$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: JnCjzAt+YSE/x9uiqXtMV4Icqx4C1BFNK5bLgHAZUAs= Subject key identifier: 84:B8:9B:FC:A6:C6:F3:54:1C:4B:2D:7D:39:AC:69:DB:55:A7:4A:75 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 019B Signing time: Tue 03 Mar 2026 03:57:02 +0000 Manifest this update: Tue 03 Mar 2026 03:57:02 +0000 Manifest next update: Tue 10 Mar 2026 03:57:02 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: oGkImvDjEdUCBI/dxW9DHP0ChScQxHt0hUUSpuNSlnY=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Mar 3 03:57:02 2026 GMT Not After : Mar 10 03:57:02 2026 GMT Subject: CN=69a65c0e-e16c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:76:9c:90:83:c4:1f:48:38:33:db:5c:c7:a1: 82:45:85:a7:3a:2a:c6:ca:d0:ff:db:ea:96:0f:06: 9c:c3:b6:bf:70:77:70:c7:0d:45:8a:ca:9f:14:38: 9f:97:24:16:92:7e:35:36:66:8a:59:e6:2c:50:af: 7e:df:78:0b:0f:a7:95:67:da:fb:fb:1a:db:cf:08: b9:22:35:ab:8e:42:5c:f6:d4:6a:06:63:b0:9c:2b: 6b:34:cc:38:00:f7:96:05:3a:b1:fd:bf:48:03:4f: 7a:ce:39:86:36:79:b6:72:cf:12:1e:04:38:ba:a1: 2a:1e:69:71:44:d3:70:ca:6f:4b:a1:c5:6e:dd:f1: d4:81:5d:5f:07:cc:12:ca:1b:0e:26:b5:c6:42:2c: 9c:45:18:f8:1a:8d:19:ad:12:e1:46:97:f1:21:33: 65:3b:62:f1:01:c2:99:ce:41:18:27:75:e4:32:e4: 5a:3f:ea:d0:b3:96:45:56:81:c0:1b:23:55:95:06: 30:8f:50:18:92:60:14:b9:59:b5:ae:ea:a1:10:a6: 61:6e:83:aa:70:99:77:23:22:17:59:a2:75:07:68: f9:9e:a4:aa:38:0f:e7:c9:06:c9:8a:4d:d2:06:40: f6:70:6c:2a:0d:ae:2c:98:89:13:b5:1e:0b:11:24: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B8:9B:FC:A6:C6:F3:54:1C:4B:2D:7D:39:AC:69:DB:55:A7:4A:75 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:5d:6b:26:a1:20:ae:b6:46:18:e8:23:14:74:10:75:37:1a: 0a:34:2e:8f:6b:92:d0:dc:6f:21:20:67:b0:ab:6c:6d:ed:03: a6:67:ef:85:d1:d5:22:62:36:63:ed:4e:18:85:ea:56:9e:5a: 1f:12:b6:d7:8c:d1:55:ef:1d:57:df:0b:92:3d:5d:92:01:9e: 36:59:2a:85:b6:8b:d8:10:c4:c4:63:e0:9e:c9:ef:50:4f:c6: 5e:37:fc:05:8c:0a:ef:92:4a:ad:b4:e5:d5:91:f3:20:3d:06: 28:89:bd:27:bf:30:30:1d:29:0b:6f:22:43:be:0b:7f:38:9a: 87:98:cb:3f:c3:ed:10:1f:b4:44:4b:0d:93:81:91:b7:a7:b4: 4c:26:73:86:6f:b3:52:7e:ff:af:ad:a8:61:de:91:85:b3:56: a8:d7:e2:af:9c:a9:7f:a6:a8:d5:38:c6:d4:8f:ff:dd:b7:8f: 17:28:83:33:a4:03:f1:e4:8f:e4:cf:43:e8:2e:ab:79:47:2a: c3:32:aa:78:b3:c9:c7:f2:38:36:a9:86:0b:e3:3d:32:14:bf: b6:eb:16:9d:72:20:69:06:2a:12:55:2b:bb:1d:0f:10:a4:b3: 95:b2:1c:c3:5a:79:c7:9b:da:43:9e:dd:4d:e2:4a:de:ec:86: 29:9e:75:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwMzAzMDM1NzAyWhcNMjYwMzEwMDM1NzAyWjAYMRYwFAYD VQQDEw02OWE2NWMwZS1lMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHackIPEH0g4M9tcx6GCRYWnOirGytD/2+qWDwacw7a/cHdwxw1FisqfFDif lyQWkn41NmaKWeYsUK9+33gLD6eVZ9r7+xrbzwi5IjWrjkJc9tRqBmOwnCtrNMw4 APeWBTqx/b9IA096zjmGNnm2cs8SHgQ4uqEqHmlxRNNwym9LocVu3fHUgV1fB8wS yhsOJrXGQiycRRj4Go0ZrRLhRpfxITNlO2LxAcKZzkEYJ3XkMuRaP+rQs5ZFVoHA GyNVlQYwj1AYkmAUuVm1ruqhEKZhboOqcJl3IyIXWaJ1B2j5nqSqOA/nyQbJik3S BkD2cGwqDa4smIkTtR4LESRE+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIS4m/ym xvNUHEstfTmsadtVp0p1MB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFl1rJqEgrrZGGOgjFHQQdTcaCjQuj2uS0NxvISBnsKtsbe0DpmfvhdHVImI2 Y+1OGIXqVp5aHxK214zRVe8dV98Lkj1dkgGeNlkqhbaL2BDExGPgnsnvUE/GXjf8 BYwK75JKrbTl1ZHzID0GKIm9J78wMB0pC28iQ74Lfziah5jLP8PtEB+0REsNk4GR t6e0TCZzhm+zUn7/r62oYd6RhbNWqNfir5ypf6ao1TjG1I//3bePFyiDM6QD8eSP 5M9D6C6reUcqwzKqeLPJx/I4NqmGC+M9MhS/tusWnXIgaQYqElUrux0PEKSzlbIc w1p5x5vaQ57dTeJK3uyGKZ51OQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:36:16 2026 by rpki-client