$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: DI59D1TldSb0urFVwhfEu9R25nebN2p0u0sW2q6vxJI= Subject key identifier: A8:B2:DF:3A:04:48:4A:A1:7B:71:8D:8E:33:CB:69:57:15:1C:29:9A Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 0120 Signing time: Mon 02 Mar 2026 02:56:40 +0000 Manifest this update: Mon 02 Mar 2026 02:56:39 +0000 Manifest next update: Mon 09 Mar 2026 02:56:39 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: 3AVdFM9kX53rcC/gJaPQlG5qgTG3jfYwTXLASrLHv9o=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: GoBUmsaixA+94AMiq1K0M2Do/VJgCC/YQV6fr/kdH1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Mar 2 02:56:39 2026 GMT Not After : Mar 9 02:56:39 2026 GMT Subject: CN=69a4fc68-958d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:65:48:10:18:cf:78:68:42:d6:ba:99:7d:6a: a8:18:ff:8d:15:f4:82:75:5e:a3:a1:00:5d:8e:ef: 25:85:b2:c4:72:fd:9f:e1:57:be:ee:08:18:29:cd: f6:9e:1b:68:30:de:56:5e:c9:40:45:aa:34:fd:a7: f3:68:7f:de:10:5d:1a:d2:c4:84:34:01:2c:6f:e7: b4:08:36:24:bb:1e:a2:b6:82:f6:a0:0c:a6:72:d7: 9d:da:3e:c0:1e:ab:c2:04:14:1c:58:fb:37:c3:44: da:3f:82:7a:24:42:25:9c:8f:3b:3c:bb:89:58:f5: 8b:32:25:91:6b:29:f9:3f:64:81:b9:72:52:58:d9: 40:48:98:9d:ea:e0:63:da:03:c9:99:00:fb:81:24: fc:21:1e:af:b2:6c:ae:f0:0c:bc:2c:84:5d:e4:73: e2:5a:b6:3c:56:0d:6f:cd:d7:e7:eb:10:c3:30:f4: 52:85:eb:78:55:48:50:4b:ba:91:6c:4b:eb:02:00: f1:d0:5c:81:44:49:82:5f:d8:16:4b:fa:f7:c7:4b: bb:be:66:25:b0:ca:c1:54:82:60:1e:aa:d5:f2:bc: 85:1e:07:45:f0:80:ba:dd:b1:d5:a3:86:92:9f:0e: 22:e8:05:8b:9c:0c:3e:5d:f2:08:a5:90:c2:1c:eb: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B2:DF:3A:04:48:4A:A1:7B:71:8D:8E:33:CB:69:57:15:1C:29:9A X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:f2:c1:38:98:4b:71:70:63:ff:18:09:9b:0a:e7:93:e2:04: f4:09:6f:d2:5f:65:a9:12:2c:87:34:59:ab:39:c0:1c:26:36: df:99:fa:ce:14:e2:4d:7b:ed:b6:45:09:9b:5f:36:14:3b:f7: 3c:03:8d:7a:1e:18:73:a0:6d:08:ed:b3:8e:7d:7c:42:c6:ff: 52:95:f9:3c:86:f6:57:46:5f:af:ca:99:97:5e:d5:ff:e1:b4: 1a:3c:d1:83:1d:5a:38:93:e0:20:5a:8f:e7:d5:75:95:cd:74: 52:1c:d1:42:63:20:20:a2:49:f6:8d:14:bd:e0:00:24:bd:a6: ea:c6:31:dd:a9:37:ba:90:a1:17:55:de:49:7c:44:23:cb:81: 36:43:5c:f3:e6:7e:a4:d1:84:7e:df:18:86:50:5e:3d:d5:0a: 1b:10:24:27:89:68:67:0c:cb:19:62:e3:26:9c:3f:7d:5c:dd: 57:76:b9:a9:1a:c3:fb:a0:d0:49:f8:8a:bc:09:61:75:ec:ec: d0:7d:00:f4:37:58:94:5c:a2:cf:75:89:0f:43:92:af:83:dd: 6b:36:34:84:c1:46:86:1a:89:74:be:e2:8b:2f:d7:12:ba:05: 51:1d:ab:d7:47:ae:55:44:cc:9d:e4:af:f2:5a:03:d4:21:40: 83:d4:d6:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjYwMzAyMDI1NjM5WhcNMjYwMzA5MDI1NjM5WjAYMRYwFAYD VQQDEw02OWE0ZmM2OC05NThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2VIEBjPeGhC1rqZfWqoGP+NFfSCdV6joQBdju8lhbLEcv2f4Ve+7ggYKc32 nhtoMN5WXslARao0/afzaH/eEF0a0sSENAEsb+e0CDYkux6itoL2oAymcted2j7A HqvCBBQcWPs3w0TaP4J6JEIlnI87PLuJWPWLMiWRayn5P2SBuXJSWNlASJid6uBj 2gPJmQD7gST8IR6vsmyu8Ay8LIRd5HPiWrY8Vg1vzdfn6xDDMPRShet4VUhQS7qR bEvrAgDx0FyBREmCX9gWS/r3x0u7vmYlsMrBVIJgHqrV8ryFHgdF8IC63bHVo4aS nw4i6AWLnAw+XfIIpZDCHOugRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKiy3zoE SEqhe3GNjjPLaVcVHCmaMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkfLBOJhLcXBj/xgJmwrnk+IE9Alv0l9lqRIshzRZqznAHCY235n6zhTiTXvt tkUJm182FDv3PAONeh4Yc6BtCO2zjn18Qsb/UpX5PIb2V0Zfr8qZl17V/+G0GjzR gx1aOJPgIFqP59V1lc10UhzRQmMgIKJJ9o0UveAAJL2m6sYx3ak3upChF1XeSXxE I8uBNkNc8+Z+pNGEft8YhlBePdUKGxAkJ4loZwzLGWLjJpw/fVzdV3a5qRrD+6DQ SfiKvAlhdezs0H0A9DdYlFyiz3WJD0OSr4PdazY0hMFGhhqJdL7iiy/XEroFUR2r 10euVUTMneSv8loD1CFAg9TWzQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:19:01 2026 by rpki-client