$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: FUpbjgkUu7icYeJAiqgJHqo9UpxwINSroy6pAtzPrhQ= Subject key identifier: 63:53:35:A9:CE:7F:A2:4A:8F:B9:53:73:AE:9D:30:EA:D3:E4:22:A3 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0701 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06F1 Signing time: Tue 24 Mar 2026 21:48:39 +0000 Manifest this update: Tue 24 Mar 2026 21:48:38 +0000 Manifest next update: Tue 31 Mar 2026 21:48:38 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: TXnNjAuT+QHZE6Vec4FIyDc7YJyH2FyxGCroFDFG1aE=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: fjAS87Fa2KTDfIBPfFBgVc4CwHe6EqcmmF1tEiz37Qc=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: /5wXx4cmTVQVdguvfntlB2W6kj2rZMU7vB1692wCKvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1793 (0x701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Mar 24 21:48:38 2026 GMT Not After : Mar 31 21:48:38 2026 GMT Subject: CN=69c306b6-a0d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:39:c9:ef:1a:48:a8:5f:d3:49:65:81:7d:d7: 84:48:df:70:0b:1b:82:38:41:af:59:bd:30:5e:13: f4:eb:56:c2:3e:09:ee:da:2f:5a:98:35:58:26:75: 55:ca:b1:2c:65:db:6d:c3:83:7e:8d:9f:08:17:2b: 4a:fb:b8:88:3b:25:25:1f:b1:f7:59:8f:ad:1a:cd: 02:b8:7c:dc:ed:b9:0d:07:2b:1a:ca:92:6b:65:66: 51:93:3f:20:dd:4f:63:07:9d:97:21:e1:f5:74:81: c1:9a:35:90:ef:5b:40:a4:75:0a:9e:24:fb:c2:04: 29:d3:97:eb:e5:e6:99:ed:91:2c:32:c5:58:af:6d: 8e:cc:34:dc:61:49:15:d4:31:0b:9c:6f:d6:22:a7: dc:ca:08:dd:83:86:4d:1c:96:c3:df:d7:e3:9d:2d: c0:3c:23:fc:43:69:ec:69:0b:ca:4f:cd:cb:c7:0e: 83:39:89:ed:18:f5:c0:a2:06:86:4a:e1:41:a9:1e: 59:ea:62:99:cd:99:a3:84:f4:f3:04:cb:c5:39:d9: 6a:f6:14:76:dd:64:c1:84:a5:4f:9d:d1:c8:43:66: 61:9b:cc:73:cc:aa:b2:c8:fe:0e:d6:56:a3:81:80: dc:ed:fb:85:28:ba:10:c6:05:7a:d3:b1:d8:6a:a5: 2e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:53:35:A9:CE:7F:A2:4A:8F:B9:53:73:AE:9D:30:EA:D3:E4:22:A3 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:b3:8f:80:2d:39:0b:b2:b1:48:69:2c:44:21:ca:aa:9c:73: ef:17:56:aa:04:5b:fb:06:3f:7c:6a:f9:d5:30:83:48:7a:27: d7:c1:65:d7:91:7c:1c:ed:91:6a:fe:44:39:40:f8:75:aa:27: 0a:8e:13:9e:0f:d6:44:da:c3:15:16:fd:f5:fd:a2:1a:30:19: 78:36:88:75:6b:73:3e:04:67:d3:1d:2c:10:bb:67:03:25:bd: 2a:4c:e6:0d:6b:f2:6b:b9:00:1a:28:4d:21:79:77:ff:ac:70: c0:54:84:69:bb:e6:c6:7f:76:a9:4f:a2:2f:60:a1:bb:cb:ac: 14:12:78:8f:e3:80:8a:9d:e5:1c:49:c1:98:b8:fa:77:32:20: 0f:f0:98:e9:70:a3:db:7e:9c:29:f6:83:9a:e9:76:70:1e:00: de:24:8b:2f:c9:a6:2e:aa:57:e5:b9:89:9b:39:06:f3:60:15: 1e:71:03:b6:bc:00:36:20:51:a1:7b:e7:18:5d:8b:ec:fb:b0: 41:a1:d4:16:c3:b3:22:7c:c5:93:19:c4:36:40:a3:95:ee:bd: f4:a3:35:a1:fb:30:24:c6:c4:34:7b:9c:31:5f:09:73:b8:40: fe:de:8d:d2:c5:58:8b:75:dd:6b:e6:88:b4:30:52:71:11:2e: 46:6d:4b:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjYwMzI0MjE0ODM4WhcNMjYwMzMxMjE0ODM4WjAYMRYwFAYD VQQDEw02OWMzMDZiNi1hMGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTnJ7xpIqF/TSWWBfdeESN9wCxuCOEGvWb0wXhP061bCPgnu2i9amDVYJnVV yrEsZdttw4N+jZ8IFytK+7iIOyUlH7H3WY+tGs0CuHzc7bkNBysaypJrZWZRkz8g 3U9jB52XIeH1dIHBmjWQ71tApHUKniT7wgQp05fr5eaZ7ZEsMsVYr22OzDTcYUkV 1DELnG/WIqfcygjdg4ZNHJbD39fjnS3APCP8Q2nsaQvKT83Lxw6DOYntGPXAogaG SuFBqR5Z6mKZzZmjhPTzBMvFOdlq9hR23WTBhKVPndHIQ2Zhm8xzzKqyyP4O1laj gYDc7fuFKLoQxgV607HYaqUuZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGNTNanO f6JKj7lTc66dMOrT5CKjMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyrOPgC05C7KxSGksRCHKqpxz7xdWqgRb+wY/fGr51TCDSHon18Fl15F8HO2R av5EOUD4daonCo4Tng/WRNrDFRb99f2iGjAZeDaIdWtzPgRn0x0sELtnAyW9Kkzm DWvya7kAGihNIXl3/6xwwFSEabvmxn92qU+iL2Chu8usFBJ4j+OAip3lHEnBmLj6 dzIgD/CY6XCj236cKfaDmul2cB4A3iSLL8mmLqpX5bmJmzkG82AVHnEDtrwANiBR oXvnGF2L7PuwQaHUFsOzInzFkxnENkCjle699KM1ofswJMbENHucMV8Jc7hA/t6N 0sVYi3Xda+aItDBScREuRm1Lfg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:33 2026 by rpki-client