$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: vp0FDTEN8O/2S70sNIqAsnqYPl4o/0CNF0ctpN/u2uQ= Subject key identifier: 52:B5:70:A1:77:29:EC:4C:9D:D7:39:5C:12:79:B1:FE:84:88:EC:1C Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 020A Signing time: Wed 25 Mar 2026 02:22:15 +0000 Manifest this update: Wed 25 Mar 2026 02:22:15 +0000 Manifest next update: Wed 01 Apr 2026 02:22:15 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: 31oY9RB32QH/VsJZSvmC4Usw2Jx27K5xjlDXvXB9PqQ=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: wcyOVBW/tGd3skqw30jqZPA6tqviwDkxNlXM49SoLAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Mar 25 02:22:15 2026 GMT Not After : Apr 1 02:22:15 2026 GMT Subject: CN=69c346d7-9099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:de:88:8d:ca:27:bd:e5:a0:ed:2d:55:6e:c2: 5c:b6:db:5f:79:c9:15:be:42:51:89:c8:70:13:49: c4:c2:26:41:71:9d:bc:76:32:7b:69:8a:27:b3:36: 09:d2:32:24:5e:2c:ad:0d:66:0c:ce:87:8e:e2:57: 89:97:49:6f:5f:1e:a1:82:2f:ec:b2:02:91:50:d2: 61:10:91:ed:82:d3:f4:b6:ef:0d:7c:6b:f9:48:25: c8:e2:4d:d8:e7:d0:33:5a:bb:a0:f5:49:f1:db:ca: 89:96:98:36:8c:16:32:45:10:88:40:9d:05:20:b9: 92:11:e0:3a:b3:ec:ee:9c:2d:47:5c:7e:31:d8:bc: 99:7c:9e:2f:04:f7:11:1e:00:4c:ca:39:c4:a6:b8: 6a:98:5a:30:14:bd:a3:3d:e8:3c:de:65:62:d9:9e: ef:c7:1b:de:07:47:2e:a1:ed:46:22:16:56:8e:65: 6a:f9:40:7a:5d:81:c9:ff:1e:75:18:44:e6:53:c9: 0e:9b:b4:dd:e4:40:84:98:f2:5e:8c:3d:06:27:9e: 96:e4:c7:1c:bf:ab:97:8b:66:00:a5:4e:20:69:ef: 26:10:e8:4b:05:bb:80:bc:19:f1:3d:dd:5f:75:2c: c5:bb:5e:6a:c0:c3:c3:da:b1:bd:34:76:10:7c:e4: 15:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B5:70:A1:77:29:EC:4C:9D:D7:39:5C:12:79:B1:FE:84:88:EC:1C X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:1d:98:96:b9:fc:bd:60:fd:89:7d:68:9b:a2:b4:50:a0:47: 77:12:41:85:a4:68:9a:ec:b6:d3:88:3e:13:6c:de:9c:03:de: 15:f9:9c:3b:a7:46:5a:30:75:aa:a0:75:cd:f3:9d:9b:b6:f9: fe:f8:bf:e5:6f:f0:17:9c:cb:d4:7f:eb:5e:32:f8:b0:95:0f: be:ef:83:58:5b:74:67:42:f7:ca:1f:74:b0:da:27:34:73:66: 5b:b7:a9:c2:d9:4f:f3:81:09:38:97:b0:4d:63:7d:90:d8:9c: 30:e8:75:86:55:bb:11:44:10:29:1d:50:51:7c:a9:22:83:cc: 6c:c8:87:e8:78:03:e1:e4:4c:db:5e:ce:42:84:64:04:a6:1a: a3:cd:9e:9f:14:61:94:4d:f1:10:9c:d0:2d:2e:62:50:ac:67: e1:c3:90:63:af:6c:40:9a:8b:97:f4:a8:15:eb:8a:b7:d5:b5: 88:4d:e4:a0:ab:39:f8:75:5e:7f:66:18:b1:d2:b7:31:df:96: f5:0a:95:c3:8f:49:69:de:94:27:35:27:ba:c9:52:e2:87:85: 84:d7:9d:e0:35:17:12:44:f0:6a:3d:93:ff:33:0b:9a:62:a6: a7:55:60:5e:df:20:de:80:fd:67:3e:fb:6e:63:3f:34:28:13: 7b:65:47:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjYwMzI1MDIyMjE1WhcNMjYwNDAxMDIyMjE1WjAYMRYwFAYD VQQDEw02OWMzNDZkNy05MDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA796IjconveWg7S1VbsJctttfeckVvkJRichwE0nEwiZBcZ28djJ7aYonszYJ 0jIkXiytDWYMzoeO4leJl0lvXx6hgi/ssgKRUNJhEJHtgtP0tu8NfGv5SCXI4k3Y 59AzWrug9Unx28qJlpg2jBYyRRCIQJ0FILmSEeA6s+zunC1HXH4x2LyZfJ4vBPcR HgBMyjnEprhqmFowFL2jPeg83mVi2Z7vxxveB0cuoe1GIhZWjmVq+UB6XYHJ/x51 GETmU8kOm7Td5ECEmPJejD0GJ56W5Mccv6uXi2YApU4gae8mEOhLBbuAvBnxPd1f dSzFu15qwMPD2rG9NHYQfOQVdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFK1cKF3 KexMndc5XBJ5sf6EiOwcMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzB2Ylrn8vWD9iX1om6K0UKBHdxJBhaRomuy204g+E2zenAPeFfmcO6dGWjB1 qqB1zfOdm7b5/vi/5W/wF5zL1H/rXjL4sJUPvu+DWFt0Z0L3yh90sNonNHNmW7ep wtlP84EJOJewTWN9kNicMOh1hlW7EUQQKR1QUXypIoPMbMiH6HgD4eRM217OQoRk BKYao82enxRhlE3xEJzQLS5iUKxn4cOQY69sQJqLl/SoFeuKt9W1iE3koKs5+HVe f2YYsdK3Md+W9QqVw49Jad6UJzUnuslS4oeFhNed4DUXEkTwaj2T/zMLmmKmp1Vg Xt8g3oD9Zz77bmM/NCgTe2VH7w== -----END CERTIFICATE-----Generated at Thu Mar 26 08:30:05 2026 by rpki-client