$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft File: -Xh9LKFDLKbpMzLg7e9rB7JF17A.mft (raw, json) Hash identifier: uBbAZ9UTCnUjPY4DUW+Vwae66A2GlBdaWCik0SyZFRo= Subject key identifier: ED:63:A3:FE:01:98:0F:AA:A0:77:83:76:9F:D4:BD:8D:C2:F3:20:48 Authority key identifier: F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 Certificate issuer: /CN=A912DA1F/serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Certificate serial: 08B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft Manifest number: 08A9 Signing time: Tue 24 Mar 2026 20:13:22 +0000 Manifest this update: Tue 24 Mar 2026 20:13:21 +0000 Manifest next update: Tue 31 Mar 2026 20:13:21 +0000 Files and hashes: 1: -Xh9LKFDLKbpMzLg7e9rB7JF17A.crl (hash: Si5mwy03v+0YbtqfyJbpor4iMmG6oWhbtPhcCrc2hMc=) 2: D6883996DABE11EAB12A5209C4F9AE02.roa (hash: D05It9UAiO51r8ILKVDfdiFJE2qz6LfsL6XWmNrhCuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2228 (0x8b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1F, serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Validity Not Before: Mar 24 20:13:21 2026 GMT Not After : Mar 31 20:13:21 2026 GMT Subject: CN=69c2f062-dd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:48:25:a0:4b:59:57:e0:15:31:6a:17:47:2b: e6:ae:aa:2a:a3:ca:5b:ad:34:13:16:12:b6:25:ee: ed:5f:69:b1:37:1f:43:f2:91:15:67:c7:20:f4:cb: 6f:59:e4:5c:76:5b:b2:f0:5c:ce:dd:81:be:15:42: 41:6f:c7:ad:7e:48:66:70:6f:6f:a3:7d:0a:af:8a: d5:ba:8f:2f:cd:06:b4:94:29:e2:4c:a6:eb:81:67: 6d:b7:36:2a:b0:28:b4:6b:74:8e:c8:91:be:74:fa: dc:91:30:ed:ef:4d:53:d4:d9:8b:60:20:5a:24:94: a6:64:49:60:f9:6f:b7:a9:97:77:67:b6:ad:32:9a: d4:07:0c:e9:fb:0e:33:b0:3c:f4:a8:3d:2c:5b:30: 2a:ae:54:36:3f:ff:e8:87:a6:5a:85:65:2a:9e:9d: 38:da:5a:a7:03:a0:e7:4e:b6:b3:60:22:d8:8a:08: 71:c7:97:9e:53:0a:f8:72:22:05:cd:eb:d4:ae:16: e8:5e:2f:40:8f:c2:50:63:2f:7d:0a:95:4b:fb:9c: 06:64:01:ac:ca:32:10:83:0e:e2:32:6c:42:21:6c: e6:dd:3f:e5:78:c2:62:da:c2:7a:1e:db:e7:6a:35: 3a:e5:88:11:ff:70:78:e6:b9:9f:db:a7:1c:e0:30: 12:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:63:A3:FE:01:98:0F:AA:A0:77:83:76:9F:D4:BD:8D:C2:F3:20:48 X509v3 Authority Key Identifier: keyid:F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f6:94:df:de:a9:35:c6:64:59:1d:4c:85:93:8b:c3:ff:97: f5:58:65:49:d1:c4:42:d2:b8:ec:94:37:d2:10:b5:de:db:6b: 8f:f1:54:91:6f:7e:ad:39:26:13:ab:2f:bb:6d:5e:7d:fb:6a: 64:b4:5c:2f:e1:47:44:15:4e:6b:8e:ac:24:9d:33:71:0f:05: 83:31:b5:d2:35:22:fb:3b:2d:b7:63:00:6a:cc:41:66:f4:b0: dd:ca:f9:d0:81:b5:4e:43:7b:df:08:3b:67:c8:eb:97:89:28: aa:e5:37:47:05:20:69:a6:f7:2a:d8:c8:e9:bf:c2:9d:30:06: e4:0e:77:c5:48:83:90:da:13:37:f1:fa:7f:f9:fc:07:75:cf: b3:d3:11:32:bf:40:a6:85:52:90:bc:4d:15:be:a9:2f:56:04: 6e:d1:91:5d:86:27:31:db:74:f6:00:b5:02:d1:2b:47:c4:c3: ab:4b:41:77:69:5b:dc:bb:9e:d4:e8:45:33:e9:68:9a:50:5f: cb:7e:c2:b8:92:69:d6:04:18:ed:d8:0d:bd:d2:6c:f4:17:19: 9d:1a:0a:fe:d8:21:a7:dc:b9:e3:33:e9:f9:ba:de:fa:f4:a6: 4d:31:ad:2a:65:be:57:ed:35:e3:85:bd:2d:61:68:6e:fc:a3: d4:f7:70:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUYxMTAvBgNVBAUTKEY5Nzg3RDJDQTE0MzJDQTZFOTMzMzJFMEVERUY2QjA3 QjI0NUQ3QjAwHhcNMjYwMzI0MjAxMzIxWhcNMjYwMzMxMjAxMzIxWjAYMRYwFAYD VQQDEw02OWMyZjA2Mi1kZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kgloEtZV+AVMWoXRyvmrqoqo8pbrTQTFhK2Je7tX2mxNx9D8pEVZ8cg9Mtv WeRcdluy8FzO3YG+FUJBb8etfkhmcG9vo30Kr4rVuo8vzQa0lCniTKbrgWdttzYq sCi0a3SOyJG+dPrckTDt701T1NmLYCBaJJSmZElg+W+3qZd3Z7atMprUBwzp+w4z sDz0qD0sWzAqrlQ2P//oh6ZahWUqnp042lqnA6DnTrazYCLYighxx5eeUwr4ciIF zevUrhboXi9Aj8JQYy99CpVL+5wGZAGsyjIQgw7iMmxCIWzm3T/leMJi2sJ6Htvn ajU65YgR/3B45rmf26cc4DAS2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO1jo/4B mA+qoHeDdp/UvY3C8yBIMB8GA1UdIwQYMBaAFPl4fSyhQyym6TMy4O3vaweyRdew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRi9GQjE0QTg4MkRB QkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExLYnBNekxnN2U5ckI3SkYx N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YaDlMS0ZETEticE16TGc3ZTlyQjdKRjE3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRi9GQjE0QTg4MkRBQkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExL YnBNekxnN2U5ckI3SkYxN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATPaU396pNcZkWR1MhZOLw/+X9VhlSdHEQtK47JQ30hC13ttrj/FUkW9+rTkm E6svu21efftqZLRcL+FHRBVOa46sJJ0zcQ8FgzG10jUi+zstt2MAasxBZvSw3cr5 0IG1TkN73wg7Z8jrl4koquU3RwUgaab3KtjI6b/CnTAG5A53xUiDkNoTN/H6f/n8 B3XPs9MRMr9ApoVSkLxNFb6pL1YEbtGRXYYnMdt09gC1AtErR8TDq0tBd2lb3Lue 1OhFM+lomlBfy37CuJJp1gQY7dgNvdJs9BcZnRoK/tghp9y54zPp+bre+vSmTTGt KmW+V+0144W9LWFobvyj1PdwKQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:19 2026 by rpki-client