$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: +Y6P/2LWopfCt9Ry1IPeWy/c3fbUKqMPtxFQUImmIRk= Subject key identifier: 0B:AB:D9:9E:D0:E6:EF:32:A0:50:04:2A:57:04:37:0B:57:1E:5A:EC Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: 0156 Signing time: Sun 01 Mar 2026 06:08:18 +0000 Manifest this update: Sun 01 Mar 2026 06:08:17 +0000 Manifest next update: Sun 08 Mar 2026 06:08:17 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: d3MPpHZ7o3ilXceOJyphm8s5RUdFex4qLxdHBso0vfE=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: ovencPjh3DETl3TFknJbkwLv9wBQOuWaZf8yT96L04E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Mar 1 06:08:17 2026 GMT Not After : Mar 8 06:08:17 2026 GMT Subject: CN=69a3d7d2-5e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:f0:90:83:f1:6a:0a:a4:86:6a:e3:92:ad: 1b:c9:a3:0a:3a:86:32:77:95:d0:45:8f:8f:49:7f: d6:34:ca:a8:a8:e5:f2:f5:2a:99:9a:6d:ba:e1:6a: df:ad:2e:db:18:e9:b1:25:98:e2:47:fe:24:3f:8d: a0:e6:fc:7f:44:4d:0d:5e:5f:0c:43:d3:83:a4:36: 8c:da:ce:c6:ef:9c:94:d2:70:27:f6:a3:83:6d:1b: 2e:e5:a7:e4:af:4c:56:bb:9b:cf:21:e2:f0:b8:24: b9:26:7c:21:91:15:f9:55:a8:41:0b:8d:39:3c:72: 27:cc:8f:f9:2d:da:d6:9b:55:be:b5:42:81:67:96: cd:94:54:de:d8:5f:fd:4c:6d:63:b4:65:cd:a4:34: 50:00:aa:1a:e7:17:e2:da:53:84:38:6a:af:77:24: 80:9e:a6:c1:22:84:b8:e9:21:e5:d2:31:71:ad:f5: 2d:cc:b0:55:da:9e:13:53:b8:85:ff:d6:cb:db:13: 1d:36:c0:63:55:3b:52:c7:8f:d1:9c:94:03:5c:44: 22:da:13:22:52:da:c8:53:1f:91:92:46:ea:75:f2: e8:0a:8a:63:20:8b:3a:c8:90:f7:7f:27:5d:30:08: bf:7d:41:e0:b1:57:3a:73:c7:31:50:6f:55:0a:10: 0f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AB:D9:9E:D0:E6:EF:32:A0:50:04:2A:57:04:37:0B:57:1E:5A:EC X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:56:e6:02:7f:3c:a3:77:b2:83:11:d2:74:59:c4:5c:c0:59: ad:05:d8:15:d9:41:51:00:53:b1:08:4f:6f:62:cc:b3:c0:48: 51:6c:ce:46:2a:c3:82:93:0a:62:f7:1a:01:20:47:5b:f2:61: a8:e6:3a:51:7b:ef:54:4b:cc:d0:74:ea:53:1b:85:61:b7:71: 34:fc:f6:ab:07:1d:91:dd:4d:b4:0c:a9:ec:be:78:1d:0b:9b: 84:9a:5a:cb:40:e5:f1:c5:55:60:24:1f:4d:57:18:51:59:df: 14:35:f0:04:8b:c1:70:6e:86:4c:a0:05:0c:79:9e:5d:cf:16: 47:6a:66:88:a6:c4:20:20:e3:c4:53:eb:94:36:e1:54:71:47: c7:66:5d:2b:38:09:fa:49:9e:60:df:da:43:75:21:7c:85:95: fe:30:84:1e:6b:69:73:a9:e4:b5:ff:2d:97:e2:c3:02:7a:70: 24:90:5f:a7:5a:01:d9:9b:40:b3:98:90:75:76:0e:87:78:f6: e8:62:1c:07:7a:0d:8e:83:a9:6d:76:9f:13:d0:a4:29:c4:80: 28:52:5e:65:11:29:2e:3d:8c:90:cb:95:4d:9d:dc:52:fc:6f: e3:fe:fa:13:31:f0:dd:a3:e5:37:f6:89:1b:15:16:e0:24:c3: 6b:cc:7c:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjYwMzAxMDYwODE3WhcNMjYwMzA4MDYwODE3WjAYMRYwFAYD VQQDEw02OWEzZDdkMi01ZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApo/wkIPxagqkhmrjkq0byaMKOoYyd5XQRY+PSX/WNMqoqOXy9SqZmm264Wrf rS7bGOmxJZjiR/4kP42g5vx/RE0NXl8MQ9ODpDaM2s7G75yU0nAn9qODbRsu5afk r0xWu5vPIeLwuCS5JnwhkRX5VahBC405PHInzI/5LdrWm1W+tUKBZ5bNlFTe2F/9 TG1jtGXNpDRQAKoa5xfi2lOEOGqvdySAnqbBIoS46SHl0jFxrfUtzLBV2p4TU7iF /9bL2xMdNsBjVTtSx4/RnJQDXEQi2hMiUtrIUx+RkkbqdfLoCopjIIs6yJD3fydd MAi/fUHgsVc6c8cxUG9VChAP/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAur2Z7Q 5u8yoFAEKlcENwtXHlrsMB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAglbmAn88o3eygxHSdFnEXMBZrQXYFdlBUQBTsQhPb2LMs8BIUWzORirDgpMK YvcaASBHW/JhqOY6UXvvVEvM0HTqUxuFYbdxNPz2qwcdkd1NtAyp7L54HQubhJpa y0Dl8cVVYCQfTVcYUVnfFDXwBIvBcG6GTKAFDHmeXc8WR2pmiKbEICDjxFPrlDbh VHFHx2ZdKzgJ+kmeYN/aQ3UhfIWV/jCEHmtpc6nktf8tl+LDAnpwJJBfp1oB2ZtA s5iQdXYOh3j26GIcB3oNjoOpbXafE9CkKcSAKFJeZREpLj2MkMuVTZ3cUvxv4/76 EzHw3aPlN/aJGxUW4CTDa8x8dg== -----END CERTIFICATE-----Generated at Sun Mar 1 21:06:41 2026 by rpki-client