$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: L+oCm4FG64bzd1zQFrRxIoAOQwVgJKXoBmb6wSE3jjg= Subject key identifier: FC:FA:37:B9:00:B0:B1:6A:EB:7F:BB:63:B7:8D:6D:46:A8:FC:CA:23 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C99 Signing time: Mon 02 Mar 2026 02:55:33 +0000 Manifest this update: Mon 02 Mar 2026 02:55:31 +0000 Manifest next update: Mon 09 Mar 2026 02:55:31 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: DBEOnA3QMUaPO4A0nTKBmVg8oZ9DB2VqKIej0PS39gQ=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: 4GtPeohLS8OTUPDc8RgozS35ewcE3lUXQAukx2eqQRw=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: pUo1M6Sm4lp9c2XrgF+LDSj3mLXP2pG6wm3MhRuMa6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Mar 2 02:55:31 2026 GMT Not After : Mar 9 02:55:31 2026 GMT Subject: CN=69a4fc25-5a23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:64:86:ba:09:bd:9a:c0:f8:ae:4a:77:fc: 18:fe:7a:17:da:3f:6b:cd:08:dc:38:0d:e2:3d:b0: 70:15:85:3c:3a:a9:57:d4:32:ad:86:2e:1a:f4:d0: ff:b0:fd:7d:ce:d5:e9:55:57:79:6a:c0:4f:35:fe: b0:1c:86:0e:09:b7:20:f5:66:61:62:18:45:db:84: 01:7c:cf:4d:61:a0:08:00:c1:d4:5d:6f:91:ed:8a: a1:0d:34:02:05:88:6c:09:6b:e0:67:27:47:0f:05: 01:7a:e7:bb:2b:ea:ea:29:8c:11:67:f1:f1:f9:eb: 67:76:65:ad:22:d4:a5:cf:da:96:d4:c6:dd:32:6a: b3:79:11:e2:99:4c:69:96:b6:82:29:4c:af:dd:a6: 7b:c2:ed:bc:b7:95:8b:fc:5a:bf:b4:5c:6a:9b:97: f1:80:48:b9:f4:02:a3:14:42:11:8a:24:e3:dd:d8: 3b:ec:99:67:58:b3:e6:22:20:f3:46:0c:1e:21:9f: 93:53:ee:40:92:6a:1d:b3:e7:25:40:ea:db:7f:ba: 99:2c:b4:33:7d:46:59:32:ef:5f:03:d0:84:aa:59: 04:c3:c2:f2:53:7a:98:da:f5:e9:82:70:f3:54:e8: d7:60:49:98:11:3c:56:2c:fe:2a:76:73:cb:71:f1: 0c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FA:37:B9:00:B0:B1:6A:EB:7F:BB:63:B7:8D:6D:46:A8:FC:CA:23 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:94:b3:b0:b6:c6:0a:2a:bc:ff:bb:e3:f7:cb:8f:3b:45:52: 92:64:a7:14:66:b2:d4:21:2e:8a:86:de:61:66:4f:21:ae:97: 66:a6:b4:bf:af:f8:4b:5e:eb:15:16:18:16:da:a1:08:76:71: 3f:ed:97:9e:2c:38:59:2f:63:55:43:65:33:9e:22:ba:1d:7b: 4c:1f:66:bf:f6:8c:3f:42:91:7a:de:1f:40:11:01:28:48:8e: 48:97:64:26:5e:ed:f8:02:bf:3b:41:e8:46:aa:b9:3e:fc:42: 3b:58:5a:29:b6:e1:41:dc:dd:2f:ff:9a:50:8c:76:a7:3d:78: e2:99:26:56:4e:32:09:3c:9e:0f:30:0d:4d:d7:8a:46:9b:96: 47:4b:88:ae:37:07:c4:ea:90:88:df:3d:e7:35:55:63:fa:1a: 5c:5b:21:9a:e6:1b:47:94:14:c4:bd:70:6f:2f:44:4b:ab:79: 0d:51:da:15:57:e1:76:17:5f:90:dd:69:d7:b8:d8:08:de:32: 6a:b0:7a:45:50:d0:dc:75:b7:3b:25:89:31:f9:82:46:d4:cf: 7f:0e:34:1f:ac:9d:a9:38:1e:b1:63:02:01:d2:19:99:7f:41: 3f:97:6e:73:b4:0d:b2:dd:ce:db:d4:9c:11:f9:e4:ab:63:db: f1:64:06:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwMzAyMDI1NTMxWhcNMjYwMzA5MDI1NTMxWjAYMRYwFAYD VQQDEw02OWE0ZmMyNS01YTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBhkhroJvZrA+K5Kd/wY/noX2j9rzQjcOA3iPbBwFYU8OqlX1DKthi4a9ND/ sP19ztXpVVd5asBPNf6wHIYOCbcg9WZhYhhF24QBfM9NYaAIAMHUXW+R7YqhDTQC BYhsCWvgZydHDwUBeue7K+rqKYwRZ/Hx+etndmWtItSlz9qW1MbdMmqzeRHimUxp lraCKUyv3aZ7wu28t5WL/Fq/tFxqm5fxgEi59AKjFEIRiiTj3dg77JlnWLPmIiDz RgweIZ+TU+5Akmods+clQOrbf7qZLLQzfUZZMu9fA9CEqlkEw8LyU3qY2vXpgnDz VOjXYEmYETxWLP4qdnPLcfEMfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPz6N7kA sLFq63+7Y7eNbUao/MojMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKJSzsLbGCiq8/7vj98uPO0VSkmSnFGay1CEuiobeYWZPIa6XZqa0v6/4S17r FRYYFtqhCHZxP+2Xniw4WS9jVUNlM54iuh17TB9mv/aMP0KRet4fQBEBKEiOSJdk Jl7t+AK/O0HoRqq5PvxCO1haKbbhQdzdL/+aUIx2pz144pkmVk4yCTyeDzANTdeK RpuWR0uIrjcHxOqQiN895zVVY/oaXFshmuYbR5QUxL1wby9ES6t5DVHaFVfhdhdf kN1p17jYCN4yarB6RVDQ3HW3OyWJMfmCRtTPfw40H6ydqTgesWMCAdIZmX9BP5du c7QNst3O29ScEfnkq2Pb8WQGQQ== -----END CERTIFICATE-----Generated at Mon Mar 2 10:17:51 2026 by rpki-client