$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: 04mk2hVpoPuc8mTptgfejz399tR9QmZDJWP317pAgDA= Subject key identifier: 2F:DF:0D:72:32:82:D4:04:8E:90:27:CF:1C:0C:8D:CA:A9:64:6D:71 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 081C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0816 Signing time: Sat 28 Feb 2026 21:24:25 +0000 Manifest this update: Sat 28 Feb 2026 21:24:24 +0000 Manifest next update: Sat 07 Mar 2026 21:24:24 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: jm2qGw2ejCsyAKzO2kz/FjfhmxmrhZXu2WgzwYPWRqk=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 7u9lFldLGtHyxwH20hTfSxqKwvd+3v0Fn/UDNDaczHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2076 (0x81c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Feb 28 21:24:24 2026 GMT Not After : Mar 7 21:24:24 2026 GMT Subject: CN=69a35d09-bacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:5c:cc:0d:8a:4b:87:90:56:d7:00:da:eb: 9f:36:5c:98:28:cd:5d:b9:fe:fa:7a:c8:4a:22:79: 44:a2:63:01:20:d6:4c:3f:cc:2c:4f:2e:4c:85:ea: 5a:60:f5:fe:76:2e:58:2c:94:42:5b:5c:f6:24:38: ff:1a:87:f1:76:f0:c3:83:d1:32:51:8b:0c:8a:99: 14:67:f8:2c:70:3b:9d:6a:e0:77:70:e9:d6:e6:76: 0e:85:db:ed:27:ef:70:d3:6b:6b:9c:6f:81:f9:b6: 3a:93:a0:91:f1:ae:ae:b8:46:ee:e1:0c:9e:90:90: ed:89:69:b9:81:fb:10:e8:5f:29:91:f0:6c:2c:b4: 38:5b:57:2b:de:be:82:df:ff:77:5f:37:b0:9a:8f: 00:fa:eb:97:89:d1:59:2d:f1:e4:c4:6f:8c:94:d7: 2b:62:80:08:e4:e5:4e:20:87:b0:f7:11:b8:5a:a4: a5:c5:e6:69:d9:bc:95:72:b7:2c:8e:e5:0b:dc:be: 2d:47:13:8f:91:e9:a3:02:61:7a:4b:62:ce:9f:7a: 06:40:18:90:1e:ae:26:34:e0:c2:e2:42:70:19:69: a3:26:f3:e8:a3:77:e8:78:aa:7b:f3:13:1c:b8:a8: 11:08:94:23:48:25:f6:75:da:c0:92:57:ab:8d:7d: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DF:0D:72:32:82:D4:04:8E:90:27:CF:1C:0C:8D:CA:A9:64:6D:71 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:89:66:83:bb:1b:4a:fb:87:13:bd:f1:ee:d1:be:f0:3d:77: 2b:c3:c3:49:05:43:d1:34:e0:7e:ba:3c:51:18:46:3a:93:7c: 2f:38:1f:7e:27:27:38:4d:ce:de:e6:e2:b3:ce:88:32:ad:f7: 85:d5:a4:5d:0c:93:33:67:34:18:1f:c6:27:1b:fd:91:3c:5f: 2d:28:b8:0a:02:a5:78:79:12:7b:0c:b9:f3:81:14:83:1a:d4: bd:45:7f:ec:ca:db:3b:ea:dd:59:eb:a5:0b:a8:63:3c:06:47: e2:08:59:d2:8c:68:be:e4:14:a2:94:4c:e9:e1:b3:b6:ae:74: 56:5c:57:a4:a5:2f:d2:f8:96:a0:b3:57:70:eb:bf:95:13:55: d6:be:a7:bb:ff:34:86:cb:f7:2c:18:49:55:78:01:6a:6a:b9: 9c:d9:fb:39:70:a6:ee:fd:bc:0f:c9:99:b4:b1:2f:c2:64:0a: 02:cd:8a:98:ea:52:02:f7:56:e2:92:fb:a2:9d:ae:6f:aa:70: 2d:f9:12:64:d3:76:80:39:73:76:61:6b:47:3f:ba:ff:b2:71: 34:23:a7:c9:fe:66:3a:b1:14:64:a3:d5:39:0e:a5:13:3e:0e: 5e:0d:12:eb:b1:c6:99:ec:65:c7:19:17:9d:68:11:e7:b6:35: 06:a4:ec:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjYwMjI4MjEyNDI0WhcNMjYwMzA3MjEyNDI0WjAYMRYwFAYD VQQDDA02OWEzNWQwOS1iYWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY9czA2KS4eQVtcA2uufNlyYKM1duf76eshKInlEomMBINZMP8wsTy5Mhepa YPX+di5YLJRCW1z2JDj/GofxdvDDg9EyUYsMipkUZ/gscDudauB3cOnW5nYOhdvt J+9w02trnG+B+bY6k6CR8a6uuEbu4QyekJDtiWm5gfsQ6F8pkfBsLLQ4W1cr3r6C 3/93Xzewmo8A+uuXidFZLfHkxG+MlNcrYoAI5OVOIIew9xG4WqSlxeZp2byVcrcs juUL3L4tRxOPkemjAmF6S2LOn3oGQBiQHq4mNODC4kJwGWmjJvPoo3foeKp78xMc uKgRCJQjSCX2ddrAklerjX1F/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC/fDXIy gtQEjpAnzxwMjcqpZG1xMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc4lmg7sbSvuHE73x7tG+8D13K8PDSQVD0TTgfro8URhGOpN8LzgfficnOE3O 3ubis86IMq33hdWkXQyTM2c0GB/GJxv9kTxfLSi4CgKleHkSewy584EUgxrUvUV/ 7MrbO+rdWeulC6hjPAZH4ghZ0oxovuQUopRM6eGztq50VlxXpKUv0viWoLNXcOu/ lRNV1r6nu/80hsv3LBhJVXgBamq5nNn7OXCm7v28D8mZtLEvwmQKAs2KmOpSAvdW 4pL7op2ub6pwLfkSZNN2gDlzdmFrRz+6/7JxNCOnyf5mOrEUZKPVOQ6lEz4OXg0S 67HGmexlxxkXnWgR57Y1BqTspg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:36:47 2026 by rpki-client