$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: Qp7vWrY3Fh5V/eQLjOjq+QQYwLlKV6tKFRGsfmrKKbU= Subject key identifier: 0E:C2:5D:A8:D1:1A:EB:92:74:08:76:26:FB:01:5B:48:74:D8:24:99 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 0269 Signing time: Wed 25 Mar 2026 01:30:37 +0000 Manifest this update: Wed 25 Mar 2026 01:30:36 +0000 Manifest next update: Wed 01 Apr 2026 01:30:36 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: sEJSUIiouPb6wZ/4UqMEs2byiqkNg30fnPiwnNkMm/o=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: yfzx4N8e3wjfsr320pF+EFitreK6BjvCPZ0wmG/4y/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Mar 25 01:30:36 2026 GMT Not After : Apr 1 01:30:36 2026 GMT Subject: CN=69c33abd-46b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fe:e8:6d:72:d5:bd:0a:98:c8:aa:1e:30:e6: 24:b6:15:54:6e:23:70:fa:24:c0:ad:45:16:48:4d: ee:65:fd:47:d5:a9:7d:c7:5b:a8:36:d6:01:2b:8e: ea:5a:3a:fc:5b:fe:51:79:bb:88:24:c0:c7:c4:b0: bc:65:16:13:ec:06:3c:d8:71:00:c3:dd:91:0f:6a: f1:f4:62:ad:c7:ed:7f:be:28:40:6c:d8:8b:25:9a: a4:83:4e:89:76:0e:54:82:d5:fd:f4:79:74:80:17: c5:2b:9b:6d:3e:42:d9:33:50:39:11:d5:e1:5b:77: ef:82:06:65:25:fa:6e:8f:c1:93:e5:f5:77:10:cb: f1:e1:6c:60:75:dd:0d:00:33:6a:f3:b9:c1:f7:37: 21:b9:17:5a:a1:75:80:65:8f:f2:c7:a3:fb:2a:e4: 8f:26:e4:af:d9:68:d6:49:f3:2b:7e:33:f8:69:8a: e3:df:fe:b3:d5:bf:07:41:7d:2e:46:97:5e:54:b7: 24:9a:56:f6:71:1a:aa:be:a3:2d:4a:39:7e:83:0d: 37:5f:66:96:c5:8a:66:b3:26:15:0f:f3:58:93:f1: 11:69:03:8b:ad:ee:6d:1b:13:c5:eb:d6:53:c8:42: 7f:0d:ad:83:a6:d2:e4:53:ae:0a:40:e3:00:67:b8: a0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C2:5D:A8:D1:1A:EB:92:74:08:76:26:FB:01:5B:48:74:D8:24:99 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:19:28:4a:6d:0b:d4:35:6f:9f:c5:80:81:d1:ef:8c:89:94: 3e:97:08:8c:27:b4:6e:b5:b0:1a:03:11:be:dd:1e:01:56:73: b2:35:9a:c6:70:61:46:53:47:e9:14:b0:01:52:02:ca:89:8c: 44:e5:a6:4b:d8:91:89:7d:5b:bd:24:82:f0:a9:01:3b:7a:f4: 7d:db:53:47:c7:3d:3c:6a:19:76:aa:a2:2f:db:a4:99:fa:59: ac:18:89:23:2f:42:41:35:2e:e7:92:6d:6d:d7:a7:04:b5:df: ff:fc:d3:37:5f:ff:92:22:c6:d3:1d:c7:fc:ad:09:07:ca:50: 25:d2:e1:51:18:2b:6a:df:30:d7:fd:0c:2c:ab:34:0a:ec:8d: 5b:f5:1f:8c:20:65:42:a6:f7:11:b3:f1:2d:e8:d5:6a:22:f9: b6:44:70:2d:18:b3:8b:2b:9c:e8:d3:0b:da:91:89:83:d9:19: f3:8e:50:ed:75:7f:1e:7a:52:07:3c:9d:2f:44:4e:e8:b4:d6: cb:eb:5e:83:32:74:f2:22:f9:a5:83:59:dd:03:60:d6:4c:8a: c7:cd:7d:ca:a2:be:84:e5:9a:66:fa:11:11:f9:19:ff:8c:ef: 57:47:9b:76:68:19:48:6f:b8:af:28:aa:06:d2:85:b3:b7:47: 0b:0d:8b:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjYwMzI1MDEzMDM2WhcNMjYwNDAxMDEzMDM2WjAYMRYwFAYD VQQDEw02OWMzM2FiZC00NmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArP7obXLVvQqYyKoeMOYkthVUbiNw+iTArUUWSE3uZf1H1al9x1uoNtYBK47q Wjr8W/5RebuIJMDHxLC8ZRYT7AY82HEAw92RD2rx9GKtx+1/vihAbNiLJZqkg06J dg5UgtX99Hl0gBfFK5ttPkLZM1A5EdXhW3fvggZlJfpuj8GT5fV3EMvx4Wxgdd0N ADNq87nB9zchuRdaoXWAZY/yx6P7KuSPJuSv2WjWSfMrfjP4aYrj3/6z1b8HQX0u RpdeVLckmlb2cRqqvqMtSjl+gw03X2aWxYpmsyYVD/NYk/ERaQOLre5tGxPF69ZT yEJ/Da2DptLkU64KQOMAZ7igQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7CXajR GuuSdAh2JvsBW0h02CSZMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcxkoSm0L1DVvn8WAgdHvjImUPpcIjCe0brWwGgMRvt0eAVZzsjWaxnBhRlNH 6RSwAVICyomMROWmS9iRiX1bvSSC8KkBO3r0fdtTR8c9PGoZdqqiL9ukmfpZrBiJ Iy9CQTUu55JtbdenBLXf//zTN1//kiLG0x3H/K0JB8pQJdLhURgrat8w1/0MLKs0 CuyNW/UfjCBlQqb3EbPxLejVaiL5tkRwLRiziyuc6NML2pGJg9kZ845Q7XV/HnpS BzydL0RO6LTWy+tegzJ08iL5pYNZ3QNg1kyKx819yqK+hOWaZvoREfkZ/4zvV0eb dmgZSG+4ryiqBtKFs7dHCw2L8g== -----END CERTIFICATE-----Generated at Thu Mar 26 18:48:11 2026 by rpki-client