$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: vZ3oRwCZQYAqefPVq7RpcsRzWrTo24eopjpaKB6Ayjg= Subject key identifier: EF:10:78:B8:21:04:43:73:E3:3F:2B:71:69:E9:0F:4C:E6:E2:1A:41 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 07EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 07E1 Signing time: Tue 24 Mar 2026 21:02:28 +0000 Manifest this update: Tue 24 Mar 2026 21:02:27 +0000 Manifest next update: Tue 31 Mar 2026 21:02:27 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: Qj7hebfNqYZXv8Y9gtws2FZQkSOqhcEn7099qxlFrCw=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: pv+Z3nYrrzxoESGY4e/aJmMCDLaqcQjYTIDQwPuKCpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Mar 24 21:02:27 2026 GMT Not After : Mar 31 21:02:27 2026 GMT Subject: CN=69c2fbe4-2ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b3:0a:ca:45:a1:a2:5c:67:95:62:05:8a:a0: 91:06:2e:e8:e2:eb:f2:16:b5:77:2a:51:fe:d9:6a: 26:00:fa:41:30:e0:bd:77:41:55:8c:bd:c6:19:dd: 28:c8:04:ab:6b:23:a9:ff:4f:fc:35:93:69:97:2e: 8c:50:02:76:d6:ff:46:29:d4:86:b4:af:9c:97:e1: ae:b5:8c:5f:d4:03:7c:00:ed:d2:15:aa:3e:91:a6: de:e1:c8:ba:bd:83:78:b7:9c:5d:a4:b2:7f:2f:bd: 60:0d:90:67:c7:5c:41:e3:31:ec:1b:23:b5:fc:fc: 6c:9f:f3:2e:f5:2a:1a:de:c4:c0:e5:b6:60:ec:d4: 3c:e5:c7:f4:f0:50:9a:50:73:e1:76:c8:7a:21:7f: 4d:94:74:10:e1:02:c2:b7:39:a8:ef:e9:00:7d:da: ac:79:08:4d:5d:3f:b0:d6:ca:a0:b6:23:be:b2:cf: b1:81:bd:ac:14:af:c4:41:f0:f2:da:ea:1f:52:ae: 8f:a8:81:3b:64:d7:46:f9:7f:e6:11:7c:eb:8f:7e: be:29:b6:aa:7a:ad:67:74:22:bb:5d:86:6e:fa:39: 63:a8:ba:2b:dd:67:f6:49:69:53:f0:bf:cd:78:1d: 99:48:52:ec:13:8b:20:cc:9b:cf:6f:29:a8:e5:8b: 88:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:78:B8:21:04:43:73:E3:3F:2B:71:69:E9:0F:4C:E6:E2:1A:41 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:58:06:a0:89:1f:64:91:42:83:2b:0e:8b:2a:ea:75:bb:90: 4d:2b:47:9e:1f:f6:32:03:f0:cb:24:11:05:03:29:7e:64:a5: 23:3d:3b:3a:fc:9e:04:9d:85:c7:4c:cd:b1:8e:d8:4e:f2:b8: 93:92:0e:5e:b4:e1:6b:05:a5:55:da:82:be:88:6b:09:cb:81: 04:34:39:b0:7b:94:4b:38:3f:ae:fd:f8:cf:24:a3:2d:05:e9: f8:2b:71:be:b2:4f:ae:90:3d:f4:47:86:83:9c:65:04:2b:d5: b3:6b:ea:00:24:64:40:c4:92:72:6f:28:29:bc:ef:e1:da:b5: 1a:34:bf:f4:d6:99:f3:ab:a8:36:3f:d2:e8:3a:2f:3d:42:e5: 0f:0b:b2:4e:32:77:2c:eb:61:71:d1:c3:3b:57:d2:f7:8a:93: 87:88:e4:36:34:68:81:6f:4c:9a:d8:22:a1:73:f7:63:b1:cb: e7:17:02:36:ab:3f:bd:89:42:08:00:63:84:b9:e5:4d:27:b5: 5f:3c:01:c4:fa:77:7d:72:86:6e:9a:67:52:3f:0e:a4:a5:54: 81:27:48:8a:ca:da:95:fd:d5:46:30:c4:09:92:c6:7a:a1:b0: 70:4b:5e:33:5c:f6:c9:d6:60:06:cd:af:5a:6a:74:b4:00:15: 95:28:9b:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjYwMzI0MjEwMjI3WhcNMjYwMzMxMjEwMjI3WjAYMRYwFAYD VQQDEw02OWMyZmJlNC0yZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLMKykWholxnlWIFiqCRBi7o4uvyFrV3KlH+2WomAPpBMOC9d0FVjL3GGd0o yASrayOp/0/8NZNply6MUAJ21v9GKdSGtK+cl+GutYxf1AN8AO3SFao+kabe4ci6 vYN4t5xdpLJ/L71gDZBnx1xB4zHsGyO1/Pxsn/Mu9Soa3sTA5bZg7NQ85cf08FCa UHPhdsh6IX9NlHQQ4QLCtzmo7+kAfdqseQhNXT+w1sqgtiO+ss+xgb2sFK/EQfDy 2uofUq6PqIE7ZNdG+X/mEXzrj36+Kbaqeq1ndCK7XYZu+jljqLor3Wf2SWlT8L/N eB2ZSFLsE4sgzJvPbymo5YuIJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO8QeLgh BENz4z8rcWnpD0zm4hpBMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVVgGoIkfZJFCgysOiyrqdbuQTStHnh/2MgPwyyQRBQMpfmSlIz07OvyeBJ2F x0zNsY7YTvK4k5IOXrThawWlVdqCvohrCcuBBDQ5sHuUSzg/rv34zySjLQXp+Ctx vrJPrpA99EeGg5xlBCvVs2vqACRkQMSScm8oKbzv4dq1GjS/9NaZ86uoNj/S6Dov PULlDwuyTjJ3LOthcdHDO1fS94qTh4jkNjRogW9MmtgioXP3Y7HL5xcCNqs/vYlC CABjhLnlTSe1XzwBxPp3fXKGbppnUj8OpKVUgSdIisralf3VRjDECZLGeqGwcEte M1z2ydZgBs2vWmp0tAAVlSibDg== -----END CERTIFICATE-----Generated at Thu Mar 26 12:17:25 2026 by rpki-client