$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: QPxF5y41CzPDPFKeiPhFpGrq+1wJb3svJhruPOQW0mg= Subject key identifier: C1:1C:E2:E8:0A:3D:BB:B4:0B:8F:32:F5:8A:71:C4:43:9B:7A:8E:EE Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0D77 Signing time: Tue 24 Mar 2026 15:30:30 +0000 Manifest this update: Tue 24 Mar 2026 15:30:29 +0000 Manifest next update: Tue 31 Mar 2026 15:30:29 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: 1Jen+dJwxGazSODnjECazrkHuc5IrfT/8FMXNexBoL8=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: KN/qO3b9F5dp3gvVSi/2Av1F8gy5I+kWuZVNLBkzY6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Mar 24 15:30:29 2026 GMT Not After : Mar 31 15:30:29 2026 GMT Subject: CN=69c2ae16-ba8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:de:0d:5b:12:fa:fe:97:08:d7:1c:a9:35:ec: 43:87:f2:18:ae:b2:5f:87:44:ae:90:97:4d:68:bf: 5f:ed:fb:d2:22:98:e6:83:09:f3:ca:45:3c:6f:5c: df:7a:47:b4:5a:7f:eb:d0:69:f3:dd:a2:5b:39:cd: 4f:38:6b:48:dd:ed:7a:23:6a:36:0c:92:8a:8e:82: 77:d0:8c:56:6b:df:f3:d9:ff:c4:e2:d1:f4:62:ff: 21:51:ed:38:59:5a:07:9e:c9:06:a9:a3:ca:62:12: 60:f1:e8:97:d0:75:df:89:ec:f1:b8:f2:64:ab:3b: 25:ff:9e:ce:1b:6b:3d:dc:22:dd:4b:b9:1a:fa:e3: fe:2c:63:c3:68:a5:99:95:5b:8b:8c:d6:9a:ea:49: 16:94:df:2d:d2:ab:71:48:38:a8:2b:e7:0b:c4:6f: 0b:88:37:d5:2f:48:75:12:e1:a5:b9:3e:d0:5e:e0: 26:b9:27:ba:57:4c:7a:a1:59:4e:6c:29:46:24:8f: 02:30:d8:3f:35:27:3e:6d:20:0f:97:de:f1:c7:94: 17:51:4e:0e:54:dc:bf:bd:de:b8:cd:55:cc:76:8c: 32:28:7d:ac:1d:54:e7:8d:2a:ae:0b:fc:c9:7e:c1: d1:3b:e7:a8:61:f8:03:06:cc:f6:38:3f:3f:23:3a: c4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:1C:E2:E8:0A:3D:BB:B4:0B:8F:32:F5:8A:71:C4:43:9B:7A:8E:EE X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:e4:a5:35:e5:da:37:c7:76:22:36:de:ce:2d:18:f2:93:37: f7:26:df:9c:5e:97:f2:77:f0:90:22:be:a0:00:0b:db:6c:4a: ea:61:90:60:e5:78:95:9a:77:01:12:ee:99:3f:da:ec:d1:2c: 55:23:8f:50:fb:49:62:45:58:73:82:d7:d1:3b:ec:aa:23:5b: 90:f5:5d:7a:f9:7a:3d:f9:ae:a2:2c:d6:27:0a:77:6d:0f:87: 68:af:95:a7:01:82:92:1e:ed:a9:d0:b7:47:2d:77:d9:2c:43: f6:fe:4e:6c:ab:1b:90:3e:b1:be:1a:d6:64:3e:53:eb:06:8d: 5c:b6:a1:45:05:84:1d:40:bf:8c:29:4a:ce:88:55:17:d1:50: a4:ea:bb:5f:47:79:80:c0:e8:85:fa:e9:b5:24:af:55:45:54: ee:1c:ed:89:83:3e:6c:67:75:bc:7d:21:fa:9e:f4:4c:f6:1c: ce:e7:66:a8:a8:ab:8a:2a:a3:37:31:e6:0f:57:bf:38:96:03: 74:85:01:d1:2a:2c:f1:a8:56:d7:09:b4:5b:28:65:51:44:a7: 38:6a:da:a9:b1:a2:5e:82:64:97:af:b8:e5:27:0b:1f:08:8c: 7d:e3:40:e2:55:9e:c1:ad:02:b0:3a:87:ce:6b:44:bb:78:4a: 4c:5f:bf:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjYwMzI0MTUzMDI5WhcNMjYwMzMxMTUzMDI5WjAYMRYwFAYD VQQDEw02OWMyYWUxNi1iYThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4N4NWxL6/pcI1xypNexDh/IYrrJfh0SukJdNaL9f7fvSIpjmgwnzykU8b1zf eke0Wn/r0Gnz3aJbOc1POGtI3e16I2o2DJKKjoJ30IxWa9/z2f/E4tH0Yv8hUe04 WVoHnskGqaPKYhJg8eiX0HXfiezxuPJkqzsl/57OG2s93CLdS7ka+uP+LGPDaKWZ lVuLjNaa6kkWlN8t0qtxSDioK+cLxG8LiDfVL0h1EuGluT7QXuAmuSe6V0x6oVlO bClGJI8CMNg/NSc+bSAPl97xx5QXUU4OVNy/vd64zVXMdowyKH2sHVTnjSquC/zJ fsHRO+eoYfgDBsz2OD8/IzrE3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMEc4ugK Pbu0C48y9YpxxEObeo7uMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs+SlNeXaN8d2Ijbezi0Y8pM39ybfnF6X8nfwkCK+oAAL22xK6mGQYOV4lZp3 ARLumT/a7NEsVSOPUPtJYkVYc4LX0TvsqiNbkPVdevl6PfmuoizWJwp3bQ+HaK+V pwGCkh7tqdC3Ry132SxD9v5ObKsbkD6xvhrWZD5T6waNXLahRQWEHUC/jClKzohV F9FQpOq7X0d5gMDohfrptSSvVUVU7hztiYM+bGd1vH0h+p70TPYczudmqKiriiqj NzHmD1e/OJYDdIUB0Sos8ahW1wm0WyhlUUSnOGraqbGiXoJkl6+45ScLHwiMfeNA 4lWewa0CsDqHzmtEu3hKTF+/MQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:26:01 2026 by rpki-client