$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: 2ns8XcXJ5D7vEwHo1jxuphjl1Iq2lm2+XItE4KSYRsw= Subject key identifier: 07:23:65:1A:AD:19:2F:5A:DD:B9:B7:FA:74:2B:F7:57:44:07:CA:AC Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 1237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 1228 Signing time: Tue 24 Mar 2026 17:01:06 +0000 Manifest this update: Tue 24 Mar 2026 17:01:05 +0000 Manifest next update: Tue 31 Mar 2026 17:01:05 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: GE8XPUZmMYh0v6EbwvaPtGdIo3VvvJJVFMTW/CCw7Oc=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: 72MUrn7tnvmneOqEgTntxjtIs1ZcTEVLT5WbrHCVP04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4663 (0x1237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Mar 24 17:01:05 2026 GMT Not After : Mar 31 17:01:05 2026 GMT Subject: CN=69c2c352-ac0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:a4:eb:8a:3f:cc:69:0d:9b:ff:0e:4e:6e: 4a:86:73:15:87:81:40:7f:93:d9:12:91:8b:aa:25: 40:c6:e3:e1:1f:a9:70:6e:d7:5c:b3:c6:6a:34:32: a1:3d:4a:1c:73:c7:d0:20:8c:a7:8b:22:22:8d:10: 0f:10:e0:73:ba:b0:70:3e:ad:50:70:54:e3:fa:20: 31:e1:30:d2:eb:5f:1f:87:54:2a:83:69:68:de:c4: 70:58:f2:d0:dc:c8:c1:c3:22:98:d0:bb:96:21:f2: 23:b7:a0:fa:52:0d:7e:de:8f:78:df:31:0e:25:10: 7b:a8:30:79:19:2e:e4:bf:e8:a0:eb:87:f6:ed:54: fe:0f:e6:5a:68:16:be:4e:64:54:6f:c8:7d:83:0e: 6e:06:73:96:cf:4c:07:a8:7f:26:d5:34:da:ad:40: 7d:55:aa:5d:ee:f1:46:2a:d6:54:c0:93:ed:0d:74: 97:84:4a:51:5d:06:1e:d1:89:54:28:fb:56:4e:63: 18:0b:8b:a6:77:b9:e0:96:6c:f3:3a:7b:a0:37:1f: 7d:a2:4c:a4:84:b5:09:5c:1b:8d:56:6a:2e:d1:87: c2:b1:4c:a3:a2:4a:80:9e:64:0a:9d:e2:4f:e9:9c: 13:99:d8:84:b1:31:77:62:9a:7d:25:5f:4c:41:4f: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:23:65:1A:AD:19:2F:5A:DD:B9:B7:FA:74:2B:F7:57:44:07:CA:AC X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:94:f8:28:54:c0:41:95:fa:db:a0:a7:c5:33:eb:c7:47:37: 28:e9:d2:e1:f5:d7:52:5b:a7:70:f8:b6:52:c3:4f:12:f9:2c: db:80:9a:b5:1d:5a:8d:fb:87:98:e5:50:ae:26:19:f3:87:74: 37:bf:a8:54:18:a0:16:a4:3b:8b:e5:98:cb:40:cf:95:c4:1b: b8:8e:db:83:d8:f1:6a:2b:63:50:c3:b6:e4:73:0d:31:3f:ec: 42:cd:10:e2:cc:5e:54:f7:ea:b1:51:9c:5f:87:fd:6b:a0:ed: 27:2b:6c:46:94:4c:91:e8:6a:c2:32:20:68:b3:e4:cb:9c:28: d8:9f:76:42:72:cc:cb:16:b4:e4:da:4e:2e:9d:67:6e:20:4d: 13:36:d7:f8:7d:d6:f2:ab:5f:c4:b3:a3:55:e1:b7:a2:a8:81: 6d:14:b6:72:01:f6:a1:5c:45:da:5c:eb:90:d9:48:fb:03:53: 5b:b0:a5:52:6a:64:e1:26:84:68:95:55:9d:1f:af:72:f0:c7: 6b:d5:83:c4:19:ed:a9:71:11:5b:5b:f9:34:7e:d3:47:1d:21: 2b:eb:5b:74:b5:5b:af:a7:0c:b1:5f:85:89:41:33:30:0a:3f: cc:3a:f7:c6:2d:74:6a:4c:ed:2d:c6:c1:9b:de:6f:f8:70:07: 25:e9:07:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjYwMzI0MTcwMTA1WhcNMjYwMzMxMTcwMTA1WjAYMRYwFAYD VQQDEw02OWMyYzM1Mi1hYzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR2k64o/zGkNm/8OTm5KhnMVh4FAf5PZEpGLqiVAxuPhH6lwbtdcs8ZqNDKh PUocc8fQIIyniyIijRAPEOBzurBwPq1QcFTj+iAx4TDS618fh1Qqg2lo3sRwWPLQ 3MjBwyKY0LuWIfIjt6D6Ug1+3o943zEOJRB7qDB5GS7kv+ig64f27VT+D+ZaaBa+ TmRUb8h9gw5uBnOWz0wHqH8m1TTarUB9Vapd7vFGKtZUwJPtDXSXhEpRXQYe0YlU KPtWTmMYC4umd7nglmzzOnugNx99okykhLUJXBuNVmou0YfCsUyjokqAnmQKneJP 6ZwTmdiEsTF3Ypp9JV9MQU/KVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcjZRqt GS9a3bm3+nQr91dEB8qsMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKZT4KFTAQZX626CnxTPrx0c3KOnS4fXXUluncPi2UsNPEvks24CatR1ajfuH mOVQriYZ84d0N7+oVBigFqQ7i+WYy0DPlcQbuI7bg9jxaitjUMO25HMNMT/sQs0Q 4sxeVPfqsVGcX4f9a6DtJytsRpRMkehqwjIgaLPky5wo2J92QnLMyxa05NpOLp1n biBNEzbX+H3W8qtfxLOjVeG3oqiBbRS2cgH2oVxF2lzrkNlI+wNTW7ClUmpk4SaE aJVVnR+vcvDHa9WDxBntqXERW1v5NH7TRx0hK+tbdLVbr6cMsV+FiUEzMAo/zDr3 xi10akztLcbBm95v+HAHJekHCg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:01 2026 by rpki-client