$ rpki-client -vvf rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft File: _2UQNIiSuqqxtzMf9wTDQbiaGHY.mft (raw, json) Hash identifier: M4wPsHa/MRXLWHGyBmYEDNYg+ItmZRHQY7sFQVm+29s= Subject key identifier: 5D:8F:11:C8:7A:E3:B0:A4:A6:4E:1C:D2:63:9E:AC:2D:62:F2:08:F9 Authority key identifier: FF:65:10:34:88:92:BA:AA:B1:B7:33:1F:F7:04:C3:41:B8:9A:18:76 Certificate issuer: /CN=A9189C03/serialNumber=FF6510348892BAAAB1B7331FF704C341B89A1876 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft Manifest number: 12 Signing time: Sun 01 Mar 2026 10:32:21 +0000 Manifest this update: Sun 01 Mar 2026 10:32:21 +0000 Manifest next update: Sun 08 Mar 2026 10:32:21 +0000 Files and hashes: 1: _2UQNIiSuqqxtzMf9wTDQbiaGHY.crl (hash: QbttlOLB+AXhk3VAGoArX0xithvrJmYhc3CA88En8iU=) 2: C0B4841002B011F19551BA913E3D8C67.roa (hash: mlBDMtNCdtUEDeCgXegQmevuYhexij5GGyJcwWWK/bM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.crl rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:32:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189C03, serialNumber=FF6510348892BAAAB1B7331FF704C341B89A1876 Validity Not Before: Mar 1 10:32:21 2026 GMT Not After : Mar 8 10:32:21 2026 GMT Subject: CN=69a415b5-0c0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3c:10:1c:01:50:a9:fb:ff:26:35:81:40:65: d9:ec:8a:d8:37:a8:0a:70:36:5d:10:9a:ad:93:80: 7b:62:54:b3:f2:38:14:07:4c:69:4e:eb:a4:e0:30: 24:a9:65:b4:7c:7c:6c:39:3c:d3:9e:f2:42:a5:1e: cd:41:96:2c:14:a6:45:7d:a9:8e:7f:46:9b:35:79: ed:e5:93:d8:86:d1:51:3e:cc:f8:18:1a:2c:8b:93: 4b:c9:40:44:85:0f:e6:d8:39:c2:36:47:b1:06:e5: a7:97:58:65:0b:df:52:73:15:0b:60:7b:87:ff:03: 9d:d6:fc:d9:d6:ed:e7:84:16:e9:10:5c:f4:1f:ca: 69:46:0d:12:6d:15:67:3d:13:74:57:34:74:bf:66: 59:57:69:af:0d:db:77:48:b8:8d:70:4e:8d:6c:15: e1:ac:d4:20:b5:a9:7a:05:ef:7a:04:03:62:27:f2: 80:f0:b8:00:f0:5f:2a:db:ac:8a:8a:6a:c4:72:e5: 1a:fa:58:b0:69:b6:40:5a:1f:83:c8:10:3b:db:0e: 12:43:72:ad:1d:82:5e:0c:04:d3:73:49:40:2f:dc: 65:df:92:49:54:95:27:d2:f6:88:42:97:8b:14:b4: d3:fe:22:b4:0f:15:74:a9:2c:06:52:74:b6:59:fc: a9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8F:11:C8:7A:E3:B0:A4:A6:4E:1C:D2:63:9E:AC:2D:62:F2:08:F9 X509v3 Authority Key Identifier: keyid:FF:65:10:34:88:92:BA:AA:B1:B7:33:1F:F7:04:C3:41:B8:9A:18:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_2UQNIiSuqqxtzMf9wTDQbiaGHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189C03/DB691D0A016811F180E38FD3596F56BC/_2UQNIiSuqqxtzMf9wTDQbiaGHY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:64:cf:53:a5:7f:23:17:b6:5d:17:71:f6:4e:3b:52:9b:46: 