$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft File: jfabjPAtRHKg4tL07m5JMm09sMU.mft (raw, json) Hash identifier: 9SsQGEj86OH2d+nIiGIBQyr8jrYlS53PdEgX0CgssKY= Subject key identifier: 81:10:CB:C5:F8:55:3A:A6:0C:B7:A9:64:B5:8E:6F:23:A2:E0:E1:F0 Authority key identifier: 8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 Certificate issuer: /CN=A9147BA3/serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Certificate serial: 3539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft Manifest number: 352D Signing time: Thu 26 Mar 2026 15:08:34 +0000 Manifest this update: Thu 26 Mar 2026 15:08:33 +0000 Manifest next update: Thu 02 Apr 2026 15:08:33 +0000 Files and hashes: 1: jfabjPAtRHKg4tL07m5JMm09sMU.crl (hash: tPp+2Vsli0KgaDAjaJjyk1B7TLUlDfcNJkG6k2NvXcs=) 2: 2B2C31BE3B8B11EB8D76362DC4F9AE02.roa (hash: rcFyozuFtBU24Fj/puD3Y3gAMLE1tFWBMfsBdsY0Lgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13625 (0x3539) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BA3, serialNumber=8DF69B8CF02D4472A0E2D2F4EE6E49326D3DB0C5 Validity Not Before: Mar 26 15:08:33 2026 GMT Not After : Apr 2 15:08:33 2026 GMT Subject: CN=69c54bf2-e151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:5c:c5:e6:2b:27:cb:0b:8d:ff:0a:38:3d: d2:2c:4e:4d:fc:1d:4c:33:68:ef:c2:e7:6e:93:97: 29:c0:3e:b3:8a:82:6b:ed:c8:76:3b:5a:a3:ad:e1: 11:fe:70:95:62:c3:9c:7e:c5:64:32:2b:9e:48:09: e1:a6:0c:0a:2d:0d:0d:5a:1f:a8:bd:f5:b9:c8:6d: 61:1c:50:d6:1b:97:9d:1f:4e:2d:2e:86:95:74:c6: c4:13:4e:e7:9f:c3:c0:22:4c:a8:d0:9d:81:57:1a: 3d:b8:de:61:c4:a7:91:d4:c8:ae:d1:bf:75:a6:bb: 73:20:78:cb:fa:9d:9d:f5:85:39:67:ff:90:f8:81: b4:54:d5:a1:b2:87:f6:6a:34:9a:23:7e:97:9c:5d: 1f:70:4d:cd:e3:a2:76:d5:ef:35:3d:cf:ff:bf:8b: ca:75:ed:6c:38:95:cc:d6:3f:23:b4:be:4e:d6:4a: 39:d4:87:52:ae:ec:4f:0f:e2:14:f9:a5:9b:46:90: 13:a3:86:f5:cd:31:f0:61:8d:74:4c:1f:ce:42:d6: 2d:5d:6e:46:08:1e:49:05:14:74:ca:d5:00:ff:81: 60:e2:99:3d:86:cb:38:b5:07:31:a2:94:6d:6a:a5: 4a:73:ac:1e:aa:dc:03:ea:db:d0:06:a0:38:62:4b: c6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:10:CB:C5:F8:55:3A:A6:0C:B7:A9:64:B5:8E:6F:23:A2:E0:E1:F0 X509v3 Authority Key Identifier: keyid:8D:F6:9B:8C:F0:2D:44:72:A0:E2:D2:F4:EE:6E:49:32:6D:3D:B0:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfabjPAtRHKg4tL07m5JMm09sMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BA3/77EA7A241DA311E292E5CA9808B02CD2/jfabjPAtRHKg4tL07m5JMm09sMU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:1f:d3:88:14:70:5f:17:66:25:27:04:b5:d8:cb:b3:44:e6: 8a:07:6e:51:08:f4:15:16:98:c2:17:51:11:31:0f:13:f3:72: dd:aa:2c:79:cb:7d:6f:ef:86:47:44:31:fa:fb:e3:9c:ea:5f: a9:6d:96:e1:dc:66:d0:f8:87:0e:3c:92:ae:26:c4:fa:65:1d: 17:05:ed:c6:3b:e1:38:f2:92:66:1d:45:c6:e5:81:eb:f8:89: eb:65:c5:b7:2f:9d:8a:5b:33:dc:84:d5:4b:cf:17:88:c8:7a: 68:a1:96:e3:b4:30:98:a9:60:51:d9:10:b7:f4:4d:56:3d:30: 9b:1d:f0:5f:2a:e8:2e:25:ae:87:56:27:76:cd:13:dc:f9:9a: db:56:f8:2f:2b:e2:38:a6:f2:79:14:c2:12:2e:5b:12:58:12: fa:56:c0:a5:e8:87:67:5b:17:ca:2e:e7:2f:ae:ba:71:78:73: b0:cd:b5:d9:bd:48:13:4c:04:94:c3:89:59:7e:1c:8f:25:41: 25:ca:a8:ad:c8:cc:61:e7:9e:52:6d:61:f1:30:5a:1f:e1:b4: 99:a9:b2:fb:fa:51:f0:d1:f6:47:96:af:ae:13:1b:5c:65:79: 82:4d:ce:49:73:b0:b3:2d:21:08:b5:fb:af:8f:90:37:24:bb: ac:96:ca:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCQTMxMTAvBgNVBAUTKDhERjY5QjhDRjAyRDQ0NzJBMEUyRDJGNEVFNkU0OTMy NkQzREIwQzUwHhcNMjYwMzI2MTUwODMzWhcNMjYwNDAyMTUwODMzWjAYMRYwFAYD VQQDEw02OWM1NGJmMi1lMTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhxcxeYrJ8sLjf8KOD3SLE5N/B1MM2jvwuduk5cpwD6zioJr7ch2O1qjreER /nCVYsOcfsVkMiueSAnhpgwKLQ0NWh+ovfW5yG1hHFDWG5edH04tLoaVdMbEE07n n8PAIkyo0J2BVxo9uN5hxKeR1Miu0b91prtzIHjL+p2d9YU5Z/+Q+IG0VNWhsof2 ajSaI36XnF0fcE3N46J21e81Pc//v4vKde1sOJXM1j8jtL5O1ko51IdSruxPD+IU +aWbRpATo4b1zTHwYY10TB/OQtYtXW5GCB5JBRR0ytUA/4Fg4pk9hss4tQcxopRt aqVKc6weqtwD6tvQBqA4YkvGxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIEQy8X4 VTqmDLepZLWObyOi4OHwMB8GA1UdIwQYMBaAFI32m4zwLURyoOLS9O5uSTJtPbDF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0JBMy83N0VBN0EyNDFE QTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJIS2c0dEwwN201Sk1tMDlz TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYWJqUEF0UkhLZzR0TDA3bTVKTW0wOXNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0JBMy83N0VBN0EyNDFEQTMxMUUyOTJFNUNBOTgwOEIwMkNEMi9qZmFialBBdFJI S2c0dEwwN201Sk1tMDlzTVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoh/TiBRwXxdmJScEtdjLs0TmigduUQj0FRaYwhdRETEPE/Ny3aosect9b++G R0Qx+vvjnOpfqW2W4dxm0PiHDjySribE+mUdFwXtxjvhOPKSZh1FxuWB6/iJ62XF ty+dilsz3ITVS88XiMh6aKGW47QwmKlgUdkQt/RNVj0wmx3wXyroLiWuh1Ynds0T 3Pma21b4LyviOKbyeRTCEi5bElgS+lbApeiHZ1sXyi7nL666cXhzsM212b1IE0wE lMOJWX4cjyVBJcqorcjMYeeeUm1h8TBaH+G0mamy+/pR8NH2R5avrhMbXGV5gk3O SXOwsy0hCLX7r4+QNyS7rJbKWw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:15:20 2026 by rpki-client