$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft File: -jVgKfx3KltDJpwxataFxLtaZW0.mft (raw, json) Hash identifier: cONYjLzjbbhHHa70KPetMpL6H9iY40dYY2arnxhPNv4= Subject key identifier: 7B:94:79:A3:D2:E2:22:D2:B7:E4:AA:00:B3:2B:37:B0:6C:9E:75:57 Authority key identifier: FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D Certificate issuer: /CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Certificate serial: 06C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft Manifest number: 06AB Signing time: Tue 24 Mar 2026 22:07:46 +0000 Manifest this update: Tue 24 Mar 2026 22:07:46 +0000 Manifest next update: Tue 31 Mar 2026 22:07:46 +0000 Files and hashes: 1: -jVgKfx3KltDJpwxataFxLtaZW0.crl (hash: PITKECCZ90I1AYGmFknLyjUkSsRxu3U5c5zlyTscUqg=) 2: 26C5F4148FC111EF84928A68C4F9AE02.roa (hash: yoloep24o1atFGZiIYVLvf8FRxTCxFgmWJlp5tBVJqE=) 3: 93E364468FC111EFA7695485C4F9AE02.roa (hash: odXs70QtmjQH39+qx/iFdYWwlstVgEGIxhy6jVeMzv4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1731 (0x6c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B5E, serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Validity Not Before: Mar 24 22:07:46 2026 GMT Not After : Mar 31 22:07:46 2026 GMT Subject: CN=69c30b32-3a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:48:28:9d:91:29:9b:cd:67:43:2c:65:9b:f0: f5:b7:f4:dc:0a:64:f9:30:0c:47:cb:ad:5d:a2:23: 3e:fe:03:9d:ae:6e:e9:90:b1:de:c8:df:f9:82:2b: c7:50:f3:f1:1c:aa:ac:5d:ff:85:bc:67:e3:eb:86: 35:7f:ee:69:3f:d6:5b:ed:df:00:87:5b:29:78:0c: 42:29:54:6d:ca:1c:d5:6d:4a:6e:1b:2a:53:f3:45: b9:23:a3:4e:55:3a:77:76:83:2d:55:55:53:8d:26: 27:72:a7:fb:55:75:e0:e9:d9:39:93:61:7d:50:36: 76:76:c7:2c:ac:1f:d7:8d:53:8d:f0:46:f3:dd:4e: 33:20:4f:81:2b:72:11:86:10:01:d8:5b:1d:93:16: 60:5e:cc:f9:54:0e:d2:c9:d7:ef:2c:fe:9e:bb:a7: 11:20:04:b0:e6:95:00:9e:98:bf:1a:96:17:a1:b0: f2:97:31:03:29:4c:4a:d4:ff:b3:fd:54:8a:be:1d: fc:49:9d:e2:38:96:b9:b3:39:39:b7:d5:1e:be:9e: 1f:37:01:74:4a:7b:29:70:0b:28:ed:d6:81:d5:6c: 6f:b7:c6:4f:16:dd:d8:9b:b9:a6:5b:66:6b:7d:f2: 0e:18:8e:06:c1:19:ab:55:c5:83:4c:a1:fe:6b:c0: bd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:94:79:A3:D2:E2:22:D2:B7:E4:AA:00:B3:2B:37:B0:6C:9E:75:57 X509v3 Authority Key Identifier: keyid:FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:9a:fc:e8:11:43:98:da:ea:ad:01:51:ee:74:c3:f9:29:50: 69:02:af:a1:8c:99:7a:4a:3c:9e:62:e5:93:d1:f6:0f:76:4f: e7:41:57:2d:57:b7:88:f0:08:b9:38:e1:35:67:ce:f7:85:93: e9:5a:30:8d:55:9f:14:e9:55:e7:bd:25:6c:60:0c:01:d3:04: 17:c8:f5:85:4c:2c:fe:d2:14:3e:5c:ac:90:c7:32:c9:27:c7: 55:6a:94:38:0f:80:cd:56:20:48:ee:82:84:bd:38:e6:11:2a: 57:82:af:83:30:37:81:38:58:d5:3f:07:42:1c:8b:83:d2:7d: 5b:be:cd:a5:ee:15:1a:b2:1c:fe:d6:8f:33:78:19:ca:0a:b1: 1b:39:18:9c:6b:69:31:8b:bb:32:d7:a4:b0:7a:cf:10:34:b7: 2e:ce:5f:8a:19:ab:44:e5:0e:68:7d:7d:e0:20:2c:95:e3:f8: 71:f0:f7:4d:2b:fb:c4:c0:c3:b8:d4:98:bd:fe:6a:42:55:b9: 62:29:d8:a8:58:23:1d:05:9b:f1:cd:ae:ca:a5:6e:67:53:8e: 79:da:e7:ec:1f:59:d9:5a:7a:a5:c2:49:d0:c3:70:6f:b7:85: 19:0b:dd:7f:4a:91:39:00:96:91:fd:50:1c:af:38:76:74:5b: f3:65:ae:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNUUxMTAvBgNVBAUTKEZBMzU2MDI5RkM3NzJBNUI0MzI2OUMzMTZBRDY4NUM0 QkI1QTY1NkQwHhcNMjYwMzI0MjIwNzQ2WhcNMjYwMzMxMjIwNzQ2WjAYMRYwFAYD VQQDEw02OWMzMGIzMi0zYTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0gonZEpm81nQyxlm/D1t/TcCmT5MAxHy61doiM+/gOdrm7pkLHeyN/5givH UPPxHKqsXf+FvGfj64Y1f+5pP9Zb7d8Ah1speAxCKVRtyhzVbUpuGypT80W5I6NO VTp3doMtVVVTjSYncqf7VXXg6dk5k2F9UDZ2dscsrB/XjVON8Ebz3U4zIE+BK3IR hhAB2FsdkxZgXsz5VA7SydfvLP6eu6cRIASw5pUAnpi/GpYXobDylzEDKUxK1P+z /VSKvh38SZ3iOJa5szk5t9Uevp4fNwF0SnspcAso7daB1Wxvt8ZPFt3Ym7mmW2Zr ffIOGI4GwRmrVcWDTKH+a8C9DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHuUeaPS 4iLSt+SqALMrN7BsnnVXMB8GA1UdIwQYMBaAFPo1YCn8dypbQyacMWrWhcS7WmVt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI1RS9GNThDNTY5NEE2 RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0tsdERKcHd4YXRhRnhMdGFa VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1qVmdLZngzS2x0REpwd3hhdGFGeEx0YVpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkI1RS9GNThDNTY5NEE2RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0ts dERKcHd4YXRhRnhMdGFaVzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWJr86BFDmNrqrQFR7nTD+SlQaQKvoYyZeko8nmLlk9H2D3ZP50FXLVe3iPAI uTjhNWfO94WT6VowjVWfFOlV570lbGAMAdMEF8j1hUws/tIUPlyskMcyySfHVWqU OA+AzVYgSO6ChL045hEqV4KvgzA3gThY1T8HQhyLg9J9W77Npe4VGrIc/taPM3gZ ygqxGzkYnGtpMYu7MteksHrPEDS3Ls5fihmrROUOaH194CAsleP4cfD3TSv7xMDD uNSYvf5qQlW5YinYqFgjHQWb8c2uyqVuZ1OOedrn7B9Z2Vp6pcJJ0MNwb7eFGQvd f0qROQCWkf1QHK84dnRb82Wu6A== -----END CERTIFICATE-----Generated at Thu Mar 26 12:45:39 2026 by rpki-client