$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: U24ji37O38sB4MCyEsq54jXZBsWE4q5KNet6jcFsVBA= Subject key identifier: 8C:92:68:83:BC:D1:94:8A:45:1C:8B:27:89:ED:1D:BC:02:00:44:25 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0CE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0CDC Signing time: Tue 24 Mar 2026 18:23:37 +0000 Manifest this update: Tue 24 Mar 2026 18:23:37 +0000 Manifest next update: Tue 31 Mar 2026 18:23:37 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: n0LE3UsKQNliyROJBKDQB9ldIXXuMSa7FNiPMCVhilk=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: lLzLMFvq75P6s11FcUbySa49RP0prDTXCNFomk88MZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3303 (0xce7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Mar 24 18:23:37 2026 GMT Not After : Mar 31 18:23:37 2026 GMT Subject: CN=69c2d6a9-b7ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9b:c4:dd:06:5a:69:6a:25:78:da:3c:f5:d4: 3d:ad:57:4f:2d:af:cf:a7:46:fc:e5:9c:14:70:9d: 12:ce:9a:39:32:a5:52:06:6e:6b:81:8b:44:7c:05: 32:dc:45:4e:f4:1e:7e:a0:9c:5c:ef:2a:1b:5b:9f: 19:f8:f5:4b:07:82:88:5c:6f:29:d0:9e:08:f9:17: 03:68:b5:3b:69:44:77:8c:30:c7:f7:b0:bf:88:ed: f6:81:09:22:4d:84:3d:09:cb:61:9d:4b:28:47:82: 97:ca:8a:27:95:20:2b:0a:32:62:84:21:cd:04:f3: 07:4a:ff:70:d1:ad:e0:1b:b7:3d:74:6c:26:04:e1: 90:4d:ae:7d:a4:b0:17:27:59:d7:5f:fb:68:0a:b9: 81:06:5f:41:e9:74:c3:c3:de:d5:d9:55:2a:fd:0f: 3c:c7:45:77:4d:6e:c6:4f:45:6c:e7:9d:32:b3:25: 6a:9f:47:9d:58:b8:33:ae:ae:e5:cc:e1:e3:2f:3e: 13:fc:41:29:05:3c:96:63:0e:47:a5:e3:73:2b:17: 80:16:4d:b4:e6:7b:43:f6:2e:3c:5e:53:d9:06:41: 11:1e:b3:62:72:17:84:56:bf:93:e3:28:1e:3f:8f: 53:ef:5f:c0:4e:85:40:83:fe:f3:c4:c5:b5:ab:01: 79:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:92:68:83:BC:D1:94:8A:45:1C:8B:27:89:ED:1D:BC:02:00:44:25 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:53:86:c2:14:88:22:9c:b4:58:72:3a:59:25:d9:40:36:29: 74:4b:41:0f:a9:20:96:33:49:7a:4f:de:f8:36:46:50:82:fd: 11:37:0b:14:e1:71:09:b5:33:0b:aa:c8:57:3c:74:38:9a:fc: 5f:8e:e5:95:28:71:44:f4:af:38:17:1f:78:17:2e:2b:b0:91: 32:6f:22:d3:5c:fd:50:d6:8f:0b:5b:d3:cd:fb:09:5a:96:43: a3:8d:bc:02:19:4c:6d:66:6a:72:38:05:2a:48:32:60:32:05: b7:d4:6c:e4:3f:af:a2:d9:a5:71:88:b5:3e:48:f1:d1:6e:b9: 77:94:d0:65:34:50:5c:72:44:d5:77:b2:1b:b4:4a:ce:ee:44: 56:97:bf:93:63:69:81:f9:b4:7e:a1:cc:f0:4e:54:a1:fa:fd: f6:03:67:75:1c:01:f8:8b:05:72:23:fe:e2:24:90:48:dd:9d: da:c1:6b:3a:a1:3c:0a:ba:91:7e:b7:f9:6c:41:39:e3:9b:16: fb:03:ef:9c:93:31:25:d3:ca:e0:79:84:11:ad:be:2e:f6:d3: b7:fe:8f:ef:0a:d5:c5:a8:7b:2f:c0:6d:f7:a5:53:fe:8c:e4: f2:3b:07:dc:28:30:c3:32:84:b2:70:60:24:94:3d:62:3e:ba: bc:b5:36:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjYwMzI0MTgyMzM3WhcNMjYwMzMxMTgyMzM3WjAYMRYwFAYD VQQDEw02OWMyZDZhOS1iN2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5vE3QZaaWoleNo89dQ9rVdPLa/Pp0b85ZwUcJ0Szpo5MqVSBm5rgYtEfAUy 3EVO9B5+oJxc7yobW58Z+PVLB4KIXG8p0J4I+RcDaLU7aUR3jDDH97C/iO32gQki TYQ9CcthnUsoR4KXyoonlSArCjJihCHNBPMHSv9w0a3gG7c9dGwmBOGQTa59pLAX J1nXX/toCrmBBl9B6XTDw97V2VUq/Q88x0V3TW7GT0Vs550ysyVqn0edWLgzrq7l zOHjLz4T/EEpBTyWYw5HpeNzKxeAFk205ntD9i48XlPZBkERHrNicheEVr+T4yge P49T71/AToVAg/7zxMW1qwF5TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIySaIO8 0ZSKRRyLJ4ntHbwCAEQlMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYVOGwhSIIpy0WHI6WSXZQDYpdEtBD6kgljNJek/e+DZGUIL9ETcLFOFxCbUz C6rIVzx0OJr8X47llShxRPSvOBcfeBcuK7CRMm8i01z9UNaPC1vTzfsJWpZDo428 AhlMbWZqcjgFKkgyYDIFt9Rs5D+votmlcYi1Pkjx0W65d5TQZTRQXHJE1XeyG7RK zu5EVpe/k2Npgfm0fqHM8E5Uofr99gNndRwB+IsFciP+4iSQSN2d2sFrOqE8CrqR frf5bEE545sW+wPvnJMxJdPK4HmEEa2+LvbTt/6P7wrVxah7L8Bt96VT/ozk8jsH 3CgwwzKEsnBgJJQ9Yj66vLU2Zg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:17:53 2026 by rpki-client