$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: YLvrX79L8eNUoDH9GqgJxbJbYGVCYY3EX8X+osHLgeA= Subject key identifier: 85:42:3F:02:14:89:4E:0C:80:FC:33:60:F2:77:18:F2:8A:42:0B:08 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 3548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 3535 Signing time: Tue 24 Mar 2026 15:03:37 +0000 Manifest this update: Tue 24 Mar 2026 15:03:36 +0000 Manifest next update: Tue 31 Mar 2026 15:03:36 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: 86fMrq4nbBSY0rNX3WYNm47UJ2WB7VoVLc4jp8bOOB8=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: OakXz6uabwbVjZ3x8angGynzmkwZsBIUc2kp6w+BN9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13640 (0x3548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Mar 24 15:03:36 2026 GMT Not After : Mar 31 15:03:36 2026 GMT Subject: CN=69c2a7c9-ee7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ab:79:aa:92:77:f6:c6:89:64:e1:1a:bf:f5: 6c:cf:cc:fa:88:76:39:6e:96:2f:33:91:c3:50:cc: 23:57:0a:95:79:28:d9:c3:aa:47:3d:fa:59:23:d3: 45:26:73:df:58:7c:e4:a9:07:9f:8e:12:a2:1a:88: 69:17:b7:31:95:f4:bd:24:4d:7a:7f:f5:ca:ff:03: 24:3e:3c:cd:31:c8:da:4f:ff:5e:0a:06:ba:20:c9: e0:39:3c:6c:c1:37:b3:3f:53:de:fb:cf:82:89:38: 75:7a:f7:60:91:d7:7f:31:cf:46:e1:d2:e3:a1:28: 24:6e:d2:d4:67:95:41:a3:eb:49:fa:c3:67:94:c6: 33:66:e2:ac:d5:c6:1c:59:d7:be:b1:7a:d1:5a:a1: 32:13:aa:d1:3a:b2:37:b8:6b:93:15:06:a8:fb:fe: 5d:a2:1f:3d:e5:17:be:24:9d:ef:16:bb:b8:54:2c: df:8a:c1:12:9b:79:01:f0:4e:14:9d:b0:87:ed:2a: 58:9b:07:f9:49:80:e5:4b:db:fd:c5:5b:73:b8:cd: 76:44:89:11:98:0d:76:a6:49:9d:49:b6:3c:bc:22: 8b:8e:9c:c9:a4:45:41:b8:af:34:09:69:3c:ef:08: 9e:8b:d8:41:93:b6:05:32:66:45:48:86:5d:b9:a3: 0b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:42:3F:02:14:89:4E:0C:80:FC:33:60:F2:77:18:F2:8A:42:0B:08 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:a7:55:74:d1:b4:59:2e:f0:90:07:73:e1:6b:62:7e:c7:3e: a6:67:34:9d:28:6b:67:00:3a:41:63:b8:c0:bf:3b:0d:92:7d: 41:c7:65:57:c0:b7:f5:35:a0:b6:f3:8c:40:a3:c4:58:cc:d4: 22:2b:11:18:db:1e:6f:48:ab:df:53:f9:63:2d:18:6e:d1:12: 6c:e5:3e:90:24:c4:3d:c4:20:7d:f3:1b:bf:c1:54:c1:2d:21: 35:8c:7a:3e:1e:14:e3:b5:2e:24:34:24:9f:b4:68:73:2a:8c: 28:f4:0b:ff:94:d5:9a:10:e0:01:87:1e:9c:f6:3a:db:ca:6a: 43:09:3d:6b:b0:e2:27:28:5c:ed:fa:a7:2d:33:fa:37:ea:1a: 53:21:7d:bf:8d:67:0c:85:c3:05:af:6b:1c:27:fc:41:0b:3a: d8:ed:36:cf:de:dd:9a:1b:48:dd:ca:52:d3:0b:f4:67:cd:d3: 46:50:0e:a8:1a:22:a2:7e:2d:85:12:40:8e:d9:c0:1f:55:0f: 6d:cd:60:d8:63:a0:f6:4f:7b:d8:b4:6c:72:6b:40:58:5d:9b: 0b:24:30:2c:81:4d:50:23:b8:13:a1:d2:15:06:78:b0:44:27: 41:1a:26:20:a4:61:56:94:64:c4:c7:4a:ca:24:eb:a3:98:46: 26:c5:8e:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjYwMzI0MTUwMzM2WhcNMjYwMzMxMTUwMzM2WjAYMRYwFAYD VQQDEw02OWMyYTdjOS1lZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqt5qpJ39saJZOEav/Vsz8z6iHY5bpYvM5HDUMwjVwqVeSjZw6pHPfpZI9NF JnPfWHzkqQefjhKiGohpF7cxlfS9JE16f/XK/wMkPjzNMcjaT/9eCga6IMngOTxs wTezP1Pe+8+CiTh1evdgkdd/Mc9G4dLjoSgkbtLUZ5VBo+tJ+sNnlMYzZuKs1cYc Wde+sXrRWqEyE6rROrI3uGuTFQao+/5doh895Re+JJ3vFru4VCzfisESm3kB8E4U nbCH7SpYmwf5SYDlS9v9xVtzuM12RIkRmA12pkmdSbY8vCKLjpzJpEVBuK80CWk8 7wiei9hBk7YFMmZFSIZduaMLxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVCPwIU iU4MgPwzYPJ3GPKKQgsIMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlqdVdNG0WS7wkAdz4Wtifsc+pmc0nShrZwA6QWO4wL87DZJ9QcdlV8C39TWg tvOMQKPEWMzUIisRGNseb0ir31P5Yy0YbtESbOU+kCTEPcQgffMbv8FUwS0hNYx6 Ph4U47UuJDQkn7RocyqMKPQL/5TVmhDgAYcenPY628pqQwk9a7DiJyhc7fqnLTP6 N+oaUyF9v41nDIXDBa9rHCf8QQs62O02z97dmhtI3cpS0wv0Z83TRlAOqBoion4t hRJAjtnAH1UPbc1g2GOg9k972LRscmtAWF2bCyQwLIFNUCO4E6HSFQZ4sEQnQRom IKRhVpRkxMdKyiTro5hGJsWOcg== -----END CERTIFICATE-----Generated at Thu Mar 26 09:22:44 2026 by rpki-client