$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: y9hgywD4rpCZ+h5/TqFRkgPHV9mocVC+MBBKzBm14VM= Subject key identifier: 32:2B:FA:8F:F8:50:F6:B3:F4:0E:88:7B:1D:72:78:53:4F:D1:D9:18 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 0303 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 02FC Signing time: Fri 27 Mar 2026 01:01:58 +0000 Manifest this update: Fri 27 Mar 2026 01:01:58 +0000 Manifest next update: Fri 03 Apr 2026 01:01:58 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: G1tdMrD3nwX7QoHChrCxX94higTpDYNalYNqpqaVTGg=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: CHlJpAmUO3HeXSZX7Pc0z854lGAon91AqOY8MRP1VAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 771 (0x303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Mar 27 01:01:58 2026 GMT Not After : Apr 3 01:01:58 2026 GMT Subject: CN=69c5d706-76a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:c7:4b:d8:57:00:c8:6f:b0:15:bc:b6:0c: 51:e2:af:8b:8d:b8:d5:06:77:6f:7b:0e:df:a7:16: 5b:5e:8c:37:32:5c:ff:93:ce:be:ac:40:1a:81:59: b0:f3:26:80:be:bc:cd:75:b5:f4:1d:12:01:de:4a: bb:fc:12:c5:06:f5:e1:0d:1a:c9:7f:bd:3c:37:77: 87:74:81:a1:9f:d7:cb:1e:53:7c:c0:e5:c6:e4:f4: c3:5c:b4:fa:43:2c:c5:08:75:72:13:f0:d4:f4:05: ac:27:c4:5c:72:07:7e:3f:31:8e:67:2c:4d:85:13: 70:d6:36:c8:7c:e1:d9:4a:cd:42:1d:4a:40:1d:5e: cd:a5:c7:67:2b:68:bf:85:7f:ef:d8:85:a0:cd:32: 93:33:3f:2a:99:59:7a:88:cb:0a:b2:b9:63:ba:27: a0:ce:01:f8:35:b2:aa:cb:ef:90:1f:9a:0b:61:0e: 16:57:cb:a2:12:00:04:d2:5c:62:ab:74:bc:5e:d6: 71:ed:99:d8:03:a4:69:4b:e0:3a:44:18:c6:70:dc: 08:69:38:68:2f:9d:f2:50:36:56:6f:10:07:96:04: 71:5d:e4:d9:fc:ad:89:2c:92:a1:50:18:b1:47:36: e1:76:4f:58:37:5b:ab:cb:f8:4a:ed:c7:f5:b6:28: 36:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2B:FA:8F:F8:50:F6:B3:F4:0E:88:7B:1D:72:78:53:4F:D1:D9:18 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:26:68:e1:23:ed:82:65:3e:da:fd:36:b8:a6:65:45:43:53: 25:4f:04:8c:0d:28:1b:77:71:ed:cd:ff:db:11:fc:af:be:b0: 71:1f:f3:a8:37:b3:d3:e7:82:7c:d4:12:32:84:50:84:62:42: 39:8f:7b:98:36:5d:9b:ef:38:e9:d8:cd:69:78:f6:5c:f3:1a: b2:a6:97:4c:3a:9f:d1:b6:bb:da:af:f0:b1:3c:47:bb:d0:1c: 5c:41:a6:f9:69:1b:52:2a:30:08:61:4c:ae:48:39:6f:a2:ef: 34:2d:9c:d9:0a:dc:7f:df:5f:2f:4e:dd:aa:aa:c8:1d:97:bb: 7a:1b:f1:f4:78:a0:82:6b:99:c0:da:b6:53:5c:2a:77:64:d9: 86:93:64:21:4c:8d:44:43:d3:c0:75:bc:71:25:e5:1f:72:ba: ae:f9:1a:2a:ff:b6:da:9a:fa:82:15:d5:c5:4e:c6:6a:3f:b4: 83:4e:1c:4e:98:6c:7c:33:5b:35:e8:30:55:65:4e:35:e7:f5: 55:31:58:f0:fa:f5:e4:bf:45:07:b6:db:55:bd:e0:54:fd:53: 1a:6d:d9:4b:14:29:e2:3d:0e:41:c4:e6:94:e4:81:0a:89:91: 5c:0f:51:2f:5b:44:b4:44:c8:e6:81:5b:cb:ea:89:de:58:c9: b4:c4:90:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjYwMzI3MDEwMTU4WhcNMjYwNDAzMDEwMTU4WjAYMRYwFAYD VQQDEw02OWM1ZDcwNi03NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgnHS9hXAMhvsBW8tgxR4q+LjbjVBndvew7fpxZbXow3Mlz/k86+rEAagVmw 8yaAvrzNdbX0HRIB3kq7/BLFBvXhDRrJf708N3eHdIGhn9fLHlN8wOXG5PTDXLT6 QyzFCHVyE/DU9AWsJ8Rccgd+PzGOZyxNhRNw1jbIfOHZSs1CHUpAHV7NpcdnK2i/ hX/v2IWgzTKTMz8qmVl6iMsKsrljuiegzgH4NbKqy++QH5oLYQ4WV8uiEgAE0lxi q3S8XtZx7ZnYA6RpS+A6RBjGcNwIaThoL53yUDZWbxAHlgRxXeTZ/K2JLJKhUBix Rzbhdk9YN1ury/hK7cf1tig2YwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDIr+o/4 UPaz9A6Iex1yeFNP0dkYMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArCZo4SPtgmU+2v02uKZlRUNTJU8EjA0oG3dx7c3/2xH8r76wcR/zqDez0+eC fNQSMoRQhGJCOY97mDZdm+846djNaXj2XPMasqaXTDqf0ba72q/wsTxHu9AcXEGm +WkbUiowCGFMrkg5b6LvNC2c2Qrcf99fL07dqqrIHZe7ehvx9HiggmuZwNq2U1wq d2TZhpNkIUyNREPTwHW8cSXlH3K6rvkaKv+22pr6ghXVxU7Gaj+0g04cTphsfDNb NegwVWVONef1VTFY8Pr15L9FB7bbVb3gVP1TGm3ZSxQp4j0OQcTmlOSBComRXA9R L1tEtETI5oFby+qJ3ljJtMSQYQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:17:57 2026 by rpki-client