$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: t19jJOSDjqFG5ZAwF1TwvyKFaIe6HCQ9LSNNI+4/p2o= Subject key identifier: 8A:43:AF:A8:8F:99:74:0F:F1:50:9B:3E:B7:2C:00:75:8D:40:E5:3E Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2456 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2425 Signing time: Mon 02 Mar 2026 03:07:09 +0000 Manifest this update: Mon 02 Mar 2026 03:07:07 +0000 Manifest next update: Mon 09 Mar 2026 03:07:07 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: sXWtDpLor2kh/C54djzGixtL3Yym9t02M5kAotg+vDA=) 2: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: cd9leBQhaKt9bKQi4UOp7rnPXgkIwJXtv0eToRe3iAU=) 3: 32B76C00562411E79589C739C4F9AE02.roa (hash: UhOsRuv328ibsD6Eq+bltfZ6G75BexkhspAPfUdHDZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9302 (0x2456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Mar 2 03:07:07 2026 GMT Not After : Mar 9 03:07:07 2026 GMT Subject: CN=69a4fedd-a7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:85:a8:21:d9:cf:0c:9c:31:1c:2b:f6:90:56: 13:a1:4a:38:43:c0:e2:dc:5b:de:2e:cc:6c:05:5d: 3a:a5:32:02:a8:30:7f:b0:ca:9e:3c:54:41:95:bf: 83:59:dc:5d:d2:73:ff:f5:51:88:af:85:f3:52:93: d4:ee:56:e3:6c:62:37:e2:a3:d3:80:25:bf:27:af: ea:aa:10:a2:ef:e4:35:f0:d7:a2:19:bf:b2:69:99: 0f:e9:4a:86:0e:21:2b:05:81:17:85:5f:a4:a7:5e: 89:ed:53:d9:b7:a2:a5:65:ee:3e:1c:f0:38:9e:68: d1:c7:9b:ee:9b:90:72:86:47:ef:c3:e2:fa:19:cb: 3f:33:f7:44:b0:d7:57:9c:5b:22:9d:01:01:cb:72: a5:f9:3b:03:51:80:82:54:d5:16:38:cd:da:43:a8: ed:f6:a4:57:2c:f3:4d:7c:ab:72:31:60:45:90:76: 33:cb:4b:e1:a0:32:13:33:c0:92:5e:d7:d7:49:29: cf:ba:2c:54:c7:d1:df:22:98:54:bb:28:37:bd:71: f9:85:d5:88:43:75:bf:2e:79:68:b9:b3:a4:9e:cb: 23:85:c9:15:76:fe:64:ba:8b:d8:27:ef:50:6c:2f: 00:6c:83:78:ce:16:4e:32:b7:fc:a5:a2:ff:6c:c6: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:43:AF:A8:8F:99:74:0F:F1:50:9B:3E:B7:2C:00:75:8D:40:E5:3E X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:21:3e:5f:1d:40:58:2a:ee:76:fa:e4:95:74:84:9e:70:8a: c6:b9:db:26:55:fe:ef:ef:2e:07:4d:a8:62:ac:fb:17:e3:22: d4:46:64:a7:c7:23:81:cd:78:ac:c7:24:e9:15:72:74:d5:da: c2:84:e4:64:50:46:a3:e2:53:a3:6b:43:23:0c:0d:6a:ed:dc: b6:f8:ac:09:7c:d9:46:ca:3a:7d:29:f8:c1:2c:63:c2:dd:0f: 62:97:f8:e9:43:84:de:73:0c:06:49:7a:c5:cb:8b:7b:2d:3d: 2d:08:fd:2d:73:5c:f6:5d:78:6c:8f:56:29:88:99:3a:5e:2a: 94:20:f0:cf:29:37:ba:1a:94:2b:bb:cd:d6:75:bb:a7:dd:c5: a8:7e:c5:a5:03:4f:fd:53:29:53:00:99:ad:db:f0:e8:cc:3e: ed:9f:66:2d:ed:a6:2c:6c:03:8e:e4:2d:9a:f5:af:ab:18:ab: 64:d5:b4:c3:22:29:e2:99:2e:cb:0b:b6:fc:cd:8d:1f:38:55: 7d:3f:c0:a2:52:35:87:76:86:4a:f1:3a:43:4d:f3:1a:49:60: 73:6d:8a:78:d5:53:ce:c8:43:d8:35:db:f4:ad:a3:8b:c7:d0: e4:09:e4:3e:b1:a0:05:22:38:a1:f0:16:e1:c2:85:27:63:48: a9:bf:ca:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjYwMzAyMDMwNzA3WhcNMjYwMzA5MDMwNzA3WjAYMRYwFAYD VQQDEw02OWE0ZmVkZC1hN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYWoIdnPDJwxHCv2kFYToUo4Q8Di3FveLsxsBV06pTICqDB/sMqePFRBlb+D Wdxd0nP/9VGIr4XzUpPU7lbjbGI34qPTgCW/J6/qqhCi7+Q18NeiGb+yaZkP6UqG DiErBYEXhV+kp16J7VPZt6KlZe4+HPA4nmjRx5vum5Byhkfvw+L6Gcs/M/dEsNdX nFsinQEBy3Kl+TsDUYCCVNUWOM3aQ6jt9qRXLPNNfKtyMWBFkHYzy0vhoDITM8CS XtfXSSnPuixUx9HfIphUuyg3vXH5hdWIQ3W/LnloubOknssjhckVdv5kuovYJ+9Q bC8AbIN4zhZOMrf8paL/bMZQvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIpDr6iP mXQP8VCbPrcsAHWNQOU+MB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQyE+Xx1AWCrudvrklXSEnnCKxrnbJlX+7+8uB02oYqz7F+Mi1EZkp8cjgc14 rMck6RVydNXawoTkZFBGo+JTo2tDIwwNau3ctvisCXzZRso6fSn4wSxjwt0PYpf4 6UOE3nMMBkl6xcuLey09LQj9LXNc9l14bI9WKYiZOl4qlCDwzyk3uhqUK7vN1nW7 p93FqH7FpQNP/VMpUwCZrdvw6Mw+7Z9mLe2mLGwDjuQtmvWvqxirZNW0wyIp4pku ywu2/M2NHzhVfT/AolI1h3aGSvE6Q03zGklgc22KeNVTzshD2DXb9K2ji8fQ5Ank PrGgBSI4ofAW4cKFJ2NIqb/KEw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:12:10 2026 by rpki-client