$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft File: Ak2PFao5dyF1iDou3BZQFOGSiho.mft (raw, json) Hash identifier: mgwlqaNMskW8XTUV6WXXweURbr2+JSAZ/t4yQk7Sthk= Subject key identifier: E4:87:A0:77:8E:8B:0C:6B:AA:75:00:86:1D:4F:5D:F8:3B:63:C8:F3 Authority key identifier: 02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A Certificate issuer: /CN=A917B520/serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft Manifest number: 68 Signing time: Mon 02 Mar 2026 01:08:28 +0000 Manifest this update: Mon 02 Mar 2026 01:08:25 +0000 Manifest next update: Mon 09 Mar 2026 01:08:25 +0000 Files and hashes: 1: Ak2PFao5dyF1iDou3BZQFOGSiho.crl (hash: ecvyCmay181y0UpPXzM0RQG9N0tieQRiSDV5Ah3T+G0=) 2: 007686A0D3DD11F08C79D853C4F9AE02.roa (hash: snafex4e2SJ4Z7RULXkopBIE0X2g6JmA9mTt3bV4/r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=024D8F15AA39772175883A2EDC165014E1928A1A Validity Not Before: Mar 2 01:08:25 2026 GMT Not After : Mar 9 01:08:25 2026 GMT Subject: CN=69a4e30b-636d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:10:19:45:a4:01:c9:e9:cf:89:0a:d6:06:01: 52:de:b8:3f:f2:96:ca:e0:10:1c:1d:3a:67:67:43: 9a:d0:c2:64:a6:ce:24:13:f9:07:4a:f4:79:4d:a2: 8f:12:28:0c:52:e5:56:fc:f3:64:cc:f5:fa:43:87: 55:3f:20:ec:bb:3c:81:7c:5a:86:f5:46:12:3e:38: d1:97:7c:1d:f3:0a:13:ac:6b:c1:40:42:2a:cc:ba: 37:7e:6c:4e:4f:af:6e:8e:ac:70:50:3b:ae:c2:e7: 05:4c:2f:3a:0e:c1:20:ec:0c:93:b2:66:d1:c2:3f: 58:1d:38:f7:df:43:14:e5:d4:60:63:d1:a2:da:51: 89:5b:a7:8f:d1:3d:5c:5a:11:5b:a8:64:99:ce:5b: b0:ce:08:3c:8b:62:c5:2a:3a:fa:c8:a7:e4:6f:79: 23:a4:e4:79:40:73:c0:9e:72:d1:8c:2e:e9:18:d9: 26:85:ed:47:ac:42:48:3a:5f:b6:fc:4e:18:74:79: e1:8d:9f:09:00:31:08:dc:07:a9:84:4b:9f:63:69: 1a:f1:c9:37:bf:f1:33:6d:ab:a5:6f:61:fa:81:ba: ac:2a:ed:08:4b:c4:3a:ba:75:22:a9:e6:91:64:54: 0f:42:56:59:f9:35:14:00:a0:9c:f8:d9:e1:ce:c8: f2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:87:A0:77:8E:8B:0C:6B:AA:75:00:86:1D:4F:5D:F8:3B:63:C8:F3 X509v3 Authority Key Identifier: keyid:02:4D:8F:15:AA:39:77:21:75:88:3A:2E:DC:16:50:14:E1:92:8A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/Ak2PFao5dyF1iDou3BZQFOGSiho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4A12A33C82F411F09B74354EC4F9AE02/Ak2PFao5dyF1iDou3BZQFOGSiho.