$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: MtoFjNhLfWGve1L7DY/Z0vsp+wPvIW+LCVwCbyeOlJA= Subject key identifier: 41:69:CD:67:06:35:B5:F5:5E:9E:4D:81:70:9A:B3:9E:5B:4B:AB:BE Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2CCD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2CCA Signing time: Fri 06 Mar 2026 14:25:58 +0000 Manifest this update: Fri 06 Mar 2026 14:25:58 +0000 Manifest next update: Fri 13 Mar 2026 14:25:58 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: +xscLuGj1DyvscnMPkIdGStgixT7HXAi2CRJ/ht+5KU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11469 (0x2ccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Mar 6 14:25:58 2026 GMT Not After : Mar 13 14:25:58 2026 GMT Subject: CN=69aae3f6-edfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:76:dd:e7:8a:fb:e6:cf:07:6c:f8:89:2d: a9:b1:3c:e3:d1:cc:6a:f2:70:80:ab:03:e6:c5:ef: d2:8a:50:3c:53:12:17:b4:6e:4c:c6:f2:6b:da:78: db:a4:80:bf:cb:12:09:7f:86:50:99:52:fe:c6:c5: fd:f4:f8:ab:c9:d4:87:59:d4:b3:f9:b4:db:0f:a7: a3:38:ef:d6:04:1f:25:32:d9:1b:98:ce:3f:45:61: d5:7a:a1:24:95:93:52:bb:01:b5:03:32:eb:9a:94: 0d:4e:d4:8e:af:c4:59:ba:30:7f:7d:c7:d5:72:67: 08:6d:9e:f5:a2:68:cb:98:7c:7e:78:3d:c7:47:ae: b5:0b:f6:28:da:aa:e3:a2:b0:a8:cc:af:fd:f5:97: a4:fb:20:1e:0c:e4:c3:6d:d3:97:3c:13:38:a8:ec: e4:18:18:75:1c:1c:06:fb:07:a2:ae:29:6c:16:65: 3a:85:51:b7:6f:de:ef:c1:50:07:62:5c:24:f2:54: 9b:aa:1c:f0:00:91:d8:eb:3c:b3:c3:29:03:72:9c: 57:b8:c6:00:7f:84:bd:89:b6:53:f8:6e:26:7a:6b: f1:c7:f1:a1:21:44:54:c2:fe:11:76:19:89:5d:a4: 5b:29:7a:a4:3a:ee:19:21:a7:e5:c9:a5:d9:ec:93: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:69:CD:67:06:35:B5:F5:5E:9E:4D:81:70:9A:B3:9E:5B:4B:AB:BE X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a7:84:25:60:2c:b4:d3:6b:e2:87:8c:ca:08:7c:16:c2:8c: 4b:f4:db:a5:56:7b:45:2c:79:48:8b:d8:a6:11:c1:88:ef:4c: d7:63:89:cf:b5:04:f0:b0:1d:7d:0e:9c:29:f3:8e:0f:68:89: 73:e1:99:d7:3a:17:86:cf:19:bb:c8:6b:2c:5d:7f:53:9e:38: 21:88:23:55:e8:d0:8b:1b:4a:85:84:00:e6:3c:f1:3e:dd:69: 71:3a:8a:10:fe:c0:64:de:f8:fd:c9:cf:fc:a0:e4:d1:cc:bc: 59:57:9c:ca:6d:d1:7b:9b:11:02:4c:b9:24:73:92:82:5c:10: 6d:ce:c0:76:91:2f:d2:95:a5:60:ca:79:ce:21:ae:f0:fb:5f: 5c:8a:6b:5e:e0:2b:8b:29:f3:65:9d:fa:49:ea:d2:68:55:79: d7:c8:1f:0e:96:ad:d3:bc:21:ba:f6:77:53:80:79:4b:5f:85: cd:80:d3:9c:9e:af:e0:5c:37:5e:5f:f1:56:72:dd:29:71:b7: c3:39:43:a6:56:51:24:ab:8b:a8:5c:84:ab:dd:39:4f:65:e7: 91:d1:68:0b:91:e0:80:16:4f:d3:62:35:f2:38:13:0d:63:d6: ee:8a:ad:14:b4:03:ba:73:41:7b:ed:1b:b6:74:56:f7:c8:06: 8e:a1:01:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjYwMzA2MTQyNTU4WhcNMjYwMzEzMTQyNTU4WjAYMRYwFAYD VQQDEw02OWFhZTNmNi1lZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMV23eeK++bPB2z4iS2psTzj0cxq8nCAqwPmxe/SilA8UxIXtG5MxvJr2njb pIC/yxIJf4ZQmVL+xsX99PirydSHWdSz+bTbD6ejOO/WBB8lMtkbmM4/RWHVeqEk lZNSuwG1AzLrmpQNTtSOr8RZujB/fcfVcmcIbZ71omjLmHx+eD3HR661C/Yo2qrj orCozK/99Zek+yAeDOTDbdOXPBM4qOzkGBh1HBwG+weirilsFmU6hVG3b97vwVAH Ylwk8lSbqhzwAJHY6zyzwykDcpxXuMYAf4S9ibZT+G4memvxx/GhIURUwv4RdhmJ XaRbKXqkOu4ZIaflyaXZ7JN4bwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFpzWcG NbX1Xp5NgXCas55bS6u+MB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACqeEJWAstNNr4oeMygh8FsKMS/TbpVZ7RSx5SIvYphHBiO9M12OJz7UE8LAd fQ6cKfOOD2iJc+GZ1zoXhs8Zu8hrLF1/U544IYgjVejQixtKhYQA5jzxPt1pcTqK EP7AZN74/cnP/KDk0cy8WVecym3Re5sRAky5JHOSglwQbc7AdpEv0pWlYMp5ziGu 8PtfXIprXuAriynzZZ36SerSaFV518gfDpat07whuvZ3U4B5S1+FzYDTnJ6v4Fw3 Xl/xVnLdKXG3wzlDplZRJKuLqFyEq905T2XnkdFoC5HggBZP02I18jgTDWPW7oqt FLQDunNBe+0btnRW98gGjqEBBA== -----END CERTIFICATE-----Generated at Sat Mar 7 14:39:18 2026 by rpki-client