$ rpki-client -vvf rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft File: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft (raw, json) Hash identifier: gEp7kyk+lSX681Qtp96iUkhBafJ5sLAqR1YKW7aUlYY= Subject key identifier: C1:1F:1D:92:FD:26:66:F2:62:93:69:77:AE:02:D7:41:5E:7E:3B:6C Authority key identifier: 54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 Certificate issuer: /CN=A9195AA2/serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Certificate serial: 0CC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft Manifest number: 152C Signing time: Mon 02 Mar 2026 02:21:48 +0000 Manifest this update: Mon 02 Mar 2026 02:21:46 +0000 Manifest next update: Mon 09 Mar 2026 02:21:46 +0000 Files and hashes: 1: VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl (hash: KzjeQFp4jztwfCctRj+HEGyCVH2e7uAh+QOaQaJ/hak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195AA2, serialNumber=54583C29BBFB5009DB9CC05614F63D62BCB77C39 Validity Not Before: Mar 2 02:21:46 2026 GMT Not After : Mar 9 02:21:46 2026 GMT Subject: CN=69a4f43b-9a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:df:60:d5:3a:f3:97:02:78:c4:31:9a:95:56: e9:7d:8d:68:a4:31:f2:61:6b:bf:66:17:66:50:b8: 22:18:4a:04:b9:70:2a:7f:59:5c:36:45:36:de:d9: eb:26:3a:f4:0b:98:52:c0:fb:5b:a2:7e:7d:09:ac: 30:15:ee:2c:0a:17:58:e2:d4:d9:b2:a4:21:3a:f8: bb:19:69:79:c8:c7:ac:90:06:0a:ab:48:4f:67:f3: 5c:9b:34:5c:eb:90:02:7f:1f:37:45:9a:9b:a7:f7: 69:d6:b9:bb:89:44:0a:27:75:c2:c6:36:af:20:2c: ff:cf:09:5b:08:3e:16:fb:ad:1a:0e:ac:da:ae:88: 67:70:16:fc:59:28:3f:74:a4:70:a5:5d:7e:45:73: 04:cf:d2:76:c7:17:96:82:9d:e5:7b:ac:a5:ed:6b: ec:ac:2d:e9:cb:97:a2:a5:93:8b:2e:71:2f:30:1a: 05:93:0b:cf:ce:69:f2:c9:9a:5d:58:91:77:95:b2: c4:ca:7c:c8:ab:32:d1:e2:e6:e1:4d:f1:bd:69:22: 2c:c4:24:7a:97:2d:c5:f2:bc:22:24:19:31:9a:3e: 49:dd:12:dc:b3:da:94:39:a5:e7:ba:48:82:77:7e: 5b:f2:e1:b1:fe:9e:2a:d1:c1:29:56:74:ad:aa:32: 8b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:1F:1D:92:FD:26:66:F2:62:93:69:77:AE:02:D7:41:5E:7E:3B:6C X509v3 Authority Key Identifier: keyid:54:58:3C:29:BB:FB:50:09:DB:9C:C0:56:14:F6:3D:62:BC:B7:7C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195AA2/1FE357D406C511EA888ED919C4F9AE02/VFg8Kbv7UAnbnMBWFPY9Yry3fDk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:0c:dd:ae:ac:75:66:69:6b:58:ba:ab:c5:a0:f1:48:cf:f6: f9:c5:ae:6f:9c:bd:90:07:2e:ed:08:6a:f6:bd:49:36:1c:1d: 11:fd:ad:e8:94:97:2d:b9:b5:97:38:26:29:33:0b:41:e6:bc: 4d:10:ee:ca:3f:7f:e6:df:2b:72:8f:ae:b1:d7:34:8a:3c:c6: 4f:df:0c:49:80:86:fe:c9:a9:7f:22:57:9c:9c:88:e8:9a:f8: 1e:94:5b:e2:bf:4a:6a:6a:12:b1:51:ee:4b:88:d5:80:a4:9b: e9:cd:d3:db:7a:f4:eb:3f:f7:69:ea:bf:f5:d8:6b:41:da:cf: 34:50:95:4f:4a:94:e3:15:34:3d:57:7e:58:a5:47:a5:36:d0: d4:a8:12:45:99:42:77:b5:a6:14:d7:7f:af:86:6e:d8:98:17: 59:69:b4:aa:6a:04:b1:46:7e:35:6f:1e:69:40:7b:ce:e3:32: 23:0c:2f:3a:99:f6:27:1a:9a:10:9d:e8:e4:20:b2:da:ff:ec: f1:99:81:0e:20:d1:a9:3d:85:07:23:ea:d8:0c:af:40:00:eb: a8:4c:a5:31:3e:bc:d5:2f:49:87:d2:ee:7f:0c:7c:be:dd:2b: 3f:33:90:1b:76:77:be:7d:3d:4b:3e:cf:be:6b:70:85:32:56: 98:6a:44:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBQTIxMTAvBgNVBAUTKDU0NTgzQzI5QkJGQjUwMDlEQjlDQzA1NjE0RjYzRDYy QkNCNzdDMzkwHhcNMjYwMzAyMDIyMTQ2WhcNMjYwMzA5MDIyMTQ2WjAYMRYwFAYD VQQDEw02OWE0ZjQzYi05YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmt9g1TrzlwJ4xDGalVbpfY1opDHyYWu/ZhdmULgiGEoEuXAqf1lcNkU23tnr Jjr0C5hSwPtbon59CawwFe4sChdY4tTZsqQhOvi7GWl5yMeskAYKq0hPZ/NcmzRc 65ACfx83RZqbp/dp1rm7iUQKJ3XCxjavICz/zwlbCD4W+60aDqzarohncBb8WSg/ dKRwpV1+RXMEz9J2xxeWgp3le6yl7WvsrC3py5eipZOLLnEvMBoFkwvPzmnyyZpd WJF3lbLEynzIqzLR4ubhTfG9aSIsxCR6ly3F8rwiJBkxmj5J3RLcs9qUOaXnukiC d35b8uGx/p4q0cEpVnStqjKL3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMEfHZL9 JmbyYpNpd64C10FefjtsMB8GA1UdIwQYMBaAFFRYPCm7+1AJ25zAVhT2PWK8t3w5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUFBMi8xRkUzNTdENDA2 QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VBbmJuTUJXRlBZOVlyeTNm RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGZzhLYnY3VUFuYm5NQldGUFk5WXJ5M2ZEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUFBMi8xRkUzNTdENDA2QzUxMUVBODg4RUQ5MTlDNEY5QUUwMi9WRmc4S2J2N1VB bmJuTUJXRlBZOVlyeTNmRGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdgzdrqx1ZmlrWLqrxaDxSM/2+cWub5y9kAcu7Qhq9r1JNhwdEf2t6JSXLbm1 lzgmKTMLQea8TRDuyj9/5t8rco+usdc0ijzGT98MSYCG/smpfyJXnJyI6Jr4HpRb 4r9KamoSsVHuS4jVgKSb6c3T23r06z/3aeq/9dhrQdrPNFCVT0qU4xU0PVd+WKVH pTbQ1KgSRZlCd7WmFNd/r4Zu2JgXWWm0qmoEsUZ+NW8eaUB7zuMyIwwvOpn2Jxqa EJ3o5CCy2v/s8ZmBDiDRqT2FByPq2AyvQADrqEylMT681S9Jh9Lufwx8vt0rPzOQ G3Z3vn09Sz7PvmtwhTJWmGpECQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:35:52 2026 by rpki-client