$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: ddq/gGool6I9hCY2tgjAIHXGLovsC3ixh5L6iveXB7o= Subject key identifier: 68:A9:BE:18:DF:79:9E:99:A1:19:4C:CB:05:80:3C:43:E7:F5:7D:B6 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 043A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 0434 Signing time: Tue 24 Mar 2026 23:57:41 +0000 Manifest this update: Tue 24 Mar 2026 23:57:40 +0000 Manifest next update: Tue 31 Mar 2026 23:57:40 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: OskxW882VRli4hloRgZLUVjc3D1Yu6l9FibGC4AWJ9E=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: Kr35OqLAdLLcbYsUb9Idl/TWhv1QqY/qee8KwLiHvqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Mar 24 23:57:40 2026 GMT Not After : Mar 31 23:57:40 2026 GMT Subject: CN=69c324f5-14c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:54:27:bd:67:82:54:51:4e:e3:ab:03:b5: a7:2c:83:a6:b1:59:32:19:bd:40:f9:2b:9e:63:67: 8b:43:ef:47:43:fd:b9:9e:1c:aa:b3:0f:7e:b5:a8: 7b:3f:82:29:e9:f7:b6:0d:c7:bb:2f:30:47:8c:fb: 6d:77:e5:7c:f7:4f:79:03:03:21:cf:dd:88:a2:51: e6:f8:45:07:3d:b2:ea:81:a6:89:f9:46:d3:9e:59: bb:41:3d:bc:13:0e:8b:55:66:44:2e:95:b0:a4:0b: ec:8d:c5:31:f8:5c:62:12:ea:87:31:06:71:15:15: ad:40:a2:10:82:4e:3d:76:4d:c6:08:67:52:b7:4a: 43:9b:de:b9:d9:dd:c2:e0:b5:6f:7d:27:66:13:55: af:43:01:67:25:dd:04:ff:0d:60:4a:8d:fe:cd:26: 3f:44:c7:ec:c1:03:61:1d:e7:27:93:05:aa:eb:fb: 78:0f:45:d8:4f:de:d9:07:7d:0e:2d:2a:a6:c6:fe: 0c:49:6b:48:58:03:c7:85:df:36:21:a8:15:ac:ad: 24:d0:f3:1c:42:60:ea:38:f0:4e:fc:95:7a:d5:aa: 95:e8:04:d8:0d:f2:0e:fd:47:32:fd:53:cc:5b:05: ef:2e:da:f0:4e:fc:15:a5:5d:29:29:19:b9:1e:a6: e2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A9:BE:18:DF:79:9E:99:A1:19:4C:CB:05:80:3C:43:E7:F5:7D:B6 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:3d:21:17:01:c6:c2:2a:0c:11:b6:2a:b3:d3:da:d4:be:d5: 90:c2:b7:51:40:18:42:f9:37:45:cd:38:58:ed:cb:69:72:22: d8:e9:fa:82:4e:3e:86:66:70:6b:48:67:ad:80:d1:6d:b8:2b: 65:f8:b4:da:5c:29:1a:e7:3e:26:21:9f:d1:56:22:d3:be:fc: f0:6f:14:6e:e4:34:e0:91:46:ee:1c:ba:d1:84:48:12:ac:8e: f4:f6:05:93:13:ed:7f:91:52:92:8f:87:24:e9:ec:6a:88:f0: 54:94:67:72:c8:78:04:63:c3:65:93:86:3e:64:0b:73:0d:9e: ad:6f:de:a5:22:c3:83:2a:b6:58:c2:7f:32:0f:83:04:9e:f6: 42:28:bb:17:5b:b3:ed:a3:3d:d1:6d:b7:fd:7d:40:f2:33:85: 94:47:61:ca:4e:73:f9:7f:ba:95:72:69:86:31:74:ae:6a:0f: a4:4b:1b:70:55:c3:76:ee:e2:64:3d:c1:44:87:aa:68:34:17: 35:ca:09:88:c9:1a:9f:ea:04:99:29:26:20:94:53:b7:f9:ad: ca:69:10:ae:1a:50:2f:3b:53:3c:0b:01:78:91:55:08:61:44: 44:fb:d1:3b:81:83:20:49:d9:fa:10:b7:3a:8a:ea:36:db:b3: fa:dc:5b:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjYwMzI0MjM1NzQwWhcNMjYwMzMxMjM1NzQwWjAYMRYwFAYD VQQDEw02OWMzMjRmNS0xNGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv81UJ71nglRRTuOrA7WnLIOmsVkyGb1A+SueY2eLQ+9HQ/25nhyqsw9+tah7 P4Ip6fe2Dce7LzBHjPttd+V89095AwMhz92IolHm+EUHPbLqgaaJ+UbTnlm7QT28 Ew6LVWZELpWwpAvsjcUx+FxiEuqHMQZxFRWtQKIQgk49dk3GCGdSt0pDm9652d3C 4LVvfSdmE1WvQwFnJd0E/w1gSo3+zSY/RMfswQNhHecnkwWq6/t4D0XYT97ZB30O LSqmxv4MSWtIWAPHhd82IagVrK0k0PMcQmDqOPBO/JV61aqV6ATYDfIO/Ucy/VPM WwXvLtrwTvwVpV0pKRm5HqbiTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGipvhjf eZ6ZoRlMywWAPEPn9X22MB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdj0hFwHGwioMEbYqs9Pa1L7VkMK3UUAYQvk3Rc04WO3LaXIi2On6gk4+hmZw a0hnrYDRbbgrZfi02lwpGuc+JiGf0VYi07788G8UbuQ04JFG7hy60YRIEqyO9PYF kxPtf5FSko+HJOnsaojwVJRncsh4BGPDZZOGPmQLcw2erW/epSLDgyq2WMJ/Mg+D BJ72Qii7F1uz7aM90W23/X1A8jOFlEdhyk5z+X+6lXJphjF0rmoPpEsbcFXDdu7i ZD3BRIeqaDQXNcoJiMkan+oEmSkmIJRTt/mtymkQrhpQLztTPAsBeJFVCGFERPvR O4GDIEnZ+hC3OorqNtuz+txb6w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:14:40 2026 by rpki-client