$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: Wq9x3UKvRvXglCBqsjhsdZ87CGMHirhOzUSywMyiWWI= Subject key identifier: 4B:1A:35:3C:DE:AB:33:4F:C6:A2:9F:F3:0E:7B:8A:8F:00:B5:B1:BA Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 1777 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 174B Signing time: Tue 24 Mar 2026 16:31:29 +0000 Manifest this update: Tue 24 Mar 2026 16:31:29 +0000 Manifest next update: Tue 31 Mar 2026 16:31:29 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: fLWdSradvKmlDtGUxqcWoEGjWtat/HTND88N30AqO2k=) 2: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: G4irpBG19slrulSAFYlR+PU5Eph/ynSR0m07o08AgsU=) 3: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: TmKZTioxlMesMkEEvyPRrkxii6ZYxhGxhSFj/5ba424=) 4: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: Vo4hXEocOsaARTcy4r/0nnenE+IAT7B33HFUwDy31kM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:31:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6007 (0x1777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Mar 24 16:31:29 2026 GMT Not After : Mar 31 16:31:29 2026 GMT Subject: CN=69c2bc61-4a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:7c:82:a9:76:d2:c0:25:1a:e5:43:1d:3e:a2: bb:fd:0b:6c:cb:18:04:69:b8:97:cc:74:8e:1e:da: b1:e2:be:f4:ae:18:43:2c:8d:b6:67:17:fd:61:13: ed:0e:cb:11:50:d3:43:24:89:31:78:d3:dc:f0:2b: 10:7f:f7:06:28:6e:62:1d:61:05:a6:1d:ac:07:55: 7b:21:b7:11:46:25:bd:27:1a:16:a1:8f:5f:d5:d3: 1c:c6:54:51:68:cf:d9:54:29:da:2f:fd:db:fa:46: d5:98:f5:c7:7a:6e:0f:31:a8:59:3a:4f:59:00:1c: bc:a7:20:7b:82:ea:d7:65:5d:a3:7a:ff:ee:d1:39: a7:26:ca:d6:64:ea:56:a3:95:91:f5:70:f6:12:33: 01:5c:76:c3:28:85:26:46:2e:ab:7a:1a:88:71:30: 8e:20:ba:cd:6f:82:3f:35:bd:19:41:77:9b:c8:0e: e5:3e:67:e7:58:79:01:8e:ec:ce:34:83:16:ed:f2: 38:07:99:ac:1e:45:0b:93:70:b3:2f:ec:46:5b:fe: 83:f6:10:e9:db:0b:56:5c:74:8a:8c:ba:1c:b6:a6: 58:32:94:85:ec:42:85:76:3b:27:be:d8:ea:08:15: ab:56:19:58:61:09:f5:9c:f9:2a:2f:60:3a:66:34: 04:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1A:35:3C:DE:AB:33:4F:C6:A2:9F:F3:0E:7B:8A:8F:00:B5:B1:BA X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:89:6b:3b:5a:16:71:58:f2:75:76:a0:99:9b:e2:4b:7e:f4: 8d:82:75:ab:dc:22:27:85:71:db:68:c2:07:b7:db:49:8a:fa: ef:8f:1a:9b:12:56:f4:bc:5c:e8:27:45:e6:72:3a:e6:a7:28: 53:1d:b5:2e:27:02:d6:b4:6c:99:3c:6c:9b:86:e6:cf:9b:12: ba:b3:de:10:a4:71:c7:66:43:4b:58:b9:af:1b:50:2d:5b:3f: 37:2f:95:2c:f6:9c:7d:94:52:86:71:2d:46:74:ff:5b:75:2f: 8e:57:db:17:f4:5b:b5:3c:08:18:da:e8:ad:d1:29:7e:8d:ae: 59:ed:52:f6:96:03:69:35:c3:e2:57:64:88:e5:46:78:57:37: fa:e9:63:5a:5f:d9:a4:c3:16:73:ba:a4:b9:52:5c:cb:fb:3c: 0a:1b:56:ea:58:07:c3:ed:ef:10:2f:91:a8:2e:c0:03:97:e4: 15:67:9f:28:6c:66:bd:b2:91:99:6e:e3:f3:b4:a9:7b:db:f3: 36:36:21:28:02:2a:37:a9:0f:c5:b8:6e:b1:fb:59:7c:02:a8: 53:d5:7e:83:b8:96:fe:de:bc:a2:fc:d9:f9:e7:8b:9b:1f:25: 61:df:77:a2:e3:64:fb:2b:fa:2c:d3:0a:08:68:bf:3e:c1:f7: 42:ed:8f:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjYwMzI0MTYzMTI5WhcNMjYwMzMxMTYzMTI5WjAYMRYwFAYD VQQDEw02OWMyYmM2MS00YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjXyCqXbSwCUa5UMdPqK7/QtsyxgEabiXzHSOHtqx4r70rhhDLI22Zxf9YRPt DssRUNNDJIkxeNPc8CsQf/cGKG5iHWEFph2sB1V7IbcRRiW9JxoWoY9f1dMcxlRR aM/ZVCnaL/3b+kbVmPXHem4PMahZOk9ZABy8pyB7gurXZV2jev/u0TmnJsrWZOpW o5WR9XD2EjMBXHbDKIUmRi6rehqIcTCOILrNb4I/Nb0ZQXebyA7lPmfnWHkBjuzO NIMW7fI4B5msHkULk3CzL+xGW/6D9hDp2wtWXHSKjLoctqZYMpSF7EKFdjsnvtjq CBWrVhlYYQn1nPkqL2A6ZjQErwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEsaNTze qzNPxqKf8w57io8AtbG6MB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqIlrO1oWcVjydXagmZviS370jYJ1q9wiJ4Vx22jCB7fbSYr6748amxJW9Lxc 6CdF5nI65qcoUx21LicC1rRsmTxsm4bmz5sSurPeEKRxx2ZDS1i5rxtQLVs/Ny+V LPacfZRShnEtRnT/W3UvjlfbF/RbtTwIGNrordEpfo2uWe1S9pYDaTXD4ldkiOVG eFc3+uljWl/ZpMMWc7qkuVJcy/s8ChtW6lgHw+3vEC+RqC7AA5fkFWefKGxmvbKR mW7j87Spe9vzNjYhKAIqN6kPxbhusftZfAKoU9V+g7iW/t68ovzZ+eeLmx8lYd93 ouNk+yv6LNMKCGi/PsH3Qu2P9g== -----END CERTIFICATE-----Generated at Thu Mar 26 13:09:05 2026 by rpki-client