$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: eatS+Lbq0UdMmUQDfUNc0JilXj6UxT691zZFylpyxRE= Subject key identifier: 61:BA:33:38:50:A5:37:0E:6E:BB:76:53:A6:55:82:A3:13:FE:AC:6E Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01E2 Signing time: Tue 03 Mar 2026 03:07:20 +0000 Manifest this update: Tue 03 Mar 2026 03:07:19 +0000 Manifest next update: Tue 10 Mar 2026 03:07:19 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: PKDqzgd15xproTXAU6a35KDV8N599Lm/nmaaccfTJhI=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: usH+mk51VBx4IO/Jnd24Cx5sUXY3pfqSRJBol6HvMcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Mar 3 03:07:19 2026 GMT Not After : Mar 10 03:07:19 2026 GMT Subject: CN=69a65068-411c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:ad:8c:0b:f5:7c:47:05:bc:9f:92:2d:6e: f7:9b:e7:f1:3e:2c:ac:80:8b:85:a3:ad:a4:81:94: 9e:44:16:ea:1f:37:ce:b8:e4:9d:6d:af:e5:84:2e: 95:63:d3:ae:e0:62:04:7b:b4:64:3e:0b:67:10:c3: 0b:00:8f:bb:ca:3a:f5:9f:a8:56:94:cb:f4:e4:3e: 8b:9d:37:ac:93:1d:2e:9f:2b:c6:93:1d:ea:6e:30: 28:a7:a4:a3:51:09:7a:62:0c:b7:8d:92:61:c5:3c: 97:a0:54:f8:64:e9:ed:c5:ef:2d:06:8b:a5:05:94: 73:b0:9e:7a:74:2a:f6:2f:c3:e5:46:b5:4f:61:f6: a5:7d:c8:24:26:11:dd:0d:31:1c:01:a2:16:f3:1e: 3b:f6:53:8a:ee:98:36:19:d4:5f:11:99:69:7e:1c: 94:f0:3b:e4:7c:86:cd:fe:7e:c2:2d:8b:87:66:58: c6:1b:ee:cf:7b:f1:66:88:d2:25:d7:ef:1e:79:47: 6a:f3:a6:b4:9a:2a:56:d1:57:5c:97:c6:46:01:22: b2:3d:6a:7b:be:93:75:31:c8:fd:35:3f:60:35:d0: 66:92:7b:87:dd:98:ef:be:45:b0:8a:f1:7a:d1:08: 05:3f:97:d3:a5:a3:56:98:6e:85:3c:b4:00:bf:e8: f5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BA:33:38:50:A5:37:0E:6E:BB:76:53:A6:55:82:A3:13:FE:AC:6E X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:bd:e6:9a:06:90:21:7f:37:6b:76:b1:4e:b4:47:e8:8d:e3: 6c:a2:c8:86:d9:63:e8:df:b0:e1:2d:b1:ac:d5:89:3e:ca:f0: bd:e1:ac:89:87:df:d2:cf:eb:89:e5:a7:16:8e:76:d6:2d:9f: 33:55:cc:3e:9a:43:90:e1:33:0f:13:ea:91:25:86:46:af:a6: 9d:08:e6:e2:df:f1:4c:16:99:4f:b6:be:55:e5:16:52:80:8b: a5:d3:ce:a6:f9:60:fc:c5:93:ac:39:53:d3:8e:11:15:b9:77: ff:08:81:6b:74:7c:c4:d6:3d:98:4d:3c:db:96:72:00:c4:30: 05:2b:2e:07:66:bb:c1:75:69:62:07:e8:c7:2a:f2:85:d7:29: 57:d0:53:f5:fd:6b:35:2d:1b:5c:c9:50:85:fe:9b:55:d6:d6: 82:f9:70:b6:66:0a:c4:26:73:a3:5b:27:4b:04:15:7c:40:98: da:07:da:d3:ec:13:80:20:c0:c1:24:70:d2:91:16:e5:a3:a7: 8c:e3:cb:3d:c4:7b:99:fc:06:80:39:82:80:a1:82:2a:21:ac: 98:4c:7b:78:ad:7a:b7:b4:e4:cb:bf:b7:fe:44:a6:08:f0:51: 1f:d0:46:30:8e:c1:9b:d6:80:67:fa:03:43:b1:73:ed:46:98: 54:a7:58:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwMzAzMDMwNzE5WhcNMjYwMzEwMDMwNzE5WjAYMRYwFAYD VQQDEw02OWE2NTA2OC00MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGGtjAv1fEcFvJ+SLW73m+fxPiysgIuFo62kgZSeRBbqHzfOuOSdba/lhC6V Y9Ou4GIEe7RkPgtnEMMLAI+7yjr1n6hWlMv05D6LnTeskx0unyvGkx3qbjAop6Sj UQl6Ygy3jZJhxTyXoFT4ZOntxe8tBoulBZRzsJ56dCr2L8PlRrVPYfalfcgkJhHd DTEcAaIW8x479lOK7pg2GdRfEZlpfhyU8DvkfIbN/n7CLYuHZljGG+7Pe/FmiNIl 1+8eeUdq86a0mipW0Vdcl8ZGASKyPWp7vpN1Mcj9NT9gNdBmknuH3ZjvvkWwivF6 0QgFP5fTpaNWmG6FPLQAv+j1dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGG6MzhQ pTcObrt2U6ZVgqMT/qxuMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZr3mmgaQIX83a3axTrRH6I3jbKLIhtlj6N+w4S2xrNWJPsrwveGsiYff0s/r ieWnFo521i2fM1XMPppDkOEzDxPqkSWGRq+mnQjm4t/xTBaZT7a+VeUWUoCLpdPO pvlg/MWTrDlT044RFbl3/wiBa3R8xNY9mE0825ZyAMQwBSsuB2a7wXVpYgfoxyry hdcpV9BT9f1rNS0bXMlQhf6bVdbWgvlwtmYKxCZzo1snSwQVfECY2gfa0+wTgCDA wSRw0pEW5aOnjOPLPcR7mfwGgDmCgKGCKiGsmEx7eK16t7Tky7+3/kSmCPBRH9BG MI7Bm9aAZ/oDQ7Fz7UaYVKdYZA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:36:07 2026 by rpki-client