$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json) Hash identifier: l9yLPxfGBS/ZC2/5GlFx+W/Ka+timjfH0mh7S/JMh9Q= Subject key identifier: 11:52:F8:E1:BA:CC:0F:CD:99:A3:2A:74:E0:89:7B:5E:64:74:D0:E8 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft Manifest number: 01E9 Signing time: Mon 02 Mar 2026 00:55:30 +0000 Manifest this update: Mon 02 Mar 2026 00:55:29 +0000 Manifest next update: Mon 09 Mar 2026 00:55:29 +0000 Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: krnseUBuRKMlRSWL9uX0Wn5m1K813CvyLsMKmRwvYZ0=) 2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: hnwuStPXa2PnbC6upyuld+U4W5MZABYuzZ1Adf6fwaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Mar 2 00:55:29 2026 GMT Not After : Mar 9 00:55:29 2026 GMT Subject: CN=69a4e002-f375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c0:7d:b5:ac:4a:ff:70:cd:94:af:d6:13:45: ab:f5:28:7a:34:f9:ba:33:25:98:a6:27:60:6f:7e: 8a:db:2f:f2:b2:8b:e7:d7:1e:df:c0:e6:4b:16:78: c7:3a:b9:a1:26:da:4b:e7:70:92:91:49:66:76:90: 5d:15:e7:df:67:05:68:33:ef:44:1f:16:60:15:51: fa:12:3e:1d:18:2a:84:de:89:7f:6c:3f:4e:d7:e3: b5:59:9b:74:68:ef:39:62:8c:a1:d4:2e:2d:ae:86: 24:1d:b0:1a:f4:ed:00:83:fd:f4:a5:7f:5b:07:ff: 26:6a:cf:4d:0e:f3:4f:d3:97:46:34:fa:54:6b:17: 9a:15:b1:72:0b:ac:d8:56:97:0e:95:da:c1:fe:3a: db:1e:98:76:98:b5:f4:f3:18:dd:c1:0a:1e:02:36: 46:f3:2b:34:2d:3e:02:21:55:97:2f:e3:25:4e:5f: 72:0d:78:bd:26:fc:5a:74:38:40:74:8b:93:4f:63: dc:67:67:88:52:de:c4:f1:0d:c0:ac:a3:2f:2e:a3: 9c:90:8a:3a:74:5b:db:43:78:2e:16:7a:9e:c3:8c: 62:be:ab:99:42:ca:61:6f:03:77:f3:08:c2:62:2c: 98:d4:30:d2:df:89:c9:8e:15:f8:9e:9d:fd:3a:22: 76:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:52:F8:E1:BA:CC:0F:CD:99:A3:2A:74:E0:89:7B:5E:64:74:D0:E8 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:13:c5:54:80:e9:79:79:2b:71:f8:4d:42:3b:a1:70:ce:d2: 39:20:62:94:b7:53:71:63:23:d7:8c:29:8b:fe:fc:5a:b7:33: 88:0f:65:a9:2a:f3:f9:3b:31:73:f1:4b:1c:c1:36:b7:bc:63: 91:79:1b:34:31:bb:1d:85:40:12:93:80:6f:0e:be:fe:3d:a3: fb:c2:95:4d:8d:05:4b:c7:9b:21:58:08:de:98:11:46:50:ae: bf:df:b4:22:dc:d1:db:00:2c:46:be:c3:f1:b4:fe:e8:97:c6: 92:67:81:3b:47:24:7b:6f:11:9e:75:cd:5d:d2:d0:ae:c2:4f: db:ad:71:d9:ca:71:b8:d3:bd:a0:ad:44:55:86:c0:f4:66:34: 29:21:0d:a6:ef:5d:6a:01:bb:05:c8:5b:c9:01:73:6c:d0:60: 65:dd:9b:67:4e:bc:ad:b5:ca:c9:37:0d:05:50:15:6e:1a:3f: bc:2e:b4:cb:90:71:7f:8e:1c:ef:63:96:14:c6:80:83:2b:49: c5:46:6d:5b:5e:d8:7a:f0:a5:52:14:12:71:43:b7:8f:72:47: 90:84:7b:76:91:52:3c:41:59:66:c2:d5:54:8c:18:26:32:48: 20:9b:eb:c1:d1:dd:af:16:66:74:dc:bd:4b:a8:fd:43:74:2f: 58:9f:f5:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjYwMzAyMDA1NTI5WhcNMjYwMzA5MDA1NTI5WjAYMRYwFAYD VQQDEw02OWE0ZTAwMi1mMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucB9taxK/3DNlK/WE0Wr9Sh6NPm6MyWYpidgb36K2y/ysovn1x7fwOZLFnjH OrmhJtpL53CSkUlmdpBdFeffZwVoM+9EHxZgFVH6Ej4dGCqE3ol/bD9O1+O1WZt0 aO85Yoyh1C4troYkHbAa9O0Ag/30pX9bB/8mas9NDvNP05dGNPpUaxeaFbFyC6zY VpcOldrB/jrbHph2mLX08xjdwQoeAjZG8ys0LT4CIVWXL+MlTl9yDXi9JvxadDhA dIuTT2PcZ2eIUt7E8Q3ArKMvLqOckIo6dFvbQ3guFnqew4xivquZQsphbwN38wjC YiyY1DDS34nJjhX4np39OiJ2PQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBFS+OG6 zA/NmaMqdOCJe15kdNDoMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhh anFZSWNmbzhOQVlkdE04NE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADxPFVIDpeXkrcfhNQjuhcM7SOSBilLdTcWMj14wpi/78WrcziA9lqSrz+Tsx c/FLHME2t7xjkXkbNDG7HYVAEpOAbw6+/j2j+8KVTY0FS8ebIVgI3pgRRlCuv9+0 ItzR2wAsRr7D8bT+6JfGkmeBO0cke28RnnXNXdLQrsJP261x2cpxuNO9oK1EVYbA 9GY0KSENpu9dagG7BchbyQFzbNBgZd2bZ068rbXKyTcNBVAVbho/vC60y5Bxf44c 72OWFMaAgytJxUZtW17YevClUhQScUO3j3JHkIR7dpFSPEFZZsLVVIwYJjJIIJvr wdHdrxZmdNy9S6j9Q3QvWJ/16Q== -----END CERTIFICATE-----Generated at Mon Mar 2 12:51:30 2026 by rpki-client