$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: QcUmcOGZF+7svkpiVLrgDt+gPi9tORnjXSuINlyNYkA= Subject key identifier: F5:04:E6:B8:ED:BE:62:E3:D4:0A:BA:3A:3D:F2:D7:72:7F:3F:38:02 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 0120 Signing time: Mon 02 Mar 2026 02:33:25 +0000 Manifest this update: Mon 02 Mar 2026 02:33:24 +0000 Manifest next update: Mon 09 Mar 2026 02:33:24 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: OZ/PtvZDHQA43yaPOkKxoeegixItX+sNcoD5JsRua7Y=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: xaj9ev9gObxEarMjWAx7hyuUavQ9BGr2NQce4XrNjSg=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: o9Xs3io38RTaw4LTZVDWVNHdH5+V8NMTsg37SGZ03EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Mar 2 02:33:24 2026 GMT Not After : Mar 9 02:33:24 2026 GMT Subject: CN=69a4f6f5-c086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:d3:02:b4:09:17:10:04:42:7b:d9:6a:95: 21:0c:b5:fa:df:e8:87:32:3e:06:13:b0:c4:eb:c8: 77:86:42:2c:aa:46:5a:3d:96:7c:45:17:a6:9d:92: 3e:67:b6:09:63:f7:bd:69:b1:64:08:b3:f1:9c:c8: 54:bf:3d:5f:0b:7a:0f:4b:13:6d:bd:16:4c:26:b7: a4:da:36:95:99:be:e8:a8:1f:53:43:f1:6f:49:91: f1:ea:0b:66:d6:89:5b:5d:31:4f:f5:5b:62:0d:98: 32:07:74:e8:8c:40:e5:d1:14:5f:22:fa:93:55:56: 8c:d6:d6:2c:7e:2c:ae:dc:ec:23:c7:a5:7e:2b:a0: 08:9e:67:9f:b1:ad:91:3d:12:fe:bf:c4:d0:74:31: 7b:df:ac:be:33:70:4c:ef:98:78:18:40:b2:ef:3e: e9:c6:6b:a2:46:ea:79:2d:1f:4f:d1:58:d9:89:ca: 64:ba:33:38:b4:74:b2:c8:10:65:76:3e:65:e9:b3: 5d:2b:bd:4a:33:08:bf:ee:57:9e:cf:f5:2a:67:76: 87:0f:cd:e1:d5:d8:c3:c5:a5:a9:8b:0c:54:db:51: c6:cc:6f:2c:d4:6d:73:5b:29:62:25:8c:3a:1f:8e: 96:c2:74:fa:43:9b:ff:f4:ca:c9:9f:d6:b7:c8:3d: 2e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:04:E6:B8:ED:BE:62:E3:D4:0A:BA:3A:3D:F2:D7:72:7F:3F:38:02 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c2:92:a3:99:31:2c:53:ce:e9:c8:48:94:a6:cb:db:15:01: e8:60:b1:a7:47:e7:b7:6c:aa:ff:21:ce:53:59:f6:c3:6d:29: b7:ec:f8:22:50:0b:c3:b2:dc:ec:da:3a:a1:b6:b5:b3:fb:be: 28:e1:20:2a:37:fa:75:62:be:5c:fc:87:b0:1c:4f:6e:7f:4e: 5b:50:87:b3:e8:95:30:d6:b3:02:73:af:4d:60:40:2d:df:50: 96:b4:19:3a:cb:15:22:d4:66:6c:1d:6c:68:70:cb:af:6b:14: af:e6:2b:85:ac:60:d9:60:7d:55:4c:92:90:83:32:78:a2:a8: 09:bd:a2:1a:06:3b:25:02:ba:ac:51:35:18:45:02:8c:9d:b5: 7a:7d:81:16:6c:11:13:1c:ea:e8:f2:45:ed:da:97:0e:46:ee: 6c:2a:79:88:fe:e1:70:55:b4:4d:76:88:2c:0c:fa:67:f0:e1: 8b:71:65:4f:80:2d:c2:f2:8f:39:16:12:fe:ae:58:71:c0:f5: fe:63:25:c8:5d:28:07:95:c1:3e:4c:6c:7f:3e:0f:b1:04:eb: 83:13:be:c1:8a:91:3e:10:6c:c9:2d:8a:2c:09:39:08:e0:da: 1c:26:34:c1:9e:23:4b:b9:0d:24:fd:d4:56:9d:da:5c:28:03: c7:b0:fc:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjYwMzAyMDIzMzI0WhcNMjYwMzA5MDIzMzI0WjAYMRYwFAYD VQQDEw02OWE0ZjZmNS1jMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskDTArQJFxAEQnvZapUhDLX63+iHMj4GE7DE68h3hkIsqkZaPZZ8RRemnZI+ Z7YJY/e9abFkCLPxnMhUvz1fC3oPSxNtvRZMJrek2jaVmb7oqB9TQ/FvSZHx6gtm 1olbXTFP9VtiDZgyB3TojEDl0RRfIvqTVVaM1tYsfiyu3Owjx6V+K6AInmefsa2R PRL+v8TQdDF736y+M3BM75h4GECy7z7pxmuiRup5LR9P0VjZicpkujM4tHSyyBBl dj5l6bNdK71KMwi/7leez/UqZ3aHD83h1djDxaWpiwxU21HGzG8s1G1zWyliJYw6 H46WwnT6Q5v/9MrJn9a3yD0ugQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPUE5rjt vmLj1Aq6Oj3y13J/PzgCMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWsKSo5kxLFPO6chIlKbL2xUB6GCxp0fnt2yq/yHOU1n2w20pt+z4IlALw7Lc 7No6oba1s/u+KOEgKjf6dWK+XPyHsBxPbn9OW1CHs+iVMNazAnOvTWBALd9QlrQZ OssVItRmbB1saHDLr2sUr+Yrhaxg2WB9VUySkIMyeKKoCb2iGgY7JQK6rFE1GEUC jJ21en2BFmwRExzq6PJF7dqXDkbubCp5iP7hcFW0TXaILAz6Z/Dhi3FlT4AtwvKP ORYS/q5YccD1/mMlyF0oB5XBPkxsfz4PsQTrgxO+wYqRPhBsyS2KLAk5CODaHCY0 wZ4jS7kNJP3UVp3aXCgDx7D8tQ== -----END CERTIFICATE-----Generated at Mon Mar 2 06:41:32 2026 by rpki-client