$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: R/Mh+haK7Hjp7dV0J2tabcS8m9pUJ5qnYbgLVlBis7w= Subject key identifier: F4:68:5A:5F:F5:4A:FE:03:2F:54:20:8B:62:91:41:C7:D7:13:35:35 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 1951 Signing time: Mon 02 Mar 2026 00:31:29 +0000 Manifest this update: Mon 02 Mar 2026 00:31:27 +0000 Manifest next update: Mon 09 Mar 2026 00:31:27 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: Bys0hktRLt0dm02K9vtOVH89GVfWpe/QIGJCD7d2cc4=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: FF3AIYHnenSUuGagUXAW6Yxw88+RVwJAWvdOH/bQVLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6501 (0x1965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Mar 2 00:31:27 2026 GMT Not After : Mar 9 00:31:27 2026 GMT Subject: CN=69a4da60-7163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:da:c8:71:9e:0d:52:47:40:25:fb:d7:7b:3d: 1a:71:0d:31:70:dd:a7:59:95:a6:da:0c:29:69:ee: 37:2c:bf:8e:12:b2:41:23:c5:42:0e:af:84:10:eb: 87:59:e1:ca:77:04:ba:7a:89:f0:96:a6:ac:fb:0e: c1:a8:b4:52:a7:97:c3:f4:e2:4e:c2:8c:de:d3:35: d8:77:32:7e:94:e8:03:f0:c7:ec:16:39:f1:61:c4: c0:f0:37:6e:73:07:d8:7b:7e:7e:34:f8:85:0b:d8: 49:bf:90:a1:d2:2c:e7:48:2e:c8:ca:50:34:ff:14: ad:dc:4c:78:df:8e:a1:da:26:80:3c:28:00:e8:74: 4b:e4:0a:e2:e7:a0:ac:b8:3f:3b:89:c6:66:45:7f: 19:df:b4:37:7b:ee:42:a2:63:f5:bc:8c:89:36:a0: f4:13:36:0f:b8:2b:71:ae:bd:9b:b2:dd:e7:d3:a4: 05:f4:ea:e7:b4:6d:02:ab:5d:4e:d4:50:7b:4b:5f: 3e:b3:b3:ba:55:bd:31:42:93:9d:9b:a6:01:28:f6: 63:0e:8f:bf:3d:13:ba:28:d4:d4:9d:29:ea:b2:82: 19:f9:a2:14:4a:95:08:85:b0:5d:d5:b9:af:bd:aa: d6:06:ad:1a:fc:1c:08:bb:7a:c2:39:94:19:b0:b5: 4a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:68:5A:5F:F5:4A:FE:03:2F:54:20:8B:62:91:41:C7:D7:13:35:35 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7c:13:16:9f:b3:b6:2a:75:ea:8e:b7:19:c1:73:fc:8c:f6: 2b:35:25:73:0c:ef:b6:c6:d8:86:85:31:b3:ee:ad:6c:fb:df: e9:96:eb:cc:fc:0f:4c:12:d9:13:d1:db:ad:b6:b5:b4:e0:8b: 32:fe:01:8b:47:fc:41:1c:21:8a:13:76:68:84:d4:fd:56:2d: cc:0f:52:be:45:ed:97:21:0d:73:73:8d:d8:5b:cf:3c:ac:09: e0:db:a5:39:83:c8:44:09:8d:10:41:80:b0:18:fe:69:8e:94: 9b:a9:3b:fb:50:19:39:cf:95:68:29:d8:83:95:fd:1a:6d:ab: 59:56:fd:00:f0:2e:2b:12:97:79:e7:46:4f:66:4e:f8:6e:11: a3:80:16:49:27:3c:b6:9a:15:30:cc:bb:f3:35:44:8d:8f:8e: 4b:94:e3:d2:5f:f8:3f:3b:a4:c8:75:91:72:52:54:0a:c0:ce: 18:e6:db:c9:a1:01:b8:4b:e7:65:67:d0:33:0c:7c:9d:55:ea: 22:9a:9b:7b:2d:e6:01:8f:7f:dd:8e:4a:b8:26:7d:98:fd:f3: 35:1c:9e:5e:cf:85:0f:71:9a:74:46:cf:65:a2:8d:8c:e5:16: d0:f0:f0:31:eb:9a:35:ad:1f:e5:d4:ab:19:57:33:6a:da:e5: d2:20:ea:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjYwMzAyMDAzMTI3WhcNMjYwMzA5MDAzMTI3WjAYMRYwFAYD VQQDEw02OWE0ZGE2MC03MTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAktrIcZ4NUkdAJfvXez0acQ0xcN2nWZWm2gwpae43LL+OErJBI8VCDq+EEOuH WeHKdwS6eonwlqas+w7BqLRSp5fD9OJOwoze0zXYdzJ+lOgD8MfsFjnxYcTA8Ddu cwfYe35+NPiFC9hJv5Ch0iznSC7IylA0/xSt3Ex4346h2iaAPCgA6HRL5Ari56Cs uD87icZmRX8Z37Q3e+5ComP1vIyJNqD0EzYPuCtxrr2bst3n06QF9OrntG0Cq11O 1FB7S18+s7O6Vb0xQpOdm6YBKPZjDo+/PRO6KNTUnSnqsoIZ+aIUSpUIhbBd1bmv varWBq0a/BwIu3rCOZQZsLVKFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPRoWl/1 Sv4DL1Qgi2KRQcfXEzU1MB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYnwTFp+ztip16o63GcFz/Iz2KzUlcwzvtsbYhoUxs+6tbPvf6ZbrzPwPTBLZ E9Hbrba1tOCLMv4Bi0f8QRwhihN2aITU/VYtzA9SvkXtlyENc3ON2FvPPKwJ4Nul OYPIRAmNEEGAsBj+aY6Um6k7+1AZOc+VaCnYg5X9Gm2rWVb9APAuKxKXeedGT2ZO +G4Ro4AWSSc8tpoVMMy78zVEjY+OS5Tj0l/4PzukyHWRclJUCsDOGObbyaEBuEvn ZWfQMwx8nVXqIpqbey3mAY9/3Y5KuCZ9mP3zNRyeXs+FD3GadEbPZaKNjOUW0PDw MeuaNa0f5dSrGVczatrl0iDqLw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:06 2026 by rpki-client