$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: 9zhWplTZpOr259oacO6oLTHn0B7q7tuq5cIrXlTVb8w= Subject key identifier: 32:AB:F0:1A:DA:B8:1A:0F:93:2B:AA:E4:83:33:38:82:DD:53:BC:FD Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: BE Signing time: Wed 25 Mar 2026 06:12:25 +0000 Manifest this update: Wed 25 Mar 2026 06:12:25 +0000 Manifest next update: Wed 01 Apr 2026 06:12:25 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: bEumCWxareOS3G2wtoPk0MnvRAzjGIMe/2ZHbhqxew8=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: cNFpk4xvE3+xhetFVsHGb9R/5Z63kJbCCHb2RP80z/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:12:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Mar 25 06:12:25 2026 GMT Not After : Apr 1 06:12:25 2026 GMT Subject: CN=69c37cc9-0f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ce:fc:93:f5:f7:c3:33:bd:05:10:00:9c:73: 45:4f:c0:9e:0e:45:91:9b:ec:5b:2d:7c:06:b1:d5: 4f:b8:bb:3f:ab:54:f5:ef:a1:15:85:c5:b2:71:e1: bd:ea:7c:b0:b0:d0:0f:48:db:3a:9b:02:01:2a:4e: e0:1c:ce:a2:6a:2e:25:a8:4d:c2:1e:96:4c:ec:6a: 01:0d:c8:f5:4b:b3:66:24:90:b5:0f:2f:88:d1:d7: cd:ba:aa:61:4f:53:5b:21:e2:6b:8f:b3:fa:dc:0b: a1:e6:70:9a:2f:4f:21:e9:ca:a0:6e:50:8f:05:70: 40:b3:89:12:dd:d1:00:8d:eb:8e:70:12:31:7c:95: 11:6b:ad:06:5e:fb:a7:11:24:3f:ac:9e:ab:a0:58: 40:a5:29:b4:85:04:61:e4:7f:cd:44:f4:23:4b:1e: f5:7a:d4:62:03:c5:2f:11:c7:7b:f8:a6:ed:50:04: 9e:a8:42:2d:76:a7:4b:8b:6b:9c:d9:2a:a3:9c:78: 5f:bd:4a:d4:b0:c5:c3:31:a7:e3:af:68:97:e7:49: 39:50:ae:bc:a9:67:7a:84:28:9a:20:cf:75:bd:59: c3:76:e3:e2:65:f1:79:50:bb:fc:a0:20:78:d8:c6: 35:e8:80:49:27:37:82:c2:b7:c7:58:54:60:0a:c3: d9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AB:F0:1A:DA:B8:1A:0F:93:2B:AA:E4:83:33:38:82:DD:53:BC:FD X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:81:68:7c:a3:fa:eb:2f:eb:e6:87:b7:4e:57:d6:a5:4f:cb: 1b:b7:1c:17:40:cb:de:1b:b6:cb:29:3b:a4:a8:3a:c1:fb:f1: 80:d5:fe:36:a7:a6:88:15:67:ac:f8:8f:3f:20:b0:cd:f9:4a: 38:b9:d0:03:f5:17:1b:06:f4:7c:88:80:09:d1:f2:6c:a6:d9: 85:26:59:19:47:7c:74:89:ae:68:db:91:c2:7e:50:99:42:86: b8:dd:8a:c4:ff:b3:38:50:e6:75:b9:64:93:f9:4e:7e:17:0b: 52:6f:00:24:9d:31:31:1f:7c:d4:16:49:2d:00:31:75:bd:f5: 68:5b:01:76:cf:9a:7b:1d:1e:fa:51:e3:56:4d:77:f1:ec:a0: ec:70:6b:51:d2:28:dd:1b:6c:88:e8:15:c8:50:0a:1c:4a:c2: bd:bb:55:95:b7:89:c1:e4:6b:15:68:42:fd:99:9e:17:2a:8e: eb:78:64:d4:7e:37:89:6a:82:cc:71:e4:3f:59:31:b7:a7:c4: 34:ba:d9:a7:cf:c1:9f:24:08:41:d2:1c:37:0e:b9:68:f7:26: 50:41:18:7f:df:5f:03:ce:fd:c4:20:84:ed:ee:e6:dc:1f:1a: 80:5a:71:d7:ec:7f:76:c7:50:19:f3:a0:5a:b9:61:c0:e4:5a: 44:cd:35:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFMDkxMTAvBgNVBAUTKDA4QTM5MUM2QjM4OUM4MTBFOTVCQzYxMzlDRUNCMjlE NUQzOTU4QzQwHhcNMjYwMzI1MDYxMjI1WhcNMjYwNDAxMDYxMjI1WjAYMRYwFAYD VQQDEw02OWMzN2NjOS0wZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s78k/X3wzO9BRAAnHNFT8CeDkWRm+xbLXwGsdVPuLs/q1T176EVhcWyceG9 6nywsNAPSNs6mwIBKk7gHM6iai4lqE3CHpZM7GoBDcj1S7NmJJC1Dy+I0dfNuqph T1NbIeJrj7P63Auh5nCaL08h6cqgblCPBXBAs4kS3dEAjeuOcBIxfJURa60GXvun ESQ/rJ6roFhApSm0hQRh5H/NRPQjSx71etRiA8UvEcd7+KbtUASeqEItdqdLi2uc 2SqjnHhfvUrUsMXDMafjr2iX50k5UK68qWd6hCiaIM91vVnDduPiZfF5ULv8oCB4 2MY16IBJJzeCwrfHWFRgCsPZAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDKr8Bra uBoPkyuq5IMzOILdU7z9MB8GA1UdIwQYMBaAFAijkcazicgQ6VvGE5zssp1dOVjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUUwOS84NzA1NUIzMjA4 QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlCRHBXOFlUbk95eW5WMDVX TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwOS84NzA1NUIzMjA4QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlC RHBXOFlUbk95eW5WMDVXTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnIFofKP66y/r5oe3TlfWpU/LG7ccF0DL3hu2yyk7pKg6wfvxgNX+NqemiBVn rPiPPyCwzflKOLnQA/UXGwb0fIiACdHybKbZhSZZGUd8dImuaNuRwn5QmUKGuN2K xP+zOFDmdblkk/lOfhcLUm8AJJ0xMR981BZJLQAxdb31aFsBds+aex0e+lHjVk13 8eyg7HBrUdIo3RtsiOgVyFAKHErCvbtVlbeJweRrFWhC/ZmeFyqO63hk1H43iWqC zHHkP1kxt6fENLrZp8/BnyQIQdIcNw65aPcmUEEYf99fA879xCCE7e7m3B8agFpx 1+x/dsdQGfOgWrlhwORaRM015A== -----END CERTIFICATE-----Generated at Thu Mar 26 19:11:22 2026 by rpki-client