$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: MHVeISW8X1hE5vAHXe6wvaE0vUMf/szpd+GTi9aMW1c= Subject key identifier: 2E:6F:D6:F7:C3:2F:D3:F5:B2:2D:4F:D7:64:A4:39:4B:50:D9:1E:E8 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 01B2 Signing time: Mon 02 Mar 2026 02:12:59 +0000 Manifest this update: Mon 02 Mar 2026 02:12:58 +0000 Manifest next update: Mon 09 Mar 2026 02:12:58 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: c8zGMkdK3dpCjjkYSOuL6jQaBhhJ4JqVaKpDWgXf3aA=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: zfGF7KOCQQRDY2l23rBtYS3NirQreMdPDlzYfVapP6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Mar 2 02:12:58 2026 GMT Not After : Mar 9 02:12:58 2026 GMT Subject: CN=69a4f22b-0553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a2:23:fc:04:96:8f:25:82:4e:4d:6f:7c:53: 4f:f0:6d:91:09:f1:64:d2:42:77:ee:ee:50:7a:54: 34:0f:5a:1c:b3:67:c3:e3:e5:f1:5c:b0:20:b0:e8: f4:48:b7:ef:8f:58:7f:0c:41:5b:60:84:d8:05:b6: 02:48:d2:2b:8d:59:96:dd:cd:46:f8:97:3c:36:be: 3c:d2:9b:55:79:0a:dd:49:72:e3:87:c0:6b:ea:5d: ef:4e:53:e4:54:41:bc:fd:84:de:80:20:b8:d6:e7: b2:06:1e:f8:80:26:bd:0c:d1:6c:8c:8d:f3:a2:2b: ef:3e:b7:2a:22:c9:6e:19:48:0e:ed:76:14:5d:f4: 08:79:a6:ad:6b:aa:46:16:f6:fb:0b:16:46:ab:d8: c7:8d:e4:dc:3e:e2:2e:32:8b:b3:5a:6c:08:5b:88: e3:2c:32:88:18:92:6d:5f:7d:af:7f:66:0a:be:80: ff:38:6b:e0:c5:49:2d:4c:b0:d6:bb:4f:78:94:19: d8:65:01:7f:ec:24:38:15:62:52:54:f8:e1:13:08: fa:44:d9:f6:86:3d:ad:72:f3:74:d8:0f:2c:ed:bf: 0b:18:b1:c1:5d:6c:e8:c8:31:e7:35:70:36:a1:a0: d5:6f:a6:80:7a:64:e2:9f:26:f6:fe:fc:2e:25:4b: 8b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6F:D6:F7:C3:2F:D3:F5:B2:2D:4F:D7:64:A4:39:4B:50:D9:1E:E8 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:37:22:6f:a2:0d:d3:45:6f:5a:bc:c6:72:a9:af:3d:41:99: 7a:22:dd:a3:f1:46:4e:35:18:ea:0a:5a:b1:c4:37:d2:fb:77: 6f:f3:8f:8f:b6:2b:2b:98:14:7c:8f:25:cc:89:87:43:4c:fb: d0:1d:e5:84:4f:61:2a:a4:c9:6c:e3:af:de:95:91:06:ee:dc: 31:7b:86:c8:cf:9c:14:0e:4b:5a:bc:91:69:8e:f8:04:f3:18: e9:2d:8f:20:e6:4d:2c:84:5c:8d:c7:b5:30:dc:c2:4f:98:03: 1c:d3:df:bd:6a:2b:d9:d4:4b:e3:fc:85:87:47:52:d6:d8:f3: 01:30:47:3d:67:21:dd:56:e7:64:ef:10:4a:33:f3:68:4f:94: 87:45:2e:1d:7d:07:bd:95:5b:b3:c9:c4:d6:ba:da:48:17:79: b0:3a:72:38:f1:e8:30:a5:dd:b7:6d:03:92:07:21:a0:68:c1: d7:be:22:e4:41:c7:f9:77:f6:99:16:8b:e6:fc:e2:70:c8:67: 17:d1:bc:70:ea:ab:ae:dc:32:b6:a0:f4:e4:3c:61:08:53:6f: b7:b7:0d:a9:db:4c:60:8b:b5:2f:c8:d6:07:97:9a:a8:cb:88: 8e:a8:3d:eb:6a:8e:b6:d4:d8:db:cf:d5:c3:e9:f4:d7:74:35: b6:3f:66:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjYwMzAyMDIxMjU4WhcNMjYwMzA5MDIxMjU4WjAYMRYwFAYD VQQDEw02OWE0ZjIyYi0wNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKIj/ASWjyWCTk1vfFNP8G2RCfFk0kJ37u5QelQ0D1ocs2fD4+XxXLAgsOj0 SLfvj1h/DEFbYITYBbYCSNIrjVmW3c1G+Jc8Nr480ptVeQrdSXLjh8Br6l3vTlPk VEG8/YTegCC41ueyBh74gCa9DNFsjI3zoivvPrcqIsluGUgO7XYUXfQIeaata6pG Fvb7CxZGq9jHjeTcPuIuMouzWmwIW4jjLDKIGJJtX32vf2YKvoD/OGvgxUktTLDW u094lBnYZQF/7CQ4FWJSVPjhEwj6RNn2hj2tcvN02A8s7b8LGLHBXWzoyDHnNXA2 oaDVb6aAemTinyb2/vwuJUuLbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC5v1vfD L9P1si1P12SkOUtQ2R7oMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKTcib6IN00VvWrzGcqmvPUGZeiLdo/FGTjUY6gpascQ30vt3b/OPj7YrK5gU fI8lzImHQ0z70B3lhE9hKqTJbOOv3pWRBu7cMXuGyM+cFA5LWryRaY74BPMY6S2P IOZNLIRcjce1MNzCT5gDHNPfvWor2dRL4/yFh0dS1tjzATBHPWch3VbnZO8QSjPz aE+Uh0UuHX0HvZVbs8nE1rraSBd5sDpyOPHoMKXdt20DkgchoGjB174i5EHH+Xf2 mRaL5vzicMhnF9G8cOqrrtwytqD05DxhCFNvt7cNqdtMYIu1L8jWB5eaqMuIjqg9 62qOttTY28/Vw+n013Q1tj9mhg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:38:38 2026 by rpki-client