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:a9:9c:3d:c5:bd:0a:31:bc:02:02:82:40:44:17:81:b9:be: cc:9a:03:76:33:29:73:88:0c:52:31:fd:64:d2:6d:89:b5:53: 3b:01:28:52:fa:e4:06:11:32:5e:bf:c2:57:6d:03:38:6e:56: 39:a1:57:76:2f:7e:3e:41:6c:da:98:2c:99:da:a9:b7:df:b9: 1c:f0:59:90:8f:d4:d3:b6:f2:f6:89:bc:59:46:81:8a:75:11: 26:86:c4:e0:d6:c3:c9:5c:bf:d5:43:c0:3f:22:a0:c1:6c:d7: 4f:62:bb:79:32:62:d2:ec:9d:70:7f:38:95:f4:c6:63:4b:b7: 65:68:14:62:90:d7:83:5f:ef:c2:f6:3c:ad:64:66:e5:60:d5: 26:1f:48:d0:f0:3d:c0:6b:87:4c:cc:38:3a:8d:a0:1c:0b:c2: ea:f8:d0:8a:03:3f:64:c9:27:d1:a7:98:cc:7d:e5:9a:c2:34: af:0a:56:9f:06:1e:1a:57:9b:16:52:67:a2:24:be:45:cc:ae: 0c:7e:8a:90:ea:d9:c3:d7:1a:e5:10:63:87:86:46:42:f9:98: fd:a4:5b:30:f3:4f:ab:03:79:7e:ba:94:be:84:e6:5f:9d:72: 7c:55:f9:5f:17:73:f7:82:2d:7e:dc:ea:69:ab:c4:47:73:6a: 75:77:60:a0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMDI0RDhGMTVBQTM5NzcyMTc1ODgzQTJFREMxNjUwMTRF MTkyOEExQTAeFw0yNjAzMDIwMTA4MjVaFw0yNjAzMDkwMTA4MjVaMBgxFjAUBgNV BAMTDTY5YTRlMzBiLTYzNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQEBlFpAHJ6c+JCtYGAVLeuD/ylsrgEBwdOmdnQ5rQwmSmziQT+QdK9HlNoo8S KAxS5Vb882TM9fpDh1U/IOy7PIF8Wob1RhI+ONGXfB3zChOsa8FAQirMujd+bE5P r26OrHBQO67C5wVMLzoOwSDsDJOyZtHCP1gdOPffQxTl1GBj0aLaUYlbp4/RPVxa EVuoZJnOW7DOCDyLYsUqOvrIp+RveSOk5HlAc8CectGMLukY2SaF7UesQkg6X7b8 Thh0eeGNnwkAMQjcB6mES59jaRrxyTe/8TNtq6VvYfqBuqwq7QhLxDq6dSKp5pFk VA9CVln5NRQAoJz42eHOyPLbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU5Iegd46L DGuqdQCGHU9d+DtjyPMwHwYDVR0jBBgwFoAUAk2PFao5dyF1iDou3BZQFOGSihow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRBMTJBMzNDODJG NDExRjA5Qjc0MzU0RUM0RjlBRTAyL0FrMlBGYW81ZHlGMWlEb3UzQlpRRk9HU2lo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG RDFGRjIvQWsyUEZhbzVkeUYxaURvdTNCWlFGT0dTaWhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRBMTJBMzNDODJGNDExRjA5Qjc0MzU0RUM0RjlBRTAyL0FrMlBGYW81ZHlG MWlEb3UzQlpRRk9HU2loby5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAjqZw9xb0KMbwCAoJARBeBub7MmgN2MylziAxSMf1k0m2JtVM7AShS+uQGETJe v8JXbQM4blY5oVd2L34+QWzamCyZ2qm337kc8FmQj9TTtvL2ibxZRoGKdREmhsTg 1sPJXL/VQ8A/IqDBbNdPYrt5MmLS7J1wfziV9MZjS7dlaBRikNeDX+/C9jytZGbl YNUmH0jQ8D3Aa4dMzDg6jaAcC8Lq+NCKAz9kySfRp5jMfeWawjSvClafBh4aV5sW UmeiJL5FzK4MfoqQ6tnD1xrlEGOHhkZC+Zj9pFsw80+rA3l+upS+hOZfnXJ8Vflf F3P3gi1+3Oppq8RHc2p1d2Cg -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:29 2026 by rpki-client