5c:a6:54:c8:ed:19:0d:c2:60:c2:74:4e:1f:74:db:5e:a4:8a: be:19:a2:1b:b7:fb:0e:2d:07:31:9b:66:44:ab:54:aa:9b:fa: 63:94:a9:c9:24:97:84:25:12:cb:6c:81:fe:13:1f:37:b9:ba: c7:6e:b1:14:c8:4b:b9:9c:5f:c7:a5:63:0b:27:bd:c4:f2:43: 32:d3:4f:db:9e:50:fe:77:31:3d:f2:8c:88:b1:cf:42:e1:f8: 46:cf:a7:84:36:2b:05:94:d5:61:33:a5:1b:8e:33:ca:1f:91: 65:c6:a1:ea:eb:e8:77:8c:f4:e8:32:9a:19:c4:b5:e7:7e:c3: 69:19:e7:40:fe:42:f8:97:af:50:96:3d:df:98:88:55:9a:ef: 53:e5:1c:00:d7:0b:04:0e:b4:23:68:e4:6b:70:d8:7b:92:25: 6e:2f:1a:61:8d:2e:da:a9:44:e7:e5:0e:be:71:d3:d8:b3:eb: 81:4d:b5:f5:e1:c1:a6:ae:d6:40:8b:ba:26:0f:1d:e3:2b:cb: 4f:2e:7e:b8:0a:eb:40:b1:4b:9a:b5:0d:cf:9c:c7:e6:fe:cf: 5a:03:f5:56:5d:d0:a5:c6:66:b7:de:a3:b4:1e:a8:c5:0a:1f: ba:29:6f:a5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUMwMzExMC8GA1UEBRMoRkY2NTEwMzQ4ODkyQkFBQUIxQjczMzFGRjcwNEMzNDFC ODlBMTg3NjAeFw0yNjAzMDExMDMyMjFaFw0yNjAzMDgxMDMyMjFaMBgxFjAUBgNV BAMTDTY5YTQxNWI1LTBjMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfPBAcAVCp+/8mNYFAZdnsitg3qApwNl0Qmq2TgHtiVLPyOBQHTGlO66TgMCSp ZbR8fGw5PNOe8kKlHs1BliwUpkV9qY5/Rps1ee3lk9iG0VE+zPgYGiyLk0vJQESF D+bYOcI2R7EG5aeXWGUL31JzFQtge4f/A53W/NnW7eeEFukQXPQfymlGDRJtFWc9 E3RXNHS/ZllXaa8N23dIuI1wTo1sFeGs1CC1qXoF73oEA2In8oDwuADwXyrbrIqK asRy5Rr6WLBptkBaH4PIEDvbDhJDcq0dgl4MBNNzSUAv3GXfkklUlSfS9ohCl4sU tNP+IrQPFXSpLAZSdLZZ/KnjAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUXY8RyHrj sKSmThzSY56sLWLyCPkwHwYDVR0jBBgwFoAU/2UQNIiSuqqxtzMf9wTDQbiaGHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QzAzL0RCNjkxRDBBMDE2 ODExRjE4MEUzOEZEMzU5NkY1NkJDL18yVVFOSWlTdXFxeHR6TWY5d1REUWJpYUdI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvXzJVUU5JaVN1cXF4dHpNZjl3VERRYmlhR0hZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QzAzL0RCNjkxRDBBMDE2ODExRjE4MEUzOEZEMzU5NkY1NkJDL18yVVFOSWlTdXFx eHR6TWY5d1REUWJpYUdIWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB1ZM9TpX8jF7ZdF3H2TjtSm0ZcplTI7RkNwmDCdE4fdNtepIq+GaIbt/sOLQcx m2ZEq1Sqm/pjlKnJJJeEJRLLbIH+Ex83ubrHbrEUyEu5nF/HpWMLJ73E8kMy00/b nlD+dzE98oyIsc9C4fhGz6eENisFlNVhM6UbjjPKH5FlxqHq6+h3jPToMpoZxLXn fsNpGedA/kL4l69Qlj3fmIhVmu9T5RwA1wsEDrQjaORrcNh7kiVuLxphjS7aqUTn 5Q6+cdPYs+uBTbX14cGmrtZAi7omDx3jK8tPLn64CutAsUuatQ3PnMfm/s9aA/VW XdClxma33qO0HqjFCh+6KW+l -----END CERTIFICATE-----Generated at Mon Mar 2 10:40:56 2026 by rpki-client