$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: qgkrfwdvxB4wuAR/zKmgX9B+ZffqcrLk6SWxF17GPQ0= Subject key identifier: 71:62:A5:8F:35:E1:7E:13:5D:5F:9C:E3:1B:FA:F6:CA:F8:1B:5F:0C Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2B30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2AEC Signing time: Tue 24 Mar 2026 15:30:25 +0000 Manifest this update: Tue 24 Mar 2026 15:30:24 +0000 Manifest next update: Tue 31 Mar 2026 15:30:24 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: S+Iy1YHLaL2ZRRLW8CEbLctQ40Mcf8tR+Ux1zon7GSQ=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: Mml/GDHtSEelqn0CLVtWVAulYa1xZrTOLXsNy4rC6ik=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: tDcO3gAeV3vTmIvIAIx8rJ91i0PU7YIxp3dKxE3Ka/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11056 (0x2b30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Mar 24 15:30:24 2026 GMT Not After : Mar 31 15:30:24 2026 GMT Subject: CN=69c2ae11-f419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d7:f8:c3:22:d1:b0:ad:45:18:0c:a7:a8:b3: 46:cd:93:1c:52:e4:12:4b:a9:e7:6b:47:95:e1:88: b1:12:44:bd:07:1f:83:a0:b2:ac:be:47:9c:44:d3: fa:2e:ee:1d:1d:c7:bd:85:81:06:d7:09:c4:86:c1: 08:df:27:52:a7:bf:1a:57:a3:99:e0:40:3a:cf:45: aa:cc:af:a6:90:97:10:55:8c:19:84:f8:eb:d7:92: 7b:f9:d8:f4:0d:5c:32:52:bf:0c:c2:0a:38:03:d1: aa:a1:f6:98:01:a5:45:31:6c:19:d0:30:46:db:ee: cc:35:24:3f:59:f7:f1:be:6e:fa:85:59:04:b6:a0: 21:68:4d:19:10:9f:d1:6d:4a:cf:55:02:46:c9:98: 40:fa:21:11:ac:a1:53:b5:d4:ce:94:86:63:e6:fe: be:b0:aa:78:7c:2c:11:f1:10:f4:d2:e7:0d:0f:f8: 5c:f2:79:bd:77:76:e9:df:ef:1d:ef:26:93:04:71: b5:4d:7c:5f:38:0d:c4:53:c7:cd:f1:07:4b:e1:6a: 47:f2:a3:d7:19:2c:e1:8f:5d:02:82:ae:d8:87:0f: d8:35:23:81:68:3b:4d:9a:5d:dd:5c:27:5a:c5:54: d0:d0:d9:16:40:e8:61:38:76:0d:5a:b4:b7:74:66: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:62:A5:8F:35:E1:7E:13:5D:5F:9C:E3:1B:FA:F6:CA:F8:1B:5F:0C X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:bf:6a:e5:74:f9:93:36:b1:38:a9:2f:26:72:96:72:31:7e: 5d:2e:01:b0:72:ca:5f:b3:72:3e:37:db:2d:2d:87:23:e8:dd: 47:be:92:44:a9:f5:a4:84:fb:db:fd:e7:47:3d:c8:2c:a6:84: 26:64:e7:7a:08:ff:3d:fc:81:a9:f7:06:27:8e:a5:fe:1d:f3: 33:ea:fb:8a:d0:08:31:bc:54:70:fb:ce:b9:c2:ed:c8:3b:3a: b2:59:cd:45:30:17:db:36:c0:c8:c1:29:a6:ca:a5:91:08:95: 24:84:b6:76:d8:dc:f8:25:b8:36:7f:25:8d:bb:58:f3:c5:2b: 8b:b4:5a:4d:a8:15:8b:3e:65:93:4f:11:a8:bf:fc:94:5a:4d: 64:74:be:c8:2e:48:5b:45:71:68:4d:35:c7:fd:21:02:81:4b: 29:79:e1:06:53:c9:ed:58:13:e0:35:76:c5:95:fd:62:2f:82: d3:ac:24:80:04:10:be:9c:dd:6f:62:74:9d:7b:c1:cf:2a:ee: f9:44:fd:21:57:a7:71:1a:2f:7f:22:51:39:27:ca:91:0d:18: b9:2b:ab:07:15:aa:c6:23:d6:c7:18:85:26:b2:d7:3d:21:34: ce:d2:e4:f8:b0:d5:e1:f0:f0:90:d8:f2:47:2c:92:ed:af:3c: 20:52:15:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICKzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjYwMzI0MTUzMDI0WhcNMjYwMzMxMTUzMDI0WjAYMRYwFAYD VQQDEw02OWMyYWUxMS1mNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9f4wyLRsK1FGAynqLNGzZMcUuQSS6nna0eV4YixEkS9Bx+DoLKsvkecRNP6 Lu4dHce9hYEG1wnEhsEI3ydSp78aV6OZ4EA6z0WqzK+mkJcQVYwZhPjr15J7+dj0 DVwyUr8Mwgo4A9GqofaYAaVFMWwZ0DBG2+7MNSQ/Wffxvm76hVkEtqAhaE0ZEJ/R bUrPVQJGyZhA+iERrKFTtdTOlIZj5v6+sKp4fCwR8RD00ucND/hc8nm9d3bp3+8d 7yaTBHG1TXxfOA3EU8fN8QdL4WpH8qPXGSzhj10Cgq7Yhw/YNSOBaDtNml3dXCda xVTQ0NkWQOhhOHYNWrS3dGaMzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFipY81 4X4TXV+c4xv69sr4G18MMB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU79q5XT5kzaxOKkvJnKWcjF+XS4BsHLKX7NyPjfbLS2HI+jdR76SRKn1pIT7 2/3nRz3ILKaEJmTnegj/PfyBqfcGJ46l/h3zM+r7itAIMbxUcPvOucLtyDs6slnN RTAX2zbAyMEppsqlkQiVJIS2dtjc+CW4Nn8ljbtY88Uri7RaTagViz5lk08RqL/8 lFpNZHS+yC5IW0VxaE01x/0hAoFLKXnhBlPJ7VgT4DV2xZX9Yi+C06wkgAQQvpzd b2J0nXvBzyru+UT9IVencRovfyJROSfKkQ0YuSurBxWqxiPWxxiFJrLXPSE0ztLk +LDV4fDwkNjyRyyS7a88IFIVIQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:12 2026 by rpki-client