$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: Q8vlxW4ulTkGZH1kdji36mfmdWYl56CdHYJUru8bRSs= Subject key identifier: CA:BE:24:CF:38:95:F3:AF:1F:43:1C:7A:F7:A0:4A:32:0D:03:42:38 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C8B Signing time: Tue 24 Mar 2026 18:24:03 +0000 Manifest this update: Tue 24 Mar 2026 18:24:03 +0000 Manifest next update: Tue 31 Mar 2026 18:24:03 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: QAQAAMIUNnXoGkz93pNlbbmSdA7ce5MbeYnbsANHYOM=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: mpWE3JxWmusWHtsdnUiKvPMOgwCqfgCScdAt8K/8YQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Mar 24 18:24:03 2026 GMT Not After : Mar 31 18:24:03 2026 GMT Subject: CN=69c2d6c3-cc91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:f4:15:3e:89:6b:1b:44:dd:8f:00:ea:fd: 3c:0a:68:da:f3:4d:db:cc:97:f6:8a:67:1c:61:2e: 10:02:48:27:4c:60:d5:82:19:e5:50:a4:dd:2b:aa: 0f:fc:c0:3b:8c:dc:2b:02:50:52:8a:44:ae:92:14: b7:fb:00:32:03:cc:69:76:ad:ad:24:b0:ad:c8:84: de:7f:f1:75:be:54:1f:93:92:cc:ef:a3:f1:cc:44: 6e:a4:0e:b6:33:86:cc:e0:48:e1:44:e8:36:4e:35: 81:1e:80:ca:51:3a:f5:42:7c:21:66:85:97:9c:89: c6:f3:06:52:7d:fe:71:15:69:4e:f5:f3:ee:d5:b3: 1a:4e:1c:9c:35:5a:c8:49:80:4f:7a:55:f4:3e:1b: 9e:ef:c8:81:4a:cc:ad:fd:7a:58:b0:89:38:aa:5f: 19:99:93:a8:5b:c6:80:85:94:c7:7d:8d:65:2a:e1: 48:48:61:cd:0e:2c:b9:9d:66:6c:16:f0:67:df:f6: 57:84:82:b3:09:d6:28:d0:7d:e2:7c:09:ba:03:98: 8e:78:d7:0f:ec:ae:ab:6b:79:28:c2:69:a0:c9:8d: de:31:b2:8b:66:f1:9b:fc:9a:47:86:ce:36:51:59: 07:71:86:1d:48:91:37:a4:da:a6:bb:4d:71:8c:52: f2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:BE:24:CF:38:95:F3:AF:1F:43:1C:7A:F7:A0:4A:32:0D:03:42:38 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:69:c0:62:ae:9f:c2:aa:db:e4:1e:25:d4:e7:09:ee:88:c3: 36:9b:8d:c4:7e:fc:74:79:82:13:3e:94:a5:9c:60:07:2e:2a: 38:74:02:18:fb:11:49:c1:c8:fe:93:3b:2a:00:d3:8f:2a:7e: a1:a5:8f:19:d2:31:be:5d:6f:91:8a:10:e0:c5:03:8f:03:6b: b4:0f:99:ca:13:50:4e:f2:c9:d0:94:21:73:38:12:f9:28:6c: bc:3a:6a:f1:82:97:a2:fa:0d:41:b2:62:9a:80:f1:11:d7:5a: 83:d2:be:c1:8b:c2:4d:28:9d:5f:96:30:c7:74:7c:f7:db:4d: 3f:f7:b3:bf:61:bd:de:00:5c:6e:24:7c:47:9b:27:5b:45:46: f4:2e:17:00:0d:1c:e3:c2:a3:be:3b:40:51:30:b5:4a:58:3e: 16:8b:dd:0f:f8:c9:39:f8:7b:e8:57:8d:fd:94:81:89:c8:ca: f1:4b:3c:ff:5a:df:9a:ff:67:56:f7:8b:fb:d4:03:0f:10:a9: 75:41:48:fc:d5:d9:cf:cf:8b:56:ea:8a:7a:91:7d:b2:8e:a2: c7:36:9d:eb:db:c7:d2:50:9b:f0:5d:83:8a:06:10:12:d0:16: 7e:5b:0c:60:dd:83:f2:47:7b:02:9e:d2:d8:21:2b:7d:21:c1: 14:0d:57:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjYwMzI0MTgyNDAzWhcNMjYwMzMxMTgyNDAzWjAYMRYwFAYD VQQDEw02OWMyZDZjMy1jYzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn70FT6JaxtE3Y8A6v08Cmja803bzJf2imccYS4QAkgnTGDVghnlUKTdK6oP /MA7jNwrAlBSikSukhS3+wAyA8xpdq2tJLCtyITef/F1vlQfk5LM76PxzERupA62 M4bM4EjhROg2TjWBHoDKUTr1QnwhZoWXnInG8wZSff5xFWlO9fPu1bMaThycNVrI SYBPelX0Phue78iBSsyt/XpYsIk4ql8ZmZOoW8aAhZTHfY1lKuFISGHNDiy5nWZs FvBn3/ZXhIKzCdYo0H3ifAm6A5iOeNcP7K6ra3kowmmgyY3eMbKLZvGb/JpHhs42 UVkHcYYdSJE3pNqmu01xjFLy0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMq+JM84 lfOvH0McevegSjINA0I4MB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADmnAYq6fwqrb5B4l1OcJ7ojDNpuNxH78dHmCEz6UpZxgBy4qOHQCGPsRScHI /pM7KgDTjyp+oaWPGdIxvl1vkYoQ4MUDjwNrtA+ZyhNQTvLJ0JQhczgS+ShsvDpq 8YKXovoNQbJimoDxEddag9K+wYvCTSidX5Ywx3R899tNP/ezv2G93gBcbiR8R5sn W0VG9C4XAA0c48KjvjtAUTC1Slg+FovdD/jJOfh76FeN/ZSBicjK8Us8/1rfmv9n VveL+9QDDxCpdUFI/NXZz8+LVuqKepF9so6ixzad69vH0lCb8F2DigYQEtAWflsM YN2D8kd7Ap7S2CErfSHBFA1XgA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:59:35 2026 by rpki-client