$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: 5wvFF9WKlXj2ScfcQFnOt71ieRFjJ+bBTcuBuZC6Xwc= Subject key identifier: E9:D5:27:23:16:5E:C0:E4:8B:50:77:A8:2A:CD:FA:E6:C5:5F:78:72 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 1138 Signing time: Sat 28 Feb 2026 17:20:13 +0000 Manifest this update: Sat 28 Feb 2026 17:20:12 +0000 Manifest next update: Sat 07 Mar 2026 17:20:12 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: AjTsmFw0V624HOdsodLdFbqE2VCL6085TyIxk17BFco=) 2: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: tpKBG2KlXfT/Zt122B62y1RWSYubHmXeyHELnt2EtS4=) 3: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: IHi+IFG70AY+pGCPcqa0F+qxqcr2LZY1LLXZfYW/jkU=) 4: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: lCmO2moRnEyFjHn2T0RrSpJHfoRMsDo8flibJ/q1im8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4435 (0x1153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Feb 28 17:20:12 2026 GMT Not After : Mar 7 17:20:12 2026 GMT Subject: CN=69a323cd-2c55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:f4:ec:a1:7a:63:7a:c4:f2:b0:0f:9a:3b: 06:1f:e6:37:8d:97:8d:98:ee:eb:5e:1c:c2:74:8a: 13:ad:b1:b7:5d:9e:37:a6:63:dd:02:c7:62:d6:c1: 3b:2b:cc:78:d3:0b:5c:f1:d4:4c:2b:b0:e5:95:af: 11:f4:cb:ef:a3:c6:47:c1:2f:af:07:f8:d9:3b:89: 82:3e:bd:28:55:de:96:92:77:50:64:79:e2:fc:6e: bf:5c:d4:af:97:2a:3d:46:01:85:72:54:02:3b:a3: c1:cf:1c:14:ff:db:32:02:c2:1b:df:75:bc:61:d1: 12:ee:36:a4:4c:c5:5b:39:dd:5a:fb:ef:31:f4:35: 3b:dd:38:f3:eb:20:2b:38:f5:ea:f2:f1:76:07:ce: 5b:a4:4e:03:ca:bc:69:ab:e6:24:83:91:5a:59:8c: 02:36:66:87:ea:79:21:fe:5f:33:e1:58:59:42:46: 03:21:fd:ce:92:9d:57:5b:80:26:a2:33:77:e2:f5: 50:a8:ce:a3:14:47:b5:af:70:e9:16:0f:0c:4e:0d: 1f:88:c2:47:67:83:5b:55:87:2b:cf:bb:5b:08:07: f7:92:57:2c:a3:d2:80:b7:d6:bb:cc:40:85:31:91: e2:96:f6:a3:93:04:7a:9e:96:72:9b:de:8c:c0:18: ce:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D5:27:23:16:5E:C0:E4:8B:50:77:A8:2A:CD:FA:E6:C5:5F:78:72 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c2:57:9b:50:1a:06:70:f5:10:05:52:46:02:c9:1f:2a:bd: bf:8b:f2:62:2c:9b:62:98:79:37:8c:df:87:c7:f9:c5:43:cb: c0:48:a8:72:a3:30:6a:25:97:64:16:4d:dc:52:fb:33:97:72: bc:7b:d1:af:c2:38:a8:57:51:15:7e:83:a1:86:3d:4c:f6:d0: 2f:f8:3a:d2:7d:d6:79:b0:90:14:3e:50:cd:52:72:1d:81:28: b1:ad:24:4d:91:bd:1f:64:f8:78:fd:ec:0e:c2:4e:7b:fd:b9: fc:73:e3:03:b6:f5:9c:ad:ac:8d:52:d7:af:bb:2c:19:67:81: 7f:ea:aa:67:b8:9a:cd:80:81:7a:47:33:44:0a:1a:8d:be:c5: d4:7e:86:21:63:ea:48:b9:d8:53:9a:9d:84:cd:2a:b0:cc:9b: 31:25:9b:58:92:3b:3f:8c:a1:8e:44:5d:25:bc:20:f3:f7:0d: 9f:a2:ac:8c:9f:41:a0:07:09:60:e7:b4:8c:e0:ae:72:ec:2c: 76:21:9f:14:a2:03:16:55:af:41:4b:35:ae:49:15:be:7d:71: 63:a2:22:17:db:b3:b9:99:d0:a1:bf:24:be:a6:ba:10:e4:b4: 9f:e0:b1:59:1f:c7:ea:c4:cc:e7:c1:97:77:94:08:5c:f9:74: 4e:88:21:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjYwMjI4MTcyMDEyWhcNMjYwMzA3MTcyMDEyWjAYMRYwFAYD VQQDDA02OWEzMjNjZC0yYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo307KF6Y3rE8rAPmjsGH+Y3jZeNmO7rXhzCdIoTrbG3XZ43pmPdAsdi1sE7 K8x40wtc8dRMK7Dlla8R9Mvvo8ZHwS+vB/jZO4mCPr0oVd6WkndQZHni/G6/XNSv lyo9RgGFclQCO6PBzxwU/9syAsIb33W8YdES7jakTMVbOd1a++8x9DU73Tjz6yAr OPXq8vF2B85bpE4Dyrxpq+Ykg5FaWYwCNmaH6nkh/l8z4VhZQkYDIf3Okp1XW4Am ojN34vVQqM6jFEe1r3DpFg8MTg0fiMJHZ4NbVYcrz7tbCAf3klcso9KAt9a7zECF MZHilvajkwR6npZym96MwBjOcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOnVJyMW XsDki1B3qCrN+ubFX3hyMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXMJXm1AaBnD1EAVSRgLJHyq9v4vyYiybYph5N4zfh8f5xUPLwEiocqMwaiWX ZBZN3FL7M5dyvHvRr8I4qFdRFX6DoYY9TPbQL/g60n3WebCQFD5QzVJyHYEosa0k TZG9H2T4eP3sDsJOe/25/HPjA7b1nK2sjVLXr7ssGWeBf+qqZ7iazYCBekczRAoa jb7F1H6GIWPqSLnYU5qdhM0qsMybMSWbWJI7P4yhjkRdJbwg8/cNn6KsjJ9BoAcJ YOe0jOCucuwsdiGfFKIDFlWvQUs1rkkVvn1xY6IiF9uzuZnQob8kvqa6EOS0n+Cx WR/H6sTM58GXd5QIXPl0Togh0Q== -----END CERTIFICATE-----Generated at Sun Mar 1 21:08:58 2026 by rpki-client