$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: sw+u7ZhEmD9dcP9bvnaUIzlM2s4uwKRuQOtPwAtpWCM= Subject key identifier: FA:12:A0:A0:F3:74:5A:41:86:F2:3A:5B:85:96:83:EB:E5:9A:50:36 Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 0399 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0392 Signing time: Wed 25 Mar 2026 00:07:01 +0000 Manifest this update: Wed 25 Mar 2026 00:07:01 +0000 Manifest next update: Wed 01 Apr 2026 00:07:01 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: 5NUn23y79KFqE4beWTlB2NLZ9++orXhVBcwTjw/Brdo=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: BIuosdWuF+4ep+QMwFKZ6npqwjzH0+zcNnprYLZ5I98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Mar 25 00:07:01 2026 GMT Not After : Apr 1 00:07:01 2026 GMT Subject: CN=69c32725-4988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:e1:be:d5:63:df:2e:f8:6e:05:89:5b:78: 52:73:cc:86:83:5c:ef:5f:33:56:a2:98:bb:be:7f: 1f:bb:d2:0c:10:7f:61:fd:c6:af:55:78:e6:1b:3e: f2:6b:3d:cd:39:18:c0:df:1b:ad:95:ab:9a:c3:fd: 8f:06:b7:36:4b:5f:47:d5:64:62:12:75:e8:18:7a: d9:b7:df:c3:ad:30:a2:a4:57:dc:34:9d:a2:3b:5d: 6b:a9:3a:c6:bb:b0:d8:da:94:ae:0e:b6:1a:3d:cf: ab:05:51:da:30:c0:71:a1:45:9e:82:b5:ea:bf:db: 72:0f:da:d9:ed:68:83:fb:43:d7:bc:af:fe:58:e5: 5e:19:67:94:6e:54:df:d3:9c:c2:0b:db:b7:cf:10: 33:a8:40:bd:45:d0:c9:af:bd:75:c6:f6:d5:f8:74: 76:27:6b:51:ce:b4:eb:f8:b6:d1:83:0d:79:a8:c1: 72:ae:b4:22:fe:aa:85:b5:da:6c:e3:be:df:92:58: 75:44:94:b8:3a:75:ff:f7:ce:ff:58:81:f9:d7:48: 34:58:7a:9b:85:1a:41:ce:b0:41:90:97:15:e4:43: cd:14:6f:ba:fb:6b:0e:78:f7:aa:78:cd:2a:51:bc: e3:74:4e:18:fa:4f:8e:d3:e3:a3:8e:ec:56:7c:49: 48:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:12:A0:A0:F3:74:5A:41:86:F2:3A:5B:85:96:83:EB:E5:9A:50:36 X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c4:b0:64:02:84:c7:84:9e:5d:b0:79:71:80:6a:54:37:5b: 02:5c:0b:76:35:91:5a:ab:e6:25:dc:43:68:16:6a:bc:40:79: 78:43:57:e1:03:64:0b:e2:d3:9f:89:64:39:94:16:3d:95:68: d3:ad:8a:d2:dd:2c:48:f2:cf:37:db:51:3c:6b:e4:37:75:58: 21:50:55:5b:44:86:93:d6:d6:5c:36:1c:b3:ee:26:22:ba:d0: da:44:e3:62:d2:6d:63:91:c1:e2:db:56:d5:f6:b1:09:01:7d: c7:5c:df:f8:8b:f0:cb:0c:cf:cd:d5:54:60:c5:a0:6b:a2:81: a3:49:06:b6:77:5f:a1:72:24:82:1d:ef:a1:15:f8:65:ee:f2: 44:8b:0b:ea:37:22:7d:9c:64:3a:e5:39:45:15:83:3f:61:d8: 3c:52:1c:5e:68:b7:bf:c4:7c:2b:d1:1f:2d:f8:93:8f:60:04: d7:32:38:00:77:77:f6:f2:0e:f7:21:1b:08:c9:cc:5e:dc:27: 04:69:10:22:cc:e1:48:b3:8f:9e:71:6d:c7:c3:a0:01:81:16: 57:1c:c8:d7:6e:59:7d:b0:40:bf:e0:1c:3a:d4:f4:75:ce:f2: 3c:34:6a:99:b9:ae:72:cd:21:7a:0b:cc:bf:d1:eb:be:c5:b7: 59:3c:d9:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjYwMzI1MDAwNzAxWhcNMjYwNDAxMDAwNzAxWjAYMRYwFAYD VQQDEw02OWMzMjcyNS00OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk3hvtVj3y74bgWJW3hSc8yGg1zvXzNWopi7vn8fu9IMEH9h/cavVXjmGz7y az3NORjA3xutlauaw/2PBrc2S19H1WRiEnXoGHrZt9/DrTCipFfcNJ2iO11rqTrG u7DY2pSuDrYaPc+rBVHaMMBxoUWegrXqv9tyD9rZ7WiD+0PXvK/+WOVeGWeUblTf 05zCC9u3zxAzqEC9RdDJr711xvbV+HR2J2tRzrTr+LbRgw15qMFyrrQi/qqFtdps 477fklh1RJS4OnX/987/WIH510g0WHqbhRpBzrBBkJcV5EPNFG+6+2sOePeqeM0q UbzjdE4Y+k+O0+OjjuxWfElIQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPoSoKDz dFpBhvI6W4WWg+vlmlA2MB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ8SwZAKEx4SeXbB5cYBqVDdbAlwLdjWRWqvmJdxDaBZqvEB5eENX4QNkC+LT n4lkOZQWPZVo062K0t0sSPLPN9tRPGvkN3VYIVBVW0SGk9bWXDYcs+4mIrrQ2kTj YtJtY5HB4ttW1faxCQF9x1zf+IvwywzPzdVUYMWga6KBo0kGtndfoXIkgh3voRX4 Ze7yRIsL6jcifZxkOuU5RRWDP2HYPFIcXmi3v8R8K9EfLfiTj2AE1zI4AHd39vIO 9yEbCMnMXtwnBGkQIszhSLOPnnFtx8OgAYEWVxzI125ZfbBAv+AcOtT0dc7yPDRq mbmucs0hegvMv9HrvsW3WTzZug== -----END CERTIFICATE-----Generated at Thu Mar 26 15:29:12 2026 by rpki-client