$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: OHSY8CuaTzjHl600syx8jQX4pCEQnbuHIM4QpQW1iKc= Subject key identifier: 20:9B:C5:6A:88:42:B4:7E:A6:71:69:06:F1:F6:15:F1:CD:50:42:AC Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 10EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 10A8 Signing time: Tue 24 Mar 2026 17:16:37 +0000 Manifest this update: Tue 24 Mar 2026 17:16:37 +0000 Manifest next update: Tue 31 Mar 2026 17:16:37 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: 91cBPTeefVE7W5++5uFGYfGDPSQmVc/fo9yUab3VYDc=) 2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: Nvtm5zPUTLfKMfwQNw1RkItbZZ/wblgNOEK3hvT7oKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4330 (0x10ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Mar 24 17:16:37 2026 GMT Not After : Mar 31 17:16:37 2026 GMT Subject: CN=69c2c6f5-26fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:08:1b:88:37:bc:16:d3:56:37:2c:44:b5:d9: b4:e2:98:6f:cd:65:75:4c:cf:2d:b0:fa:ab:2a:c5: 8b:80:46:64:3b:81:28:f4:bf:76:60:ff:1c:18:fe: 15:09:93:8e:cc:7d:ef:31:68:e1:96:7f:65:95:70: 8e:4f:72:15:e1:6b:25:73:41:03:72:60:78:1d:dd: e8:07:0e:8e:2c:3e:7c:2e:10:f0:ed:ad:d4:f0:0d: 58:9f:93:c5:80:a8:75:e5:1b:d0:14:2e:73:2e:7b: 43:84:e6:ca:49:a4:09:e7:fe:c9:e8:a8:15:24:08: 46:4c:94:ac:c5:04:c4:72:1c:78:5f:1a:9d:51:92: be:d6:d3:d8:bc:70:71:6a:53:16:a3:e1:7a:40:f8: a4:07:b3:17:5e:c8:e0:b0:9a:da:6e:14:c4:b2:e3: 4f:4f:7b:ab:84:84:b1:dd:77:33:ba:a1:04:e8:ef: 25:89:a0:8d:b5:7e:e1:8c:94:3a:a5:d8:58:3f:57: 5c:68:2c:b3:ed:ec:5a:a2:7f:f1:b0:71:c2:bc:f4: db:cb:2f:f3:67:a7:9f:75:d7:ba:f3:64:f0:84:e8: 31:39:5f:2f:76:68:23:5e:71:a1:84:de:a2:0c:d8: 6c:fc:43:8e:60:b8:ea:89:c0:34:db:1d:83:bb:31: b1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9B:C5:6A:88:42:B4:7E:A6:71:69:06:F1:F6:15:F1:CD:50:42:AC X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:26:08:3d:e3:75:bd:83:2b:32:4d:7c:65:df:5d:f2:18:a9: d1:a7:b3:67:d7:3e:89:2a:61:5c:f0:1d:e0:01:43:f6:05:f4: 86:70:ed:0d:67:39:94:dd:89:d8:3b:25:9c:ae:bc:9d:73:f9: f6:e2:b2:eb:e5:58:d4:0b:bc:6f:95:12:0d:86:2e:e7:49:f4: ee:b4:3c:b3:20:36:30:b4:c4:6a:9b:6a:0c:73:70:69:2f:57: 74:51:8c:af:5d:a9:89:82:e2:ac:42:d3:08:2e:91:c6:91:41: b6:7d:79:de:bb:f4:b9:38:bb:9d:3c:4a:7a:d3:4e:3a:0e:b6: 3d:88:c3:25:ee:47:21:95:dc:fb:e5:aa:19:8c:15:29:1b:55: 5c:15:77:1e:20:4d:92:24:24:28:ce:ad:a5:70:40:13:38:e4: dd:d0:7b:23:b2:7e:e1:0a:86:76:73:38:21:29:b0:64:0a:70: 88:71:d4:62:78:56:99:a6:e0:31:42:1c:07:4e:ea:0d:2e:1a: bd:4b:f9:64:8d:78:8c:b4:e8:95:2f:d6:74:cb:12:b4:59:4c: 4b:ca:be:ee:4b:8e:7c:cd:84:48:a7:3b:8e:79:bf:ad:a0:b4: 0d:58:ac:9b:ae:94:23:aa:a6:0e:01:54:db:69:0e:fa:41:fb: bb:f7:7f:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjYwMzI0MTcxNjM3WhcNMjYwMzMxMTcxNjM3WjAYMRYwFAYD VQQDEw02OWMyYzZmNS0yNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwgbiDe8FtNWNyxEtdm04phvzWV1TM8tsPqrKsWLgEZkO4Eo9L92YP8cGP4V CZOOzH3vMWjhln9llXCOT3IV4Wslc0EDcmB4Hd3oBw6OLD58LhDw7a3U8A1Yn5PF gKh15RvQFC5zLntDhObKSaQJ5/7J6KgVJAhGTJSsxQTEchx4XxqdUZK+1tPYvHBx alMWo+F6QPikB7MXXsjgsJrabhTEsuNPT3urhISx3XczuqEE6O8liaCNtX7hjJQ6 pdhYP1dcaCyz7exaon/xsHHCvPTbyy/zZ6efdde682TwhOgxOV8vdmgjXnGhhN6i DNhs/EOOYLjqicA02x2DuzGxTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCCbxWqI QrR+pnFpBvH2FfHNUEKsMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASiYIPeN1vYMrMk18Zd9d8hip0aezZ9c+iSphXPAd4AFD9gX0hnDtDWc5lN2J 2DslnK68nXP59uKy6+VY1Au8b5USDYYu50n07rQ8syA2MLTEaptqDHNwaS9XdFGM r12piYLirELTCC6RxpFBtn153rv0uTi7nTxKetNOOg62PYjDJe5HIZXc++WqGYwV KRtVXBV3HiBNkiQkKM6tpXBAEzjk3dB7I7J+4QqGdnM4ISmwZApwiHHUYnhWmabg MUIcB07qDS4avUv5ZI14jLTolS/WdMsStFlMS8q+7kuOfM2ESKc7jnm/raC0DVis m66UI6qmDgFU22kO+kH7u/d/Kg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:36 2026 by rpki-client