$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: IUv3vwFQyIPOJSN2GzQhGtY5Qll15ilBA4tl1lkpNVk= Subject key identifier: 57:8B:B0:E1:65:F6:89:34:63:3C:9D:C1:39:3F:8F:A3:02:16:65:3C Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C96 Signing time: Mon 02 Mar 2026 17:50:58 +0000 Manifest this update: Mon 02 Mar 2026 17:50:58 +0000 Manifest next update: Mon 09 Mar 2026 17:50:58 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: FqIMRugHIOVKRXO8doriwVWeIcxjiNAa/js8HUylZsg=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 17:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Mar 2 17:50:58 2026 GMT Not After : Mar 9 17:50:58 2026 GMT Subject: CN=69a5ce02-9ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:8c:bb:da:60:d2:ae:4e:da:38:4e:d4:26: 3b:4e:1e:a1:51:44:01:59:dd:8f:85:2c:7f:69:99: c3:39:bd:bc:b9:d2:26:c7:b8:f1:44:fb:ff:0a:6f: 2a:c2:b2:35:c8:5d:f3:ec:cd:d9:e2:7e:cb:98:9c: cc:48:dd:6f:80:68:c2:5a:13:fd:fb:c9:76:d1:d2: ac:f1:c8:a6:35:53:64:fa:69:f1:6f:7a:85:1e:12: ab:1a:6d:e7:4e:dd:85:97:f3:ab:81:07:40:af:e0: ad:6f:da:9e:e2:7e:ac:a4:3b:e9:31:31:aa:92:80: 1b:47:b6:d4:ae:27:56:fb:29:c6:40:e1:e4:b0:57: d1:ce:56:72:14:52:3f:98:a8:4c:5b:a0:1e:84:b0: 6c:ca:e3:79:ae:da:ea:87:40:bd:7d:16:47:de:96: 7a:73:50:f5:29:24:67:c1:e1:7f:15:79:f9:eb:ac: 1f:36:e7:d3:a3:b5:b3:57:f4:1e:3b:9c:87:30:86: f5:69:6f:a0:a0:52:36:7b:9f:4c:e9:da:bf:e2:da: a9:9f:5b:5f:86:9a:80:37:d2:c4:e6:2b:27:77:df: 87:ed:26:e8:a1:72:81:a5:43:b7:60:d1:fd:dd:17: 24:e3:54:aa:a8:65:71:89:79:a0:77:a0:f5:ec:6d: 46:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8B:B0:E1:65:F6:89:34:63:3C:9D:C1:39:3F:8F:A3:02:16:65:3C X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7e:0b:0d:59:e4:9e:3b:c3:41:65:af:1d:02:60:bc:bd:1f: f5:b2:4c:d4:cf:f5:7b:23:cc:45:81:7c:49:1f:e6:f4:e2:07: 20:b4:01:58:dc:eb:d0:ee:46:5e:8c:24:be:b5:f6:68:43:e8: c6:de:0a:0f:6e:49:2d:f7:46:31:fa:18:9c:47:7c:41:b3:76: 31:16:af:a9:af:02:c3:ec:b3:9c:e2:b3:b3:b4:4d:dd:b4:f2: fb:52:98:57:28:65:de:c2:ea:6d:62:a1:cd:3a:2c:c7:d6:35: 4b:e0:e8:00:50:c5:4b:6a:96:37:c7:3c:00:b7:a7:52:3a:75: cf:f0:54:77:71:7b:ff:68:a2:2d:58:8d:31:9d:93:95:9c:1f: c6:59:53:06:65:58:19:bd:93:72:75:fa:f1:6f:d7:96:5c:44: 00:70:52:6a:1c:61:b8:51:32:8f:00:6f:bd:c7:c3:1c:c4:1d: 28:46:2e:47:8c:d8:0d:2b:60:3a:5e:a7:b3:72:4d:6c:8e:44: 70:bc:17:d2:10:1c:d3:c9:e2:5c:c2:bf:bd:5b:24:ce:ae:0f: 26:28:2b:28:94:49:26:5b:0a:3d:51:4e:ee:c9:41:77:14:ec: 1b:7d:28:71:2a:be:7a:38:a7:f2:d7:f4:cd:ca:eb:dd:e6:0b: 81:71:5f:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjYwMzAyMTc1MDU4WhcNMjYwMzA5MTc1MDU4WjAYMRYwFAYD VQQDEw02OWE1Y2UwMi05ZWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzmMu9pg0q5O2jhO1CY7Th6hUUQBWd2PhSx/aZnDOb28udImx7jxRPv/Cm8q wrI1yF3z7M3Z4n7LmJzMSN1vgGjCWhP9+8l20dKs8cimNVNk+mnxb3qFHhKrGm3n Tt2Fl/OrgQdAr+Ctb9qe4n6spDvpMTGqkoAbR7bUridW+ynGQOHksFfRzlZyFFI/ mKhMW6AehLBsyuN5rtrqh0C9fRZH3pZ6c1D1KSRnweF/FXn566wfNufTo7WzV/Qe O5yHMIb1aW+goFI2e59M6dq/4tqpn1tfhpqAN9LE5isnd9+H7SbooXKBpUO3YNH9 3Rck41SqqGVxiXmgd6D17G1GNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFeLsOFl 9ok0YzydwTk/j6MCFmU8MB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc34LDVnknjvDQWWvHQJgvL0f9bJM1M/1eyPMRYF8SR/m9OIHILQBWNzr0O5G XowkvrX2aEPoxt4KD25JLfdGMfoYnEd8QbN2MRavqa8Cw+yznOKzs7RN3bTy+1KY Vyhl3sLqbWKhzTosx9Y1S+DoAFDFS2qWN8c8ALenUjp1z/BUd3F7/2iiLViNMZ2T lZwfxllTBmVYGb2TcnX68W/XllxEAHBSahxhuFEyjwBvvcfDHMQdKEYuR4zYDStg Ol6ns3JNbI5EcLwX0hAc08niXMK/vVskzq4PJigrKJRJJlsKPVFO7slBdxTsG30o cSq+ejin8tf0zcrr3eYLgXFfAw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:41:28 2026 by rpki-client