$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: Q61tGRjygHp+MX2g+ulaMXx0Abh/d3AiVBfC2tmBQVs= Subject key identifier: D5:B5:FE:EB:3F:DF:04:AD:E5:70:B3:F6:91:04:8C:BC:F7:25:6B:AE Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0229 Signing time: Mon 02 Mar 2026 01:06:52 +0000 Manifest this update: Mon 02 Mar 2026 01:06:51 +0000 Manifest next update: Mon 09 Mar 2026 01:06:51 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: +hk9KWu0k6K3yADRUh87wio5Bk7Z+IrXsNLHXYtcKbw=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: +Q8so6nPeyC4+0wToagHFxd2QuGw1JN2hZ9q0eoOoGI=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: QT/TXvlvue3wQ8fY3ahassV2Ju9ScJLofOE2xUpi/GI=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: TpOlOMkvGiREuIISjlFyTVVAuVCoOvxydJx/Up02XYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Mar 2 01:06:51 2026 GMT Not After : Mar 9 01:06:51 2026 GMT Subject: CN=69a4e2ac-d25f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:f9:83:cf:9d:ee:85:d6:45:dd:ac:13:c9: 7f:44:da:38:e3:5f:90:f5:af:59:89:ae:c5:a9:1e: f9:6a:59:ca:50:08:78:13:08:7b:75:52:5b:61:eb: 3a:5a:2c:48:eb:f7:d5:38:ac:e4:b9:12:23:17:98: ae:b6:82:dc:45:08:dc:2b:ba:1d:cb:1e:71:2c:cc: 67:a5:f1:96:ac:64:3e:2c:8c:e2:5f:30:03:86:28: c1:79:63:a9:a2:1e:ba:9f:1e:15:63:ad:34:b6:36: 08:46:fe:7e:2e:ca:1f:1d:44:77:65:83:f4:48:40: a2:52:01:d1:db:70:6a:a3:77:4b:1b:2a:59:b7:a2: 93:a8:e6:46:50:7a:99:0d:6a:66:15:a1:d0:26:d5: 40:6e:d5:01:e2:d7:94:ef:c3:ed:a8:66:99:77:ba: 90:2b:31:ee:16:cb:4a:8d:e1:d1:d2:b6:6f:a0:64: dc:77:74:00:b3:ac:31:88:17:98:e5:d2:e6:49:d2: 19:92:be:2c:9b:12:65:cd:85:0d:ba:20:c4:fb:84: b1:fd:1a:f8:86:26:44:3b:61:3f:82:7c:1b:1c:ee: 9f:42:eb:b3:b1:65:f3:b3:4f:7c:af:17:6e:af:6f: ea:af:87:42:9b:66:d8:73:4f:3f:2d:a6:8e:0b:d8: 3b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B5:FE:EB:3F:DF:04:AD:E5:70:B3:F6:91:04:8C:BC:F7:25:6B:AE X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:db:db:21:0a:d9:49:97:b4:37:19:4f:af:38:81:48:d7:6e: 65:5f:f6:ce:24:42:38:4f:6d:27:82:72:c0:f6:99:af:a3:b8: 66:22:a3:f8:b1:11:97:2b:dd:e5:61:b8:e0:70:cf:57:73:ec: 16:e6:01:ca:7e:6e:7a:e7:9d:88:2a:3c:0f:26:61:e5:38:50: e1:33:53:2a:4d:85:e0:a8:57:c7:1b:d9:2a:18:be:fb:87:20: 2e:ad:ee:f3:bf:4a:b3:ad:23:05:bf:d2:eb:7a:31:b9:14:a7: 51:7b:3f:58:9f:e0:07:f2:d7:13:f9:5a:dc:70:60:d2:4c:3a: 6e:0d:3f:89:8a:86:b7:f8:bb:d4:3a:28:66:e9:d8:e1:d9:a8: 58:99:98:fc:ae:90:13:87:dd:cb:77:c7:bb:50:2a:9c:78:5f: b7:30:15:58:2f:f3:80:60:27:59:fb:1e:d6:f8:8d:a8:0b:0f: d7:72:24:4e:db:25:5e:9c:ac:17:85:14:fd:ad:f8:bb:03:fd: d5:17:cb:34:11:51:5d:37:ec:56:c5:12:86:26:33:a8:33:4e: 96:0f:97:7f:12:09:00:e8:fa:ba:66:5f:20:21:c3:00:f0:f5: a0:bb:be:ec:82:17:3e:6a:88:16:ca:c7:00:7c:b8:e0:ca:99: 07:21:f5:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwMzAyMDEwNjUxWhcNMjYwMzA5MDEwNjUxWjAYMRYwFAYD VQQDEw02OWE0ZTJhYy1kMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuG75g8+d7oXWRd2sE8l/RNo441+Q9a9Zia7FqR75alnKUAh4Ewh7dVJbYes6 WixI6/fVOKzkuRIjF5iutoLcRQjcK7odyx5xLMxnpfGWrGQ+LIziXzADhijBeWOp oh66nx4VY600tjYIRv5+LsofHUR3ZYP0SECiUgHR23Bqo3dLGypZt6KTqOZGUHqZ DWpmFaHQJtVAbtUB4teU78PtqGaZd7qQKzHuFstKjeHR0rZvoGTcd3QAs6wxiBeY 5dLmSdIZkr4smxJlzYUNuiDE+4Sx/Rr4hiZEO2E/gnwbHO6fQuuzsWXzs098rxdu r2/qr4dCm2bYc08/LaaOC9g7RQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNW1/us/ 3wSt5XCz9pEEjLz3JWuuMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc9vbIQrZSZe0NxlPrziBSNduZV/2ziRCOE9tJ4JywPaZr6O4ZiKj+LERlyvd 5WG44HDPV3PsFuYByn5ueuediCo8DyZh5ThQ4TNTKk2F4KhXxxvZKhi++4cgLq3u 879Ks60jBb/S63oxuRSnUXs/WJ/gB/LXE/la3HBg0kw6bg0/iYqGt/i71DooZunY 4dmoWJmY/K6QE4fdy3fHu1AqnHhftzAVWC/zgGAnWfse1viNqAsP13IkTtslXpys F4UU/a34uwP91RfLNBFRXTfsVsUShiYzqDNOlg+XfxIJAOj6umZfICHDAPD1oLu+ 7IIXPmqIFsrHAHy44MqZByH1JA== -----END CERTIFICATE-----Generated at Mon Mar 2 06:21:41 2026 by rpki-client