$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: 3TAvWfCv1bwwtclXcwi0vlA43uqbLBCv3+biCGiR8LM= Subject key identifier: AE:26:C8:AF:B9:53:71:00:D2:0A:7A:7E:1E:E9:0D:B2:B4:E8:E0:8C Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 07DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 07D1 Signing time: Mon 02 Mar 2026 21:11:13 +0000 Manifest this update: Mon 02 Mar 2026 21:11:13 +0000 Manifest next update: Mon 09 Mar 2026 21:11:13 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: bPxvmXQZm2IjHIpVry/Q0NYjlbutaPZAzJo3otMKgUE=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: /ee3Z/RejGv34651CFjDfo357/BI2yYheaPQiVddGg4=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: +Ytbh6uS9SueVTTFSqsYD08Z5VmVPcYhz5ek3giGdE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 21:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2014 (0x7de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Mar 2 21:11:13 2026 GMT Not After : Mar 9 21:11:13 2026 GMT Subject: CN=69a5fcf1-1189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:24:95:bc:66:b2:f7:04:0a:3b:62:63:64:9a: 12:17:75:53:56:b8:0d:0c:1a:b8:f1:8a:94:55:1e: 24:40:41:f8:0f:e3:a7:74:ea:a3:9d:39:8c:47:da: b6:89:8d:89:56:e4:34:db:1d:a7:b5:c1:73:7b:3c: 10:d4:c0:8e:3c:00:66:97:ce:f4:05:b1:ba:fb:f0: 7b:4a:b1:e5:50:32:ff:b4:53:3c:be:c0:b3:2e:61: c1:8d:7e:c3:bd:64:7c:22:7f:53:10:c1:25:6a:c1: 7c:0b:19:3d:e5:4c:98:3c:9a:c6:ca:7a:84:3e:02: b6:a2:40:77:65:43:a9:2a:cf:88:fa:a5:2c:1a:f3: c5:75:aa:26:5b:08:0a:57:a4:a6:21:e3:0c:fd:2a: 11:f3:ed:c3:c3:77:12:00:aa:3e:32:86:28:76:a9: 8b:6b:75:ba:93:37:e9:6d:3d:d5:1e:ae:1f:36:da: f6:53:06:ef:6c:28:45:af:4a:03:1a:73:ec:37:a7: 3d:5e:a4:06:e7:91:a3:60:ca:2b:86:83:4c:00:3f: f6:30:e4:28:9d:a4:a9:56:bf:7b:e3:17:95:e8:d3: e7:48:1c:fb:fa:60:6a:11:fe:49:9c:56:6d:e0:ca: ab:b9:fe:d5:f1:4e:0f:9b:f2:be:f4:cc:33:7a:f0: c7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:26:C8:AF:B9:53:71:00:D2:0A:7A:7E:1E:E9:0D:B2:B4:E8:E0:8C X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:d0:6e:59:7e:cd:59:3f:54:08:63:40:26:18:78:2c:d6:e7: f4:c4:6e:37:8f:ce:7f:40:66:d0:ac:27:ea:c2:86:56:24:a5: 4f:16:36:55:58:1c:64:fc:6b:e3:79:36:c0:bb:5c:f2:a2:03: ff:98:6f:0d:08:8f:c0:52:00:78:7d:28:4d:85:87:b9:ca:d0: 50:b8:ee:f0:fb:11:13:c1:ab:0f:5e:68:73:ad:96:ae:be:ae: d0:39:ff:1c:6c:c1:ac:eb:79:00:7d:0d:87:e4:8d:b3:f2:e8: 04:26:c5:26:fe:be:86:bc:e0:c9:91:e7:e1:b0:b0:86:b0:0c: bc:0a:cc:09:81:5a:21:9e:cc:39:59:94:7a:72:5b:7e:3e:66: 8b:dd:2b:42:57:fb:6e:16:9f:d0:de:c8:8b:09:d0:f7:ba:3e: ed:cc:db:4a:8d:1b:d3:6f:c2:96:d6:2a:04:a3:fd:03:28:53: 2d:95:d6:37:9c:54:f5:a7:a8:72:97:40:b5:d9:6b:1b:fb:28: 64:40:22:67:0a:96:c6:ae:1c:74:11:47:01:15:72:ea:dc:bc: 58:32:99:11:7e:0a:02:ab:9a:06:09:84:7f:9b:93:a0:00:34: 0f:43:34:b1:35:6a:6b:a1:26:8e:84:47:e5:09:ba:89:32:cb: 75:d6:02:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjYwMzAyMjExMTEzWhcNMjYwMzA5MjExMTEzWjAYMRYwFAYD VQQDEw02OWE1ZmNmMS0xMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCSVvGay9wQKO2JjZJoSF3VTVrgNDBq48YqUVR4kQEH4D+OndOqjnTmMR9q2 iY2JVuQ02x2ntcFzezwQ1MCOPABml870BbG6+/B7SrHlUDL/tFM8vsCzLmHBjX7D vWR8In9TEMElasF8Cxk95UyYPJrGynqEPgK2okB3ZUOpKs+I+qUsGvPFdaomWwgK V6SmIeMM/SoR8+3Dw3cSAKo+MoYodqmLa3W6kzfpbT3VHq4fNtr2UwbvbChFr0oD GnPsN6c9XqQG55GjYMorhoNMAD/2MOQonaSpVr974xeV6NPnSBz7+mBqEf5JnFZt 4Mqruf7V8U4Pm/K+9MwzevDHmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK4myK+5 U3EA0gp6fh7pDbK06OCMMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACNBuWX7NWT9UCGNAJhh4LNbn9MRuN4/Of0Bm0Kwn6sKGViSlTxY2VVgcZPxr 43k2wLtc8qID/5hvDQiPwFIAeH0oTYWHucrQULju8PsRE8GrD15oc62Wrr6u0Dn/ HGzBrOt5AH0Nh+SNs/LoBCbFJv6+hrzgyZHn4bCwhrAMvArMCYFaIZ7MOVmUenJb fj5mi90rQlf7bhaf0N7IiwnQ97o+7czbSo0b02/CltYqBKP9AyhTLZXWN5xU9aeo cpdAtdlrG/soZEAiZwqWxq4cdBFHARVy6ty8WDKZEX4KAquaBgmEf5uToAA0D0M0 sTVqa6EmjoRH5Qm6iTLLddYCmQ== -----END CERTIFICATE-----Generated at Wed Mar 4 16:05:50 2026 by rpki-client