$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: qyY7K/a4CZHZXpMnisVG7jKy8AY4GptAuxgzRiR8EzY= Subject key identifier: A2:30:5F:2D:4E:D9:0A:56:6B:13:68:3C:41:7A:60:FE:36:AE:DB:A5 Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0C3B Signing time: Thu 26 Mar 2026 18:40:35 +0000 Manifest this update: Thu 26 Mar 2026 18:40:35 +0000 Manifest next update: Thu 02 Apr 2026 18:40:35 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: VoUw+mkcuN8D26TUeBgLc8NpIpIJ1j3aZVRNgXCgVjE=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: XVQ4vbjL6icjdKZX/LPthrQnXfbccFG9ShLv4t7665I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Mar 26 18:40:35 2026 GMT Not After : Apr 2 18:40:35 2026 GMT Subject: CN=69c57da3-f645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:71:f5:76:dd:b5:d4:ff:6e:b3:06:36:b9: bc:8d:20:00:cd:03:23:73:7c:6e:1e:f2:44:09:c7: f2:2d:fc:f9:dd:f4:73:4b:39:e8:a2:05:36:15:17: d7:48:2f:45:82:d5:c9:22:35:ff:3a:ad:a6:50:b5: 1f:af:f7:80:a6:ff:29:0e:b2:ec:63:ad:2a:ab:39: 3e:e1:4b:c5:30:7d:82:d7:5e:78:bd:b0:1e:34:8a: 1f:1a:2e:25:0b:d8:bd:1f:36:96:58:96:c0:bb:bd: 81:1b:57:53:65:93:5a:01:fe:44:b4:8b:24:b2:b7: e4:41:79:43:3e:16:8b:b0:11:0a:60:ef:08:03:c5: fb:01:5c:dc:2f:35:e1:75:12:9c:64:cc:48:21:47: 25:ec:61:5d:c6:c5:d1:e2:fd:9e:e8:85:48:d6:09: 34:61:07:80:30:b1:9e:99:65:c6:52:ff:6d:ca:96: 6a:32:15:72:0e:de:a0:59:7c:6e:64:1a:a1:b4:2d: 86:35:4c:5c:40:9a:49:e7:73:df:4b:6c:f1:19:09: 14:7c:60:8d:d2:bd:5e:26:ed:c2:8f:07:de:d1:1d: af:36:12:e8:59:aa:c6:ef:ba:b1:d8:3e:32:0a:ee: 1f:b1:c0:7c:d7:6c:84:87:7c:ff:cf:18:b1:42:9e: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:30:5F:2D:4E:D9:0A:56:6B:13:68:3C:41:7A:60:FE:36:AE:DB:A5 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:df:47:9b:3a:50:88:ff:1a:c6:99:23:b0:1e:81:98:fe:57: 9b:8e:b2:09:a3:03:99:5e:50:25:11:fc:34:0a:30:9b:ca:1b: fe:8d:00:63:e9:09:4e:a6:10:65:3d:19:bc:b6:e0:d0:e0:17: 1e:d2:eb:80:39:37:cf:23:d7:73:a2:a5:c7:1b:c6:35:35:81: 74:16:2e:4f:48:c0:47:b1:3e:5b:93:9b:88:e8:3e:9d:b6:f3: c1:aa:0c:e7:98:c3:45:32:c6:8e:a8:95:f7:b0:da:62:08:49: 16:63:38:41:15:08:3c:fb:22:09:18:a2:c4:3f:7a:1b:5e:b5: 5e:25:b0:a9:bc:03:c3:b4:28:85:74:39:4f:ff:a6:d0:d1:0f: 1a:e5:f0:11:20:05:32:72:ad:5c:87:94:55:8b:16:ad:4a:8a: e0:7e:27:ec:07:d6:94:cd:33:2e:3c:c7:22:44:1c:97:6e:cb: 48:20:f7:90:68:ed:a3:d8:16:ad:82:c7:a6:6a:35:12:6c:cf: 4a:c8:33:d5:14:3c:94:4c:69:4b:93:c8:9b:4b:6b:74:3b:51: 0c:9e:6b:04:52:2a:b6:a2:85:70:f7:52:ea:85:9a:ae:ec:1d: 86:2d:fa:a4:e1:bb:f3:45:37:78:34:08:85:a6:d5:71:9e:d0: 8d:35:f3:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjYwMzI2MTg0MDM1WhcNMjYwNDAyMTg0MDM1WjAYMRYwFAYD VQQDEw02OWM1N2RhMy1mNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEJx9XbdtdT/brMGNrm8jSAAzQMjc3xuHvJECcfyLfz53fRzSznoogU2FRfX SC9FgtXJIjX/Oq2mULUfr/eApv8pDrLsY60qqzk+4UvFMH2C1154vbAeNIofGi4l C9i9HzaWWJbAu72BG1dTZZNaAf5EtIsksrfkQXlDPhaLsBEKYO8IA8X7AVzcLzXh dRKcZMxIIUcl7GFdxsXR4v2e6IVI1gk0YQeAMLGemWXGUv9typZqMhVyDt6gWXxu ZBqhtC2GNUxcQJpJ53PfS2zxGQkUfGCN0r1eJu3Cjwfe0R2vNhLoWarG77qx2D4y Cu4fscB812yEh3z/zxixQp48YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKIwXy1O 2QpWaxNoPEF6YP42rtulMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALN9HmzpQiP8axpkjsB6BmP5Xm46yCaMDmV5QJRH8NAowm8ob/o0AY+kJTqYQ ZT0ZvLbg0OAXHtLrgDk3zyPXc6KlxxvGNTWBdBYuT0jAR7E+W5ObiOg+nbbzwaoM 55jDRTLGjqiV97DaYghJFmM4QRUIPPsiCRiixD96G161XiWwqbwDw7QohXQ5T/+m 0NEPGuXwESAFMnKtXIeUVYsWrUqK4H4n7AfWlM0zLjzHIkQcl27LSCD3kGjto9gW rYLHpmo1EmzPSsgz1RQ8lExpS5PIm0trdDtRDJ5rBFIqtqKFcPdS6oWaruwdhi36 pOG780U3eDQIhabVcZ7QjTXzww== -----END CERTIFICATE-----Generated at Thu Mar 26 23:54:03 2026 by rpki-client