$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: uCifXuojLKmzPe05TvbMXIbdS3LqyTcF6eX0ddpp8mo= Subject key identifier: D3:CE:DE:1D:1D:C0:96:47:89:3F:77:91:BB:42:BA:2C:BB:60:78:CB Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 026E Signing time: Wed 25 Mar 2026 01:35:00 +0000 Manifest this update: Wed 25 Mar 2026 01:35:00 +0000 Manifest next update: Wed 01 Apr 2026 01:35:00 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: 5P2p+VdzcqTPr2Sa2p8lzlHWyQkPTdqN8nPEnt7vprw=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: ZBpZFHSjfj1bISXLZ4G9TvJh+gywnnw40Zr1cDFnGAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Mar 25 01:35:00 2026 GMT Not After : Apr 1 01:35:00 2026 GMT Subject: CN=69c33bc4-0af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:21:e1:4b:50:8f:6e:fb:48:71:50:1e:a7:3e: d0:6c:76:94:b0:f3:79:87:51:ae:7d:df:1a:4a:b6: 80:ad:2e:7a:16:ff:51:4f:56:9c:58:0e:34:b0:01: fb:e4:5e:6b:cc:63:84:95:e2:5d:20:c9:b6:ed:0d: 43:19:9f:e3:17:0a:df:07:a3:20:b2:94:cc:86:bf: e8:1c:aa:72:1f:61:4e:fb:52:4c:7a:65:db:35:e1: 99:c6:ab:f8:8a:ed:81:52:3d:a2:ed:c5:66:84:37: 0d:c2:2f:ac:da:35:a6:3c:2e:14:73:2b:f3:af:04: 2a:aa:f3:a9:5e:c7:c8:dc:a4:aa:dd:cf:a0:64:6e: 9b:af:b3:44:89:30:a1:e2:e2:14:c4:91:47:97:d6: fe:75:60:f7:ff:0a:c5:16:86:76:8d:d5:42:89:3f: bb:32:a8:9a:05:75:49:cb:e1:5f:3a:57:71:2a:33: b5:e8:75:a9:5d:93:22:58:85:d3:fd:47:60:67:78: af:c6:e8:cd:c6:9d:f7:54:c4:c9:8c:2b:4e:ed:80: 85:4d:22:17:db:0f:ab:e1:e3:29:91:12:70:81:9c: 04:94:f5:2c:d1:6c:f0:ce:f9:12:c7:a5:29:06:e3: f0:c7:56:2b:be:45:19:20:36:e0:c1:0c:ad:f1:61: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CE:DE:1D:1D:C0:96:47:89:3F:77:91:BB:42:BA:2C:BB:60:78:CB X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:6f:0d:93:43:21:15:3c:a1:f8:0c:fa:bc:7e:5e:4f:9f:11: 4c:4b:36:a0:e0:22:05:70:c8:4a:df:b7:aa:e2:2a:7f:b1:0e: 44:01:db:64:c6:c7:e9:80:2d:dc:a7:34:3b:3e:45:7f:2e:74: 0b:06:02:09:21:52:e5:78:ae:2f:f0:a1:52:5d:31:7a:fd:77: 87:1c:a4:f7:b1:81:f2:e9:b7:74:6a:24:85:27:70:1b:5c:a8: a1:14:5b:eb:d2:6c:65:5b:eb:ef:9d:c0:0c:39:8e:e7:db:36: 1d:bc:81:a9:0b:8d:5e:a5:33:09:05:cb:1f:c2:e4:81:4e:73: 23:e9:c4:56:87:f8:88:bc:b5:18:62:75:3c:41:df:66:be:b8: b7:1b:a3:85:c4:36:e1:5f:ee:1e:73:a9:53:3a:7b:f5:ed:30: b0:95:be:ce:c3:c0:6b:31:1e:43:7e:7c:5f:7a:9d:e0:d6:d7: 7f:5e:fc:cf:49:46:ad:07:0b:ee:e2:bc:96:59:71:71:ee:ae: 19:47:3a:7d:61:71:38:4a:29:4d:b3:d7:1a:95:8c:f5:7d:65: c5:87:94:df:fa:d2:03:f5:87:1e:9e:a6:15:d7:81:9c:fa:17: bc:96:21:90:2a:3d:40:22:c4:5b:21:73:8e:e8:fc:75:66:e1: 95:4c:ea:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjYwMzI1MDEzNTAwWhcNMjYwNDAxMDEzNTAwWjAYMRYwFAYD VQQDEw02OWMzM2JjNC0wYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCHhS1CPbvtIcVAepz7QbHaUsPN5h1Gufd8aSraArS56Fv9RT1acWA40sAH7 5F5rzGOEleJdIMm27Q1DGZ/jFwrfB6MgspTMhr/oHKpyH2FO+1JMemXbNeGZxqv4 iu2BUj2i7cVmhDcNwi+s2jWmPC4UcyvzrwQqqvOpXsfI3KSq3c+gZG6br7NEiTCh 4uIUxJFHl9b+dWD3/wrFFoZ2jdVCiT+7MqiaBXVJy+FfOldxKjO16HWpXZMiWIXT /UdgZ3ivxujNxp33VMTJjCtO7YCFTSIX2w+r4eMpkRJwgZwElPUs0WzwzvkSx6Up BuPwx1YrvkUZIDbgwQyt8WF06wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPO3h0d wJZHiT93kbtCuiy7YHjLMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAm8Nk0MhFTyh+Az6vH5eT58RTEs2oOAiBXDISt+3quIqf7EORAHbZMbH6YAt 3Kc0Oz5Ffy50CwYCCSFS5XiuL/ChUl0xev13hxyk97GB8um3dGokhSdwG1yooRRb 69JsZVvr753ADDmO59s2HbyBqQuNXqUzCQXLH8LkgU5zI+nEVof4iLy1GGJ1PEHf Zr64txujhcQ24V/uHnOpUzp79e0wsJW+zsPAazEeQ358X3qd4NbXf178z0lGrQcL 7uK8lllxce6uGUc6fWFxOEopTbPXGpWM9X1lxYeU3/rSA/WHHp6mFdeBnPoXvJYh kCo9QCLEWyFzjuj8dWbhlUzqsQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:20:02 2026 by rpki-client