mar 2026 23:58:47 +0000 Manifest next update: Sun 08 Mar 2026 23:58:47 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: 8TofzWMYm921e0I7afjKv8WK1MvitazjgiII30tJ1pw=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Mar 1 23:58:47 2026 GMT Not After : Mar 8 23:58:47 2026 GMT Subject: CN=69a4d2b8-ff4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8d:9f:f3:6a:02:50:ea:80:83:0d:57:82:94: a1:13:c3:b4:14:d5:1c:c0:e9:8b:ac:57:e9:23:3f: 47:d2:a4:a6:c1:89:56:af:17:04:2f:90:04:99:f5: 79:42:20:e1:55:94:30:52:d6:8f:6c:c8:55:f6:f4: 8f:ed:7d:9b:5e:c6:0c:0b:c4:b4:53:ce:42:56:8f: de:c0:de:17:8e:40:18:00:e2:9f:88:5b:ea:48:cb: 50:62:36:67:d1:a7:08:32:7f:9f:b0:7d:14:fe:0a: 5a:64:91:b7:1c:c3:cf:bf:9f:06:4c:1f:a1:11:e8: 8a:43:57:97:d9:59:b8:57:46:87:b0:b2:a7:f5:76: 68:3c:31:b8:80:69:f0:39:57:fc:64:65:83:fa:1b: 29:d8:0e:a8:eb:6d:91:85:1d:87:25:b4:8d:33:4f: 72:ef:dd:04:d9:d1:39:9f:42:1a:9b:28:86:8a:d4: e5:c1:d9:12:8a:7f:b7:5c:04:0c:66:bd:31:50:9f: d2:78:98:b9:28:b1:0f:c4:44:3c:9e:c5:f6:0e:4a: 4c:53:60:39:7d:aa:6f:35:ce:99:b8:b2:82:98:50: 4a:c6:bf:ec:c9:ab:05:f6:81:17:a8:60:bf:be:c9: 99:68:37:b4:f4:10:92:1d:64:88:2b:fe:c4:95:84: 9e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B3:5C:D1:23:DB:4A:84:D9:68:FD:DA:D3:D4:C4:86:0F:A6:0E:F6 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:b9:98:43:a1:3d:14:f6:9a:66:cb:84:c5:74:29:e6:5a:e8: 3a:41:87:8c:81:15:85:fa:b5:0e:39:2d:f3:c5:bf:1f:e6:6f: c8:d0:5e:c0:cf:2b:b1:8b:92:a9:3b:37:9f:95:cf:dc:8f:b3: 4f:d7:09:58:86:44:e1:02:1c:d1:dc:27:71:39:9a:bd:bc:48: 66:7b:49:12:d3:3f:9b:13:ae:4a:90:73:11:bd:bd:21:95:b5: c4:8a:83:2f:b2:a0:59:2d:11:66:68:4d:20:bc:2a:d8:67:43: 8d:ee:45:bd:3e:28:30:87:65:ab:4f:bf:cb:79:e3:7b:70:f2: 80:25:79:df:e3:df:56:5d:9f:fd:0a:71:ad:07:98:47:08:f2: 07:65:1c:57:d5:f0:f1:41:5b:32:ec:21:d3:12:79:81:3b:01: c5:73:5a:43:87:1e:ea:bc:c8:41:62:d4:ca:d9:3a:44:83:0f: 94:c2:42:1c:03:2e:5d:e6:29:8b:84:b6:4a:c5:32:46:14:6f: 00:70:54:3d:49:ca:cd:5a:75:4f:cf:65:d2:d8:5e:db:5d:63: f3:76:c2:54:85:69:e9:fa:bd:21:3c:84:05:11:c6:f8:d1:be: 68:80:b3:fb:0c:5e:8c:e8:c2:f7:f3:c1:48:2d:ef:4c:82:52: 07:24:bb:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwMzAxMjM1ODQ3WhcNMjYwMzA4MjM1ODQ3WjAYMRYwFAYD VQQDEw02OWE0ZDJiOC1mZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq42f82oCUOqAgw1XgpShE8O0FNUcwOmLrFfpIz9H0qSmwYlWrxcEL5AEmfV5 QiDhVZQwUtaPbMhV9vSP7X2bXsYMC8S0U85CVo/ewN4XjkAYAOKfiFvqSMtQYjZn 0acIMn+fsH0U/gpaZJG3HMPPv58GTB+hEeiKQ1eX2Vm4V0aHsLKn9XZoPDG4gGnw OVf8ZGWD+hsp2A6o622RhR2HJbSNM09y790E2dE5n0IamyiGitTlwdkSin+3XAQM Zr0xUJ/SeJi5KLEPxEQ8nsX2DkpMU2A5fapvNc6ZuLKCmFBKxr/syasF9oEXqGC/ vsmZaDe09BCSHWSIK/7ElYSe/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKOzXNEj 20qE2Wj92tPUxIYPpg72MB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAt7mYQ6E9FPaaZsuExXQp5lroOkGHjIEVhfq1Djkt88W/H+ZvyNBewM8rsYuS qTs3n5XP3I+zT9cJWIZE4QIc0dwncTmavbxIZntJEtM/mxOuSpBzEb29IZW1xIqD L7KgWS0RZmhNILwq2GdDje5FvT4oMIdlq0+/y3nje3DygCV53+PfVl2f/QpxrQeY RwjyB2UcV9Xw8UFbMuwh0xJ5gTsBxXNaQ4ce6rzIQWLUytk6RIMPlMJCHAMuXeYp i4S2SsUyRhRvAHBUPUnKzVp1T89l0the211j83bCVIVp6fq9ITyEBRHG+NG+aICz +wxejOjC9/PBSC3vTIJSByS7+g== -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:32 2026 by rpki-client