$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: NeaVOG0PabrxUMbr6ky5FcRGBAQ07vbHBaQuxhwgXTg= Subject key identifier: E0:CC:82:BF:4A:28:76:DB:56:CB:4C:C9:4D:DE:93:B2:DC:A5:A1:7C Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: F8 Signing time: Wed 25 Mar 2026 05:29:37 +0000 Manifest this update: Wed 25 Mar 2026 05:29:36 +0000 Manifest next update: Wed 01 Apr 2026 05:29:36 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: m4GF5BAvIu/wTBtw03C0IsUQNWHwRK+XKEJedCjWMBA=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: v6BylN14fOxA4ftijT2xm8ugkwjC+LIOM8D065x7bmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Mar 25 05:29:36 2026 GMT Not After : Apr 1 05:29:36 2026 GMT Subject: CN=69c372c0-fc9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:61:e4:d7:97:b3:11:95:06:2f:a9:c1:fe:79: 77:9d:a1:2c:96:bd:16:9d:6e:25:28:e1:3f:63:ac: 95:ec:62:0a:52:47:f1:3d:43:2e:3a:41:ff:51:de: f1:7a:bc:24:a4:43:96:b7:95:52:84:02:f6:9a:28: 89:fe:a2:59:04:cf:d7:75:d8:8b:ee:80:b4:02:c6: e5:17:26:fd:fc:be:62:de:c4:fc:ee:02:0a:90:ac: 6b:44:28:0c:93:ea:76:02:3a:26:14:c6:63:e4:29: e3:6a:29:a1:76:30:da:fe:43:13:ce:fe:8c:b5:57: 15:3b:e7:d6:bd:8c:75:32:0a:2e:eb:bf:26:3a:29: be:c6:74:9e:b6:be:6c:81:59:5e:35:98:02:11:e7: a4:f9:d6:a2:d8:4d:06:e6:92:03:54:a0:32:31:e9: 0e:32:e0:7a:b9:0f:29:18:53:5f:db:4d:ee:25:90: fd:70:c7:52:e8:17:1f:11:8c:e2:6f:4d:c7:94:09: c7:8a:45:c7:e1:32:72:cf:02:6b:16:f3:ae:69:a1: 80:a9:f4:c2:ff:b4:20:72:a7:10:92:41:98:39:75: 87:22:23:d2:ef:70:c1:58:d8:32:17:93:db:20:51: 62:a5:e2:96:39:92:d2:78:48:73:c9:b9:94:e2:23: 6c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CC:82:BF:4A:28:76:DB:56:CB:4C:C9:4D:DE:93:B2:DC:A5:A1:7C X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:4f:1c:17:92:82:aa:2f:e5:a2:29:fb:83:89:59:db:f6:65: 97:d1:2d:4d:d2:a6:0e:fb:97:9b:1c:ba:39:59:24:6c:41:0f: 91:ae:fb:89:dc:38:28:d4:72:5b:cf:bc:5f:b2:57:4d:86:06: 56:a7:24:c5:22:90:10:70:cc:37:75:d7:69:c3:72:7d:ee:25: 9c:53:0d:0d:66:06:d6:a3:7a:1d:cd:7b:ba:f7:ad:a8:16:3e: c6:78:22:a8:c8:04:ca:7d:b6:da:1b:e8:67:46:b4:70:cc:73: 3e:c0:32:4b:f6:a4:5d:58:ef:80:a5:90:52:a2:90:34:9a:db: 77:6b:68:e5:8d:63:0f:3b:57:26:36:7f:d2:c9:f1:2f:1a:b7: 63:cb:1b:9c:a8:15:cf:35:a5:99:ba:d1:5e:af:ea:e5:6f:4d: 3f:5d:3b:24:50:b9:b1:de:b6:64:ee:94:b4:55:4d:43:25:69: 5f:d8:d8:53:99:83:f6:24:51:9e:ed:26:6d:b6:ac:2f:80:0d: e0:af:26:5f:4d:0d:39:74:ef:1b:bb:7e:76:8b:ed:1b:55:9f: 3c:e4:0d:2c:33:69:b4:cc:a7:1d:cf:56:7c:42:d8:c1:08:53: f8:46:33:5d:56:4b:9e:f2:45:f8:dd:ec:83:a0:07:12:0e:cb: db:62:c6:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEI0RDIxNzkzOUEyNzUxOTM4RTA3NjU5QTc5NDg4NUE5 Qzg4NDE5MTkwHhcNMjYwMzI1MDUyOTM2WhcNMjYwNDAxMDUyOTM2WjAYMRYwFAYD VQQDEw02OWMzNzJjMC1mYzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWHk15ezEZUGL6nB/nl3naEslr0WnW4lKOE/Y6yV7GIKUkfxPUMuOkH/Ud7x erwkpEOWt5VShAL2miiJ/qJZBM/XddiL7oC0AsblFyb9/L5i3sT87gIKkKxrRCgM k+p2AjomFMZj5CnjaimhdjDa/kMTzv6MtVcVO+fWvYx1Mgou678mOim+xnSetr5s gVleNZgCEeek+dai2E0G5pIDVKAyMekOMuB6uQ8pGFNf203uJZD9cMdS6BcfEYzi b03HlAnHikXH4TJyzwJrFvOuaaGAqfTC/7QgcqcQkkGYOXWHIiPS73DBWNgyF5Pb IFFipeKWOZLSeEhzybmU4iNsyQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODMgr9K KHbbVstMyU3ek7LcpaF8MB8GA1UdIwQYMBaAFLTSF5OaJ1GTjgdlmnlIhanIhBkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy81MEJEMjMwRUIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVaT09CMldhZVVpRnFjaUVH UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy81MEJEMjMwRUIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi90TklYazVvblVa T09CMldhZVVpRnFjaUVHUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAok8cF5KCqi/loin7g4lZ2/Zll9EtTdKmDvuXmxy6OVkkbEEPka77idw4KNRy W8+8X7JXTYYGVqckxSKQEHDMN3XXacNyfe4lnFMNDWYG1qN6Hc17uvetqBY+xngi qMgEyn222hvoZ0a0cMxzPsAyS/akXVjvgKWQUqKQNJrbd2to5Y1jDztXJjZ/0snx Lxq3Y8sbnKgVzzWlmbrRXq/q5W9NP107JFC5sd62ZO6UtFVNQyVpX9jYU5mD9iRR nu0mbbasL4AN4K8mX00NOXTvG7t+dovtG1WfPOQNLDNptMynHc9WfELYwQhT+EYz XVZLnvJF+N3sg6AHEg7L22LGkg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:41 2026 by rpki-client