$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft File: cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft (raw, json) Hash identifier: e+93H1OI4c6ZkWvPtN66UFEIk9f4HJNQu6/qazEtIZo= Subject key identifier: 29:BF:0B:C8:99:CA:0A:A5:BF:43:B7:E1:AB:30:58:00:D4:0B:C8:E2 Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft Manifest number: B5 Signing time: Wed 25 Mar 2026 06:17:03 +0000 Manifest this update: Wed 25 Mar 2026 06:17:03 +0000 Manifest next update: Wed 01 Apr 2026 06:17:03 +0000 Files and hashes: 1: cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl (hash: kj70wxbt6cSkWXtUCkxkOk5v3q/8rGEmBF+HzG1ND4I=) 2: 42CFB44C141411F0BAD16274C4F9AE02.roa (hash: VS76jVfnUICZ9bJBzzkEK0ZrDmbbMRlLDj2ohqAMUKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Mar 25 06:17:03 2026 GMT Not After : Apr 1 06:17:03 2026 GMT Subject: CN=69c37ddf-b5e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:aa:e8:6e:b5:34:28:ae:47:1e:04:b3:23:14: b4:ac:a3:77:59:be:46:9a:84:2c:6c:dd:bb:d9:93: 67:41:54:9c:89:a2:0b:3e:73:6c:9a:22:8e:ca:68: e2:f3:fe:38:a1:17:84:a6:bc:55:93:e6:6f:df:81: 08:9d:eb:2f:fa:9c:fc:36:42:66:53:df:73:43:27: ee:c2:6a:08:4a:88:5d:9e:43:54:5a:11:5d:47:1a: 07:aa:b1:d3:ca:ab:ad:34:c8:fa:92:8c:c1:f3:0a: 4e:a1:f3:50:53:5d:e9:c1:5a:e0:cd:a8:20:7f:11: 56:9f:46:77:72:32:11:5f:bd:7f:27:70:f4:65:e6: 5c:fa:cf:25:96:14:9a:c4:f9:b5:76:69:2a:ed:59: 8e:3e:68:bb:38:95:cf:93:b9:82:4d:06:34:01:76: 6e:e1:de:42:21:f8:23:2e:50:29:e2:3b:b2:2e:fc: 95:81:3f:62:c0:0d:b3:63:2d:0d:2a:70:bf:9a:29: 5f:45:e0:c9:65:50:a4:7e:55:32:d8:50:58:14:cb: 00:a3:27:e6:98:17:ab:c1:09:ec:57:32:55:8a:8b: e8:73:a3:a3:47:92:9a:18:0c:75:47:a0:e2:9a:44: 7d:9b:ad:a9:31:b5:53:7d:f9:57:d1:42:f1:57:1c: 9e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BF:0B:C8:99:CA:0A:A5:BF:43:B7:E1:AB:30:58:00:D4:0B:C8:E2 X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:23:a5:25:1d:cf:8e:de:f6:07:52:3e:81:10:a0:95:3c:96: 03:48:19:e4:0f:17:00:44:a2:aa:66:98:7f:1a:b8:7b:5f:9a: c8:7e:0d:5c:36:ad:f8:28:48:67:ca:37:36:24:23:28:7b:32: 65:d3:68:2c:d5:79:5a:15:de:74:43:3c:a3:3e:8d:e9:ed:f7: 29:42:1e:7e:78:85:ad:f8:79:36:e3:af:53:7c:19:9c:67:a7: d6:da:db:26:28:39:2a:92:2e:cd:04:75:44:06:9e:7a:ba:1d: 7b:a9:4a:d5:4b:b4:74:4d:d8:ad:31:18:70:8c:2b:0f:26:c4: 6b:70:4f:51:1b:17:87:05:2f:21:41:d3:2d:84:2d:5a:d5:29: 86:9f:b0:b6:40:81:1b:7e:42:ac:2b:5f:f6:6a:7d:03:44:22: 2a:8d:7f:0c:72:c5:b2:56:40:6e:bc:19:fe:60:44:07:ff:8c: 99:98:92:40:9e:d1:dc:2d:0d:ee:c1:c8:f9:41:1c:44:52:1f: 74:61:88:53:94:fd:7e:34:27:6f:c9:55:c2:51:14:4a:72:e5: fc:60:d7:64:9b:f6:81:76:d7:1f:4b:8f:00:15:44:a3:40:a9: 33:ed:cf:71:f3:85:ae:b9:7b:27:0f:c0:bb:2e:85:01:d8:5a: 68:5c:fd:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGMjExMTAvBgNVBAUTKDcwRDI2MDFDQjBEMEZBNEY5QzVGMEUwMjg2RDhCNkFG RDkyMzVBMDYwHhcNMjYwMzI1MDYxNzAzWhcNMjYwNDAxMDYxNzAzWjAYMRYwFAYD VQQDEw02OWMzN2RkZi1iNWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KrobrU0KK5HHgSzIxS0rKN3Wb5GmoQsbN272ZNnQVSciaILPnNsmiKOymji 8/44oReEprxVk+Zv34EInesv+pz8NkJmU99zQyfuwmoISohdnkNUWhFdRxoHqrHT yqutNMj6kozB8wpOofNQU13pwVrgzaggfxFWn0Z3cjIRX71/J3D0ZeZc+s8llhSa xPm1dmkq7VmOPmi7OJXPk7mCTQY0AXZu4d5CIfgjLlAp4juyLvyVgT9iwA2zYy0N KnC/milfReDJZVCkflUy2FBYFMsAoyfmmBerwQnsVzJViovoc6OjR5KaGAx1R6Di mkR9m62pMbVTfflX0ULxVxyeHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCm/C8iZ ygqlv0O34aswWADUC8jiMB8GA1UdIwQYMBaAFHDSYByw0PpPnF8OAobYtq/ZI1oG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEYyMS84NTE3RkIwODE0 MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1rLWNYdzRDaHRpMnI5a2pX Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOSmdITERRLWstY1h3NENodGkycjlraldnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEYyMS84NTE3RkIwODE0MTMxMUYwOEYxQTFENzNDNEY5QUUwMi9jTkpnSExEUS1r LWNYdzRDaHRpMnI5a2pXZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAICOlJR3Pjt72B1I+gRCglTyWA0gZ5A8XAESiqmaYfxq4e1+ayH4NXDat+ChI Z8o3NiQjKHsyZdNoLNV5WhXedEM8oz6N6e33KUIefniFrfh5NuOvU3wZnGen1trb Jig5KpIuzQR1RAaeerode6lK1Uu0dE3YrTEYcIwrDybEa3BPURsXhwUvIUHTLYQt WtUphp+wtkCBG35CrCtf9mp9A0QiKo1/DHLFslZAbrwZ/mBEB/+MmZiSQJ7R3C0N 7sHI+UEcRFIfdGGIU5T9fjQnb8lVwlEUSnLl/GDXZJv2gXbXH0uPABVEo0CpM+3P cfOFrrl7Jw/Auy6FAdhaaFz9JQ== -----END CERTIFICATE-----Generated at Thu Mar 26 08:53:52 2026 by rpki-client