$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft File: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft (raw, json) Hash identifier: uU4tIG4cWPdBCoNQc0sgBgvuqn18sC3GQbvLUTZKQsU= Subject key identifier: 02:CA:14:96:98:08:BB:B5:DD:EC:24:8F:F5:CB:89:3C:CF:33:1D:B0 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 04B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft Manifest number: 0490 Signing time: Tue 24 Mar 2026 23:41:26 +0000 Manifest this update: Tue 24 Mar 2026 23:41:26 +0000 Manifest next update: Tue 31 Mar 2026 23:41:26 +0000 Files and hashes: 1: Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl (hash: McFpSx/Gf4Cr2RoKPYkhTrJzLNAld6MR4jCzgHh4a6Q=) 2: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (hash: W6dMaUqeZUZ5yl2vrB4kDnmuCp2AkA9688MbXMn1Iu0=) 3: 91A286509F0811ECAE659F82C4F9AE02.roa (hash: 3jewHBb77PCvairN2996ZvKaBpoln62DoJ8FtmWYmYo=) 4: 4B167396E74111EC80E35542C4F9AE02.roa (hash: s3LCy4JitIxrk8TrdHNnZ3pFI/mZ0+J3BlkxeqJMpVg=) 5: EFAA6C1CD16911F08A99D95BC4F9AE02.roa (hash: Jq67A+F4rIfzW8WwGVI/74n9tCcPV6PLGYDBFsxh/v4=) 6: EF33F6CCD16911F08AEFD95BC4F9AE02.roa (hash: Q/WW69HDFqBmPazKy9CWTwg7ADAfQr3xucgCfcoGH6o=) 7: 8AEE4940EAB511ECBBDE3C50C4F9AE02.roa (hash: woJiUlfh+5rrMBDG7PnsvNBeiKjiLhLTkpDWmy2sy4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1, serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Mar 24 23:41:26 2026 GMT Not After : Mar 31 23:41:26 2026 GMT Subject: CN=69c32126-46ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a6:0f:80:57:6b:1c:ab:a6:79:e7:cd:43:00: 3b:f2:76:dd:74:64:58:10:8c:53:82:d0:30:3d:70: 79:f5:99:2f:2f:cd:5f:a5:a0:86:23:17:a3:7d:a0: ae:f2:9c:9b:a5:1c:03:76:d5:e2:d8:d5:ff:f6:69: 8b:17:e7:95:12:05:f2:8b:14:29:63:17:b1:a0:82: 63:85:ea:97:0f:e6:42:8a:26:2f:d3:e8:fe:d6:fc: be:b8:42:a0:56:f3:25:20:8c:21:e3:64:47:86:0f: 40:d9:d3:32:15:be:fc:a5:65:ac:10:cd:c5:a1:1a: e7:f8:15:f0:56:df:53:a1:4e:a4:cb:fc:e9:2d:17: be:f5:fc:cd:0f:64:dd:6c:41:06:a8:93:f8:2d:d1: fb:6c:7a:8b:51:4f:19:64:e4:2c:5a:7c:4f:12:1c: e3:9c:0a:35:30:e8:23:18:db:69:14:a7:5a:ea:ac: 6c:ab:e8:23:4b:8a:e4:08:43:f8:b6:84:5e:11:07: 97:c2:5d:c8:ae:fa:37:49:e8:f7:be:04:2d:6c:cb: 35:e4:65:29:31:fc:50:e0:a1:d6:09:d3:93:6a:57: 65:8d:0e:27:12:bc:08:e3:99:be:65:0d:46:81:ce: da:16:9f:22:39:a6:87:9c:50:3b:d5:fb:cc:f8:2c: 36:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CA:14:96:98:08:BB:B5:DD:EC:24:8F:F5:CB:89:3C:CF:33:1D:B0 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:95:48:a0:f5:74:67:c7:e7:d7:da:af:22:37:ef:a9:17:3a: 9c:a1:ef:db:3b:5a:9b:a1:85:61:aa:1b:83:46:3e:a5:82:46: 7b:31:4f:8f:1a:ef:4c:e2:83:ef:59:cc:a7:b0:df:a5:c4:9e: cd:da:07:d1:6f:62:ca:ce:f1:63:53:64:75:06:66:c4:56:4c: ab:19:72:bd:7d:57:7c:97:77:06:47:f7:02:29:f2:b5:d6:66: d5:ac:4c:ab:0d:75:99:b8:02:a4:fd:ba:21:16:a7:f6:ca:70: 44:4b:03:72:e2:db:65:a7:84:71:4a:94:bf:37:ab:71:f7:f5: 07:94:7c:ab:4f:e4:0b:d3:f0:de:cc:87:d5:2d:03:d5:8e:92: 79:6c:f4:9b:a2:bd:18:e8:72:be:58:03:aa:0a:d2:85:7c:65: 12:ab:d3:fa:a1:06:f6:f4:1f:60:ee:d5:19:ae:5f:b1:76:88: cf:94:a2:3c:6d:c5:d3:2b:2e:eb:36:12:d6:19:0b:26:17:f8: 41:d3:93:bd:a4:ed:11:05:82:6d:ef:a6:40:48:9d:0b:65:6d: 0c:4e:13:4d:df:7d:4d:0e:75:c0:81:7a:87:ea:2a:7e:7a:3a: 57:91:00:f4:da:b8:68:d8:a0:5c:ee:03:ca:b7:d6:db:2b:32: 16:3c:7e:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjYwMzI0MjM0MTI2WhcNMjYwMzMxMjM0MTI2WjAYMRYwFAYD VQQDEw02OWMzMjEyNi00NmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl6YPgFdrHKumeefNQwA78nbddGRYEIxTgtAwPXB59ZkvL81fpaCGIxejfaCu 8pybpRwDdtXi2NX/9mmLF+eVEgXyixQpYxexoIJjheqXD+ZCiiYv0+j+1vy+uEKg VvMlIIwh42RHhg9A2dMyFb78pWWsEM3FoRrn+BXwVt9ToU6ky/zpLRe+9fzND2Td bEