$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft File: tU4IRltUXO7x4uEAl3XZG6QStj0.mft (raw, json) Hash identifier: hJh/5Skr6A5FIdvx+r4fGq1l09j+NFFHCQmjCbd7ZV4= Subject key identifier: 86:D5:35:B4:EE:50:C3:41:D9:AE:3D:17:0C:34:1B:5C:23:35:1A:44 Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D Certificate issuer: /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft Manifest number: 4C Signing time: Sun 01 Mar 2026 09:44:44 +0000 Manifest this update: Sun 01 Mar 2026 09:44:43 +0000 Manifest next update: Sun 08 Mar 2026 09:44:43 +0000 Files and hashes: 1: tU4IRltUXO7x4uEAl3XZG6QStj0.crl (hash: 4O6s+ri2OnvvwKt2kaYxE8XhC6FNKNNFMMvmHMdfIEk=) 2: 5493E832AF1511F09DB9CB78C4F9AE02.roa (hash: 51gJn/VKwmKiqlKvZvK/GbzYFHcLoSwqmBRf31iipIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D Validity Not Before: Mar 1 09:44:43 2026 GMT Not After : Mar 8 09:44:43 2026 GMT Subject: CN=69a40a8c-b626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0d:b9:f2:b6:76:db:e6:26:b9:b6:9e:8c:f4: 7e:40:61:46:76:19:54:a7:83:55:47:30:3c:c0:39: 70:d7:53:c3:a1:ad:e3:ab:45:ed:8f:d8:f5:4f:1a: ab:06:b8:e5:84:c1:b1:be:92:4b:7d:09:2f:9b:4c: 16:c4:65:d0:c6:6b:a5:86:a1:13:5e:12:97:53:8b: 76:a0:24:2e:b6:3f:7b:d4:22:a6:23:9f:b6:19:93: 1a:2e:38:33:be:34:91:47:15:2f:61:bb:c1:fa:ea: 40:ef:b9:3d:d7:12:09:08:b8:94:a8:1e:14:00:d7: 5d:29:c3:1d:ab:0e:1e:ec:02:39:68:58:2c:04:2d: 49:2f:24:9b:4f:85:10:4b:a8:a7:a2:b4:93:ba:ae: 78:a5:cf:24:aa:ee:0b:2c:72:34:1a:23:b2:32:73: 9e:71:5f:2e:86:69:cb:54:ee:2e:43:05:24:0c:e5: 07:2b:bd:96:0d:03:89:37:cd:63:1b:8c:4c:2c:57: ef:aa:d5:bc:77:cb:25:b0:32:9c:7c:c6:71:85:80: 82:32:0a:e7:99:4b:8c:c0:bd:5f:ff:91:56:7b:57: 1e:f0:be:8a:be:05:b5:06:57:71:81:34:59:8f:69: 6b:3c:d5:84:4a:11:9e:ec:bf:95:ad:ec:99:fd:2d: 5f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D5:35:B4:EE:50:C3:41:D9:AE:3D:17:0C:34:1B:5C:23:35:1A:44 X509v3 Authority Key Identifier: keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:c3:9c:58:46:13:85:b4:19:32:39:75:c4:92:ce:05:3e:73: 21:6c:22:64:fb:97:b0:f6:00:59:97:b7:7d:ae:66:05:ca:e9: e5:f0:05:5b:36:85:64:32:b5:bc:ce:c4:c8:ac:03:63:0e:5f: 7e:02:21:dd:b3:d7:0f:71:1d:dd:b9:cb:5d:92:9c:41:b6:5b: 62:49:e8:3c:60:c0:19:b9:6d:ab:55:d1:0a:20:dd:55:5c:c4: 2a:46:a5:14:e4:97:ba:e3:31:0d:88:6c:31:f6:6c:71:c3:aa: 32:a9:f5:f5:44:38:be:98:d7:de:15:8c:4e:ef:56:d8:34:7a: 11:6b:4a:d9:25:5c:76:ce:74:66:be:11:b4:3e:cf:67:a2:00: ef:ee:d9:4a:db:a0:ac:f7:20:ac:d3:f1:e1:ae:29:3a:17:3f: 4b:a6:f2:6e:37:af:c0:3c:42:db:89:99:e0:2a:dd:ea:35:44: 7d:10:46:73:7e:42:12:0f:ed:bf:16:70:96:fb:b9:6b:d8:84: 7f:cd:3d:97:c2:f3:52:3d:d0:91:bc:f9:7c:ef:13:bf:c7:bb: 29:eb:1f:8e:ce:5e:f5:f9:68:58:16:9c:27:38:4c:0c:3f:57: d8:49:29:ee:21:09:a7:34:5f:50:62:bc:c1:8c:95:a6:56:06: 3f:b0:de:52 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkI0NjExMC8GA1UEBRMoQjU0RTA4NDY1QjU0NUNFRUYxRTJFMTAwOTc3NUQ5MUJB NDEyQjYzRDAeFw0yNjAzMDEwOTQ0NDNaFw0yNjAzMDgwOTQ0NDNaMBgxFjAUBgNV BAMTDTY5YTQwYThjLWI2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtDbnytnbb5ia5tp6M9H5AYUZ2GVSng1VHMDzAOXDXU8OhreOrRe2P2PVPGqsG uOWEwbG+kkt9CS+bTBbEZdDGa6WGoRNeEpdTi3agJC62P3vUIqYjn7YZkxouODO+ NJFHFS9hu8H66kDvuT3XEgkIuJSoHhQA110pwx2rDh7sAjloWCwELUkvJJtPhRBL qKeitJO6rnilzySq7gsscjQaI7Iyc55xXy6GactU7i5DBSQM5QcrvZYNA4k3zWMb jEwsV++q1bx3yyWwMpx8xnGFgIIyCueZS4zAvV//kVZ7Vx7wvoq+BbUGV3GBNFmP aWs81YRKEZ7sv5Wt7Jn9LV/PAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUhtU1tO5Q w0HZrj0XDDQbXCM1GkQwHwYDVR0jBBgwFoAUtU4IRltUXO7x4uEAl3XZG6QStj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQjQ2LzA4ODcwMUI4QUJC NDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3Rq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFU0SVJsdFVYTzd4NHVFQWwzWFpHNlFTdGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QjQ2LzA4ODcwMUI4QUJCNDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83 eDR1RUFsM1haRzZRU3RqMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQDhw5xYRhOFtBkyOXXEks4FPnMhbCJk+5ew9gBZl7d9rmYFyunl8AVbNoVkMrW8 zsTIrANjDl9+AiHds9cPcR3ductdkpxBtltiSeg8YMAZuW2rVdEKIN1VXMQqRqUU 5Je64zENiGwx9mxxw6oyqfX1RDi+mNfeFYxO71bYNHoRa0rZJVx2znRmvhG0Ps9n ogDv7tlK26Cs9yCs0/Hhrik6Fz9LpvJuN6/APELbiZngKt3qNUR9EEZzfkISD+2/ FnCW+7lr2IR/zT2XwvNSPdCRvPl87xO/x7sp6x+Ozl71+WhYFpwnOEwMP1fYSSnu IQmnNF9QYrzBjJWmVgY/sN5S -----END CERTIFICATE-----Generated at Sun Mar 1 20:27:27 2026 by rpki-client