$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: wjQSQG99+9u8qvH0e0LBQFvAikY7vJvvdLd1Blztly0= Subject key identifier: 05:DF:8B:67:97:E4:4E:6B:6F:B3:C1:BE:FB:B3:04:9F:C0:E2:B5:07 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 07F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 07E7 Signing time: Thu 26 Mar 2026 21:08:18 +0000 Manifest this update: Thu 26 Mar 2026 21:08:18 +0000 Manifest next update: Thu 02 Apr 2026 21:08:18 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: JOyZQ8UNzrm0ZmX7YrOueXVIm9M31F0UzISHf8p1z3s=) 2: 2C0DD994525511F0A544424DC4F9AE02.roa (hash: P2CEyl9OyHCD/1DuLCNfzXBBwkFTLi3o8drVnlOWDvg=) 3: CE899F0A66C311F08BE17B42C4F9AE02.roa (hash: wHIhwK0cuu0TCIgwSyAlWZMYLOUEIP5XRfvTBvqmJf0=) 4: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: 7ymgcj6P1279S5XXSpCepa419faVvXeGcEB15wSWpx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 21:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Mar 26 21:08:18 2026 GMT Not After : Apr 2 21:08:18 2026 GMT Subject: CN=69c5a042-3b51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dd:ff:14:ab:cd:4d:e9:b1:f3:51:36:f1:db: f0:91:cd:e6:c2:e2:b1:54:43:c1:1f:52:67:64:59: 09:94:c7:22:66:1f:c1:c9:f6:9c:84:fe:bf:d3:b4: cb:25:26:fb:84:4d:e1:95:60:8d:2d:63:3c:68:dc: 54:f7:24:24:eb:86:f6:f1:3f:5c:c2:4e:e1:85:cf: 1b:d1:0e:a7:c9:82:c8:a5:da:08:c8:8b:1f:1b:d5: b4:06:a9:0f:cb:8d:02:57:71:bd:1d:3f:f4:9c:10: cd:1c:e1:f1:d6:c8:c7:ac:3c:58:be:fa:33:d6:34: 6c:61:ff:a3:6d:2e:1e:16:8d:5a:da:8e:5f:49:3d: bb:b6:62:92:8c:b8:2a:3e:71:2f:05:e2:d2:0b:57: 41:20:cc:7a:31:c3:2d:d9:eb:5a:48:0c:0e:53:dd: 8d:ce:0a:6e:e0:ba:0b:6e:50:1e:27:4c:36:d5:a5: 62:59:fd:d9:92:9e:de:44:e8:37:0b:43:38:af:d3: eb:8e:f4:89:a3:85:10:c2:d1:02:29:58:b3:b0:fd: cd:c0:52:ad:f0:f1:a6:75:50:b3:2c:e4:2c:52:25: 36:88:c8:05:7c:b8:8f:1a:1a:a1:55:fc:d4:5f:3a: 2c:33:14:cd:4b:73:f8:d3:b2:ac:6a:4d:55:f8:81: 48:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:DF:8B:67:97:E4:4E:6B:6F:B3:C1:BE:FB:B3:04:9F:C0:E2:B5:07 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:fa:0b:cc:25:e4:c4:bb:fa:81:05:c3:09:23:d0:15:54:c3: 9f:21:42:9b:45:d3:2a:32:43:21:5c:99:b2:7f:e0:ac:4b:54: a5:73:0c:7f:99:c4:a8:3e:eb:9a:f4:c5:98:39:6a:64:b3:d5: 05:91:5e:b5:37:d1:bc:5d:6a:9a:f3:50:f8:35:05:75:06:c1: 46:2c:a8:12:48:53:ab:16:af:e3:d9:03:3a:9e:4d:d4:0a:16: 85:0b:53:3e:44:f8:9b:45:45:66:96:67:00:9f:f6:22:4e:a8: 69:ae:c8:23:91:77:c3:66:fe:f4:4d:09:af:74:ae:32:57:36: e2:1c:43:bf:57:a6:a9:65:d4:6f:e0:a1:ac:9c:a7:b0:cc:de: d2:11:fa:ac:e7:34:84:42:40:37:3e:36:60:40:e8:f5:d5:bc: 67:45:7d:e1:f4:b0:1d:61:bb:d2:e4:54:04:2b:81:a7:a8:07: a9:b1:63:8c:85:be:fe:9e:c0:37:65:b1:34:59:6e:8d:59:2f: 08:eb:76:06:c1:e9:6c:ef:5c:f5:6c:f1:99:60:99:9d:72:2b: 12:70:84:f0:64:6a:cc:51:d8:49:38:fc:c7:bc:a0:d8:7e:7e: 97:3f:6b:05:8c:4f:5f:21:28:27:4e:96:3b:39:af:f1:cb:53: b6:85:f5:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjYwMzI2MjEwODE4WhcNMjYwNDAyMjEwODE4WjAYMRYwFAYD VQQDEw02OWM1YTA0Mi0zYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl93/FKvNTemx81E28dvwkc3mwuKxVEPBH1JnZFkJlMciZh/ByfachP6/07TL JSb7hE3hlWCNLWM8aNxU9yQk64b28T9cwk7hhc8b0Q6nyYLIpdoIyIsfG9W0BqkP y40CV3G9HT/0nBDNHOHx1sjHrDxYvvoz1jRsYf+jbS4eFo1a2o5fST27tmKSjLgq PnEvBeLSC1dBIMx6McMt2etaSAwOU92Nzgpu4LoLblAeJ0w21aViWf3Zkp7eROg3 C0M4r9PrjvSJo4UQwtECKVizsP3NwFKt8PGmdVCzLOQsUiU2iMgFfLiPGhqhVfzU XzosMxTNS3P407Ksak1V+IFILQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAXfi2eX 5E5rb7PBvvuzBJ/A4rUHMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABfoLzCXkxLv6gQXDCSPQFVTDnyFCm0XTKjJDIVyZsn/grEtUpXMMf5nEqD7r mvTFmDlqZLPVBZFetTfRvF1qmvNQ+DUFdQbBRiyoEkhTqxav49kDOp5N1AoWhQtT PkT4m0VFZpZnAJ/2Ik6oaa7II5F3w2b+9E0Jr3SuMlc24hxDv1emqWXUb+ChrJyn sMze0hH6rOc0hEJANz42YEDo9dW8Z0V94fSwHWG70uRUBCuBp6gHqbFjjIW+/p7A N2WxNFlujVkvCOt2BsHpbO9c9WzxmWCZnXIrEnCE8GRqzFHYSTj8x7yg2H5+lz9r BYxPXyEoJ06WOzmv8ctTtoX1uQ== -----END CERTIFICATE-----Generated at Fri Mar 27 03:06:05 2026 by rpki-client