$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft File: PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft (raw, json) Hash identifier: VFX57dVywXxyTx6NURKyWcJ3I3uQp9c7BDP4VQUuAqQ= Subject key identifier: 58:1D:9A:78:FE:1D:65:57:1D:96:98:42:85:F7:6B:F2:9F:09:CE:37 Authority key identifier: 3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 Certificate issuer: /CN=A9173FAC/serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft Manifest number: AA Signing time: Sun 01 Mar 2026 08:28:36 +0000 Manifest this update: Sun 01 Mar 2026 08:28:34 +0000 Manifest next update: Sun 08 Mar 2026 08:28:34 +0000 Files and hashes: 1: PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl (hash: MXJtbXpDxSfEl07T8Boc9yVviTrc2Mac6Wa0zFAu9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=3F1A8EA3D2ADC6ECB2360E0C376CE559B9FF71F2 Validity Not Before: Mar 1 08:28:34 2026 GMT Not After : Mar 8 08:28:34 2026 GMT Subject: CN=69a3f8b3-d672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:8f:e7:7d:44:88:55:09:9d:35:e8:36:ca: 7d:de:a4:38:d6:ec:47:98:17:7f:b6:70:05:e4:b7: d9:b3:5f:77:09:5b:48:d3:65:9c:01:b6:4f:fd:ee: f3:84:22:90:ca:d0:8e:25:82:0f:b2:69:27:1d:bc: c3:ca:a8:61:8d:d1:62:5e:63:ef:d6:51:9c:44:ce: ff:60:7a:96:74:46:fb:56:c1:62:9a:6e:03:ca:45: 32:51:cd:c0:f6:c7:22:78:ed:14:d4:ef:90:12:3f: ad:e0:14:39:d9:9b:2f:d1:4d:4d:08:5b:2c:56:b4: 1a:e8:47:38:b3:bb:a1:b9:62:ca:7e:6b:98:7d:93: c7:d0:c6:de:ba:02:eb:81:e5:bb:3f:93:27:6d:ce: a8:c9:fa:47:30:54:dd:c5:66:43:87:ea:93:17:fb: 85:47:0c:ee:0d:28:10:a7:28:49:53:b8:2a:53:75: 23:df:2a:52:c3:4d:a0:51:54:8d:07:b7:a2:42:b5: 73:9f:c1:d7:d9:0d:d6:b7:06:e8:1f:73:2c:25:66: 2c:71:bd:5d:9a:a2:b6:b3:cf:46:74:a0:97:e7:08: bd:d8:91:3b:e1:67:b3:8d:d7:8b:7d:39:02:d9:ac: 14:3f:e6:79:f5:fb:9d:93:2b:df:65:c7:ea:5c:91: 23:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1D:9A:78:FE:1D:65:57:1D:96:98:42:85:F7:6B:F2:9F:09:CE:37 X509v3 Authority Key Identifier: keyid:3F:1A:8E:A3:D2:AD:C6:EC:B2:36:0E:0C:37:6C:E5:59:B9:FF:71:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxqOo9KtxuyyNg4MN2zlWbn_cfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/B8F5C76A101811F080BCC348C4F9AE02/PxqOo9KtxuyyNg4MN2zlWbn_cfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:40:85:2f:9d:67:fb:9c:e5:86:e6:c4:74:bb:d4:7b:2d:ac: 3d:f5:76:60:cc:0d:0c:04:80:98:dd:12:79:15:a0:1f:12:7a: 0f:1c:19:67:13:1d:fd:59:21:21:90:01:22:7b:34:76:ad:d5: 3f:f5:9b:5d:61:44:ba:51:8b:a0:bc:c6:7e:b2:f6:76:54:0f: 99:16:a9:ce:71:0d:9e:e4:25:6e:cb:8d:f4:67:08:2f:42:04: c4:6d:aa:bf:32:35:2a:db:4b:e9:c0:8f:9b:90:b2:28:5e:eb: 03:db:e8:e3:20:91:5c:14:43:5a:14:ee:87:e7:45:c1:67:32: 47:22:c0:74:12:25:b0:eb:10:f7:e0:04:b3:6c:5b:74:b1:ca: 2c:7f:53:08:be:75:b3:61:8b:b2:54:71:47:0e:d5:ff:ed:43: c2:57:e9:9d:ca:4e:7d:9c:20:0c:e1:fe:5d:06:71:8e:9a:d0: e3:67:c6:07:b0:2b:96:ee:2a:4a:a8:97:a5:96:fe:27:8f:95: 74:0e:33:0b:92:d5:28:d4:62:40:aa:21:67:fe:d1:0e:27:10: d1:16:a5:b0:e7:96:ff:33:c7:a9:67:88:05:b6:ab:f8:5e:22: 83:ef:87:b7:06:52:e9:ce:01:d6:bd:47:53:d7:5e:15:f8:c6: fe:2c:f9:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGQUMxMTAvBgNVBAUTKDNGMUE4RUEzRDJBREM2RUNCMjM2MEUwQzM3NkNFNTU5 QjlGRjcxRjIwHhcNMjYwMzAxMDgyODM0WhcNMjYwMzA4MDgyODM0WjAYMRYwFAYD VQQDEw02OWEzZjhiMy1kNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMyP531EiFUJnTXoNsp93qQ41uxHmBd/tnAF5LfZs193CVtI02WcAbZP/e7z hCKQytCOJYIPsmknHbzDyqhhjdFiXmPv1lGcRM7/YHqWdEb7VsFimm4DykUyUc3A 9scieO0U1O+QEj+t4BQ52Zsv0U1NCFssVrQa6Ec4s7uhuWLKfmuYfZPH0MbeugLr geW7P5Mnbc6oyfpHMFTdxWZDh+qTF/uFRwzuDSgQpyhJU7gqU3Uj3ypSw02gUVSN B7eiQrVzn8HX2Q3WtwboH3MsJWYscb1dmqK2s89GdKCX5wi92JE74WezjdeLfTkC 2awUP+Z59fudkyvfZcfqXJEj3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFgdmnj+ HWVXHZaYQoX3a/KfCc43MB8GA1UdIwQYMBaAFD8ajqPSrcbssjYODDds5Vm5/3Hy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0ZBQy9COEY1Qzc2QTEw MTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9QeHFPbzlLdHh1eXlOZzRNTjJ6bFdibl9j ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B4cU9vOUt0eHV5eU5nNE1OMnpsV2JuX2NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0ZBQy9COEY1Qzc2QTEwMTgxMUYwODBCQ0MzNDhDNEY5QUUwMi9QeHFPbzlLdHh1 eXlOZzRNTjJ6bFdibl9jZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsECFL51n+5zlhubEdLvUey2sPfV2YMwNDASAmN0SeRWgHxJ6DxwZZxMd/Vkh IZABIns0dq3VP/WbXWFEulGLoLzGfrL2dlQPmRapznENnuQlbsuN9GcIL0IExG2q vzI1KttL6cCPm5CyKF7rA9vo4yCRXBRDWhTuh+dFwWcyRyLAdBIlsOsQ9+AEs2xb dLHKLH9TCL51s2GLslRxRw7V/+1DwlfpncpOfZwgDOH+XQZxjprQ42fGB7Arlu4q SqiXpZb+J4+VdA4zC5LVKNRiQKohZ/7RDicQ0RalsOeW/zPHqWeIBbar+F4ig++H twZS6c4B1r1HU9deFfjG/iz5Og== -----END CERTIFICATE-----Generated at Sun Mar 1 21:02:13 2026 by rpki-client