$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: lX7xlsi0nnwEQ441AXK9q6Q2xCf3Kx5ppMYjeEKToqI= Subject key identifier: E8:D7:E0:31:40:08:BF:C5:E4:2D:62:27:0C:F4:F0:31:54:00:B0:41 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0B50 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0B4D Signing time: Tue 24 Mar 2026 16:31:53 +0000 Manifest this update: Tue 24 Mar 2026 16:31:53 +0000 Manifest next update: Tue 31 Mar 2026 16:31:53 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: E3+XOk6gVOJ9G+KlJx1v1iCEvlncFtE7KFvOe3qJksg=) 2: DC25591636C011F0A9DAF53EC4F9AE02.roa (hash: EU2N4gJVDh7rl8ft9+ApHPFL1rUzyfoQd0sEXkYo/7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Mar 24 16:31:53 2026 GMT Not After : Mar 31 16:31:53 2026 GMT Subject: CN=69c2bc79-9d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:0f:5f:f8:1a:82:ca:49:49:8a:e1:e4:49: 5e:c2:86:23:65:9f:a3:35:10:c1:7b:82:73:be:e9: 6c:96:63:3d:df:7b:01:8e:40:64:8c:ca:4f:52:95: 1d:45:09:75:dd:83:6f:6a:ae:9a:92:f6:0a:49:0f: fd:77:b8:0f:86:64:39:2f:8e:d1:97:57:1b:04:9d: 6e:8f:16:e7:3f:ef:79:83:4e:4d:6e:ab:c6:17:64: 86:6c:ba:50:b0:f2:d4:62:24:66:be:22:9b:48:16: 47:7b:59:15:29:22:16:2a:36:d9:12:be:ef:c4:3a: 4a:96:7a:58:35:05:dc:7b:a9:4f:1b:c6:65:2c:81: 95:8d:f7:63:9a:8e:be:d1:87:84:91:fa:f6:08:c0: 9a:65:ed:d1:71:b3:89:e1:02:bb:e5:5c:68:8c:7c: 4b:2b:dc:e2:96:47:80:1d:e7:9e:a2:5d:f7:4a:06: 3b:90:94:55:af:d5:3a:2c:73:88:85:d5:91:21:da: ff:ab:0f:f6:71:c8:dd:2d:ce:bd:dc:66:27:1a:c8: b1:86:db:4f:9f:33:d6:34:88:98:fd:88:84:3f:c3: 79:0f:f1:b9:d0:47:76:44:68:94:71:38:c7:8e:0a: b5:23:c3:bd:bc:ac:53:95:67:e9:41:17:fa:f7:9e: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D7:E0:31:40:08:BF:C5:E4:2D:62:27:0C:F4:F0:31:54:00:B0:41 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:33:90:0f:36:bd:34:1f:0f:44:f3:6b:ec:85:76:14:d3:5e: 75:27:18:e3:c4:23:58:75:8d:b3:a0:cb:4f:b5:e3:43:87:ca: 61:00:49:3d:3b:e8:d7:76:97:be:16:7c:9f:a2:9e:37:d1:56: fe:4f:23:20:56:a5:1e:91:50:f6:8d:00:23:30:4b:b6:31:db: aa:5b:1b:36:8d:eb:9c:a4:e0:ca:4b:14:3a:5c:88:43:01:91: a9:a2:68:27:cc:27:25:f4:c4:08:11:a5:5b:46:6a:56:de:e5: 90:d3:50:f8:2d:d4:6b:a8:97:99:a4:a3:14:10:da:d5:1d:b7: 45:fa:9b:d5:40:a8:01:08:bc:06:bb:59:13:7e:86:fc:2a:ea: e7:cc:01:a6:72:ab:17:f0:09:01:36:80:f3:bb:eb:eb:34:64: 91:8c:60:58:3e:6e:18:73:a1:83:b8:86:bd:1e:db:42:50:a7: 62:f1:00:65:52:a0:14:fd:22:77:a0:a8:73:52:77:ac:71:4b: 0c:89:3e:53:5c:ef:46:c2:e6:90:64:d8:de:39:e6:73:a5:3e: 83:bd:50:c2:09:0f:61:9c:19:47:78:ee:04:59:ee:3d:8c:91: 66:02:9f:57:e0:58:20:fe:5c:23:9c:05:fe:cb:e8:3d:64:2e: f5:59:0a:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjYwMzI0MTYzMTUzWhcNMjYwMzMxMTYzMTUzWjAYMRYwFAYD VQQDEw02OWMyYmM3OS05ZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAgPX/gagspJSYrh5ElewoYjZZ+jNRDBe4JzvulslmM933sBjkBkjMpPUpUd RQl13YNvaq6akvYKSQ/9d7gPhmQ5L47Rl1cbBJ1ujxbnP+95g05NbqvGF2SGbLpQ sPLUYiRmviKbSBZHe1kVKSIWKjbZEr7vxDpKlnpYNQXce6lPG8ZlLIGVjfdjmo6+ 0YeEkfr2CMCaZe3RcbOJ4QK75VxojHxLK9zilkeAHeeeol33SgY7kJRVr9U6LHOI hdWRIdr/qw/2ccjdLc693GYnGsixhttPnzPWNIiY/YiEP8N5D/G50Ed2RGiUcTjH jgq1I8O9vKxTlWfpQRf6957UZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOjX4DFA CL/F5C1iJwz08DFUALBBMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoDOQDza9NB8PRPNr7IV2FNNedScY48QjWHWNs6DLT7XjQ4fKYQBJPTvo13aX vhZ8n6KeN9FW/k8jIFalHpFQ9o0AIzBLtjHbqlsbNo3rnKTgyksUOlyIQwGRqaJo J8wnJfTECBGlW0ZqVt7lkNNQ+C3Ua6iXmaSjFBDa1R23Rfqb1UCoAQi8BrtZE36G /Crq58wBpnKrF/AJATaA87vr6zRkkYxgWD5uGHOhg7iGvR7bQlCnYvEAZVKgFP0i d6Coc1J3rHFLDIk+U1zvRsLmkGTY3jnmc6U+g71QwgkPYZwZR3juBFnuPYyRZgKf V+BYIP5cI5wF/svoPWQu9VkKOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:10:30 2026 by rpki-client