$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: B7TcphFNqTb6BsWlh+Ncsh3gfrx9TvDBrtzH5En2emA= Subject key identifier: 5B:51:68:F6:17:95:A7:77:D0:BB:47:94:B6:48:1D:56:8B:5D:EA:11 Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 08F0 Signing time: Tue 24 Mar 2026 20:07:06 +0000 Manifest this update: Tue 24 Mar 2026 20:07:05 +0000 Manifest next update: Tue 31 Mar 2026 20:07:05 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: aRzhZ8VIy902II8BpltRkYLyGcuVefUO2av6pMVmU/k=) 2: BA33C4CC638A11F090002541C4F9AE02.roa (hash: rgcQn0IdN1G4X2mCbx+TQwSEQO4ecdv1pRq56PdhirY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Mar 24 20:07:05 2026 GMT Not After : Mar 31 20:07:05 2026 GMT Subject: CN=69c2eeea-4d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:11:61:eb:bb:76:5b:5c:da:4d:98:bf:16:ce: 6d:90:64:5a:c3:4c:3d:29:d6:7c:ec:ea:39:05:88: 43:55:8c:06:14:d3:6f:aa:6a:16:64:f1:f8:fb:e8: a4:27:54:fa:e9:a2:d2:8a:6e:69:6e:a7:e4:af:26: b8:c3:da:28:a3:d5:36:83:9b:72:32:19:c9:82:bd: 71:71:b5:67:7f:88:73:39:95:32:2b:fb:b7:de:44: a9:ff:0f:25:d6:dd:55:7c:7e:ea:45:4a:9c:77:4f: 70:75:d1:da:91:2d:48:58:8f:58:09:46:40:9c:7c: 2a:d9:71:b0:5b:9c:ba:97:80:a3:74:2c:0c:2e:81: 39:a9:3a:fc:36:c7:4c:0e:d2:86:73:84:0e:46:bb: de:3b:bd:e5:62:70:53:61:40:96:4d:7e:f0:db:f6: 1a:28:9a:d7:24:b9:00:41:d5:a7:6e:18:06:0d:0d: 03:a4:fa:bd:f7:de:e6:63:25:cb:e5:98:e9:9a:c7: 81:e1:26:0a:d4:c3:bd:36:a9:e8:de:78:2e:e0:c6: e2:92:7c:a6:e7:8e:0c:f6:ac:dc:00:bd:d7:57:ea: 08:c3:dc:66:2b:3e:27:70:17:6f:01:c0:cf:da:16: 10:73:03:6b:41:d8:fe:88:d0:f6:1c:ab:0b:0e:97: b8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:51:68:F6:17:95:A7:77:D0:BB:47:94:B6:48:1D:56:8B:5D:EA:11 X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:3d:61:15:da:fb:8d:ea:9e:06:bf:2b:87:29:27:ab:96:6f: b3:66:76:3f:77:01:3f:26:45:44:9b:e4:ff:89:17:f7:87:37: 9a:76:71:90:e5:70:ec:71:bd:6d:23:4a:6a:5f:ac:a3:be:e0: 53:49:fd:93:54:fc:33:0e:10:e2:db:91:f0:3b:36:1e:12:98: c0:ae:44:de:bf:cc:9f:96:14:37:05:5b:9a:4b:68:d6:46:ca: 66:d8:ca:2e:b7:10:2c:f3:4e:b3:89:a7:d0:2e:00:3f:b4:72: f9:16:80:3b:2f:a8:06:18:43:1c:ca:0a:ed:3e:69:4f:85:23: e9:40:d4:35:c2:2c:53:33:90:20:68:51:8b:42:29:1e:42:6d: 99:fc:c2:db:83:3c:1c:71:e8:29:72:90:24:18:a0:fa:6e:42: 4f:33:33:d7:10:c4:79:64:fa:bd:74:f5:cc:ac:fc:d6:5e:15: 57:d4:3a:c4:74:16:85:31:e0:a2:1e:49:0f:31:48:8d:36:bd: 92:f0:0d:4e:0f:78:9b:24:fa:28:18:97:fe:68:a2:01:57:bc: eb:bc:4e:8d:c3:0a:52:c9:83:ff:fb:d0:9a:78:84:5f:cc:59: af:b5:6d:f7:1a:d1:c4:52:17:29:49:9d:f9:ec:74:62:b0:85: f1:cb:30:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjYwMzI0MjAwNzA1WhcNMjYwMzMxMjAwNzA1WjAYMRYwFAYD VQQDEw02OWMyZWVlYS00ZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkxFh67t2W1zaTZi/Fs5tkGRaw0w9KdZ87Oo5BYhDVYwGFNNvqmoWZPH4++ik J1T66aLSim5pbqfkrya4w9ooo9U2g5tyMhnJgr1xcbVnf4hzOZUyK/u33kSp/w8l 1t1VfH7qRUqcd09wddHakS1IWI9YCUZAnHwq2XGwW5y6l4CjdCwMLoE5qTr8NsdM DtKGc4QORrveO73lYnBTYUCWTX7w2/YaKJrXJLkAQdWnbhgGDQ0DpPq9997mYyXL 5ZjpmseB4SYK1MO9Nqno3ngu4Mbiknym544M9qzcAL3XV+oIw9xmKz4ncBdvAcDP 2hYQcwNrQdj+iND2HKsLDpe4ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFtRaPYX lad30LtHlLZIHVaLXeoRMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASj1hFdr7jeqeBr8rhyknq5Zvs2Z2P3cBPyZFRJvk/4kX94c3mnZxkOVw7HG9 bSNKal+so77gU0n9k1T8Mw4Q4tuR8Ds2HhKYwK5E3r/Mn5YUNwVbmkto1kbKZtjK LrcQLPNOs4mn0C4AP7Ry+RaAOy+oBhhDHMoK7T5pT4Uj6UDUNcIsUzOQIGhRi0Ip HkJtmfzC24M8HHHoKXKQJBig+m5CTzMz1xDEeWT6vXT1zKz81l4VV9Q6xHQWhTHg oh5JDzFIjTa9kvANTg94myT6KBiX/miiAVe867xOjcMKUsmD//vQmniEX8xZr7Vt 9xrRxFIXKUmd+ex0YrCF8cswAg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:57:14 2026 by rpki-client