$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: lvoETxit7GsuYUwaJf6N60aSvU+UogAM7ygwpjbND9c= Subject key identifier: 0E:33:4A:21:D5:B5:D6:C7:33:A6:7D:1D:AB:E0:59:BB:EF:4C:67:66 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0521 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0518 Signing time: Mon 02 Mar 2026 03:00:22 +0000 Manifest this update: Mon 02 Mar 2026 03:00:21 +0000 Manifest next update: Mon 09 Mar 2026 03:00:21 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: bM+9beXleLnJkd5xdGj3Ns/zUj5Gf1biOZQsWuIQKF8=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qNa/ixDv36e5kqpERNnc4v0Oo6RCIea2nOfSeRqLfMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Mar 2 03:00:21 2026 GMT Not After : Mar 9 03:00:21 2026 GMT Subject: CN=69a4fd46-2a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:aa:c9:7f:98:a8:3b:78:f1:2a:4d:48:53: f8:cf:f5:11:1b:6c:48:74:e8:a5:26:07:c7:60:2a: e4:34:41:93:b5:8e:86:c2:b3:b9:a2:6e:be:09:fc: 7b:6c:de:77:81:d4:b5:87:9b:36:63:f6:36:63:57: a0:06:e0:70:c6:47:85:b2:0c:ef:0e:0c:31:fd:9f: aa:44:63:4c:5b:bb:1e:f3:f4:7f:dc:2f:46:02:b6: a6:89:17:b1:66:e9:ec:a1:24:01:44:0d:88:85:9a: dc:a1:3c:37:7f:82:2e:ae:93:fb:80:a6:26:49:f4: 27:b6:ff:7b:0c:c5:2a:d0:f4:fc:28:c4:a9:b3:2a: dc:ac:52:20:65:34:84:49:9c:93:3c:dd:86:3c:c7: 02:5d:cc:ce:1a:f2:20:f8:7b:10:36:57:39:8c:de: 25:31:16:42:fc:88:aa:f7:6e:b3:be:9d:96:b9:c0: 49:1c:77:d4:31:0e:ee:39:af:f9:08:55:99:14:9b: 29:b0:02:3b:f9:f9:b6:da:c2:f4:7f:50:83:2b:4d: 5b:63:c0:d1:58:dd:9b:5c:71:10:58:ad:85:37:6b: 72:f5:f6:89:1a:bb:d0:84:5b:c0:1d:3b:23:31:2b: 4b:24:27:42:6e:12:7d:b7:06:e2:7c:e3:6e:ef:47: be:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:33:4A:21:D5:B5:D6:C7:33:A6:7D:1D:AB:E0:59:BB:EF:4C:67:66 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:73:45:35:fb:40:03:8b:af:38:6a:24:88:1d:d4:8e:82:4c: df:30:b9:cd:df:63:d6:84:5c:d6:bd:d8:6a:68:34:50:61:26: a7:a7:22:31:3f:b8:6e:f6:2b:98:10:2e:51:a9:45:79:d1:ed: 3e:50:16:fd:04:9d:f8:c3:c6:01:8c:d6:6b:39:56:24:f5:1e: b7:18:53:43:c6:b1:72:ba:4e:d3:76:10:14:d9:ce:2a:fa:b7: b7:37:10:28:ac:12:cf:e8:26:a0:d4:15:0e:32:3d:20:fb:a4: d6:d4:f6:a9:f1:e9:70:42:9e:ea:ed:1b:9d:f7:2f:4c:05:df: b6:e4:cc:89:10:22:57:35:2b:86:5a:16:23:09:b0:d3:39:c8: 59:f2:57:b0:d7:9e:2b:ed:f6:b2:5a:81:38:66:6d:16:cc:50: e3:64:e1:26:91:83:0e:24:2d:b6:cf:e4:60:7a:bb:f2:fe:e4: 58:0f:06:81:e1:7a:39:3b:e2:29:fc:b5:6a:eb:c7:24:70:f0: b9:70:5a:73:32:53:63:6a:b3:ff:42:58:37:2a:b9:ef:3e:c8: c2:03:7e:fe:d6:ce:06:ad:06:24:9d:ee:a8:19:55:88:61:1c: 59:3e:84:cb:17:d7:6d:64:6b:ad:7b:f7:40:3a:db:ff:44:30: 4d:43:c9:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjYwMzAyMDMwMDIxWhcNMjYwMzA5MDMwMDIxWjAYMRYwFAYD VQQDEw02OWE0ZmQ0Ni0yYTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr+qyX+YqDt48SpNSFP4z/URG2xIdOilJgfHYCrkNEGTtY6GwrO5om6+Cfx7 bN53gdS1h5s2Y/Y2Y1egBuBwxkeFsgzvDgwx/Z+qRGNMW7se8/R/3C9GAramiRex ZunsoSQBRA2IhZrcoTw3f4IurpP7gKYmSfQntv97DMUq0PT8KMSpsyrcrFIgZTSE SZyTPN2GPMcCXczOGvIg+HsQNlc5jN4lMRZC/Iiq926zvp2WucBJHHfUMQ7uOa/5 CFWZFJspsAI7+fm22sL0f1CDK01bY8DRWN2bXHEQWK2FN2ty9faJGrvQhFvAHTsj MStLJCdCbhJ9twbifONu70e+cwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA4zSiHV tdbHM6Z9HavgWbvvTGdmMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANXNFNftAA4uvOGokiB3UjoJM3zC5zd9j1oRc1r3Yamg0UGEmp6ciMT+4bvYr mBAuUalFedHtPlAW/QSd+MPGAYzWazlWJPUetxhTQ8axcrpO03YQFNnOKvq3tzcQ KKwSz+gmoNQVDjI9IPuk1tT2qfHpcEKe6u0bnfcvTAXftuTMiRAiVzUrhloWIwmw 0znIWfJXsNeeK+32slqBOGZtFsxQ42ThJpGDDiQtts/kYHq78v7kWA8GgeF6OTvi Kfy1auvHJHDwuXBaczJTY2qz/0JYNyq57z7IwgN+/tbOBq0GJJ3uqBlViGEcWT6E yxfXbWRrrXv3QDrb/0QwTUPJiQ== -----END CERTIFICATE-----Generated at Mon Mar 2 06:53:14 2026 by rpki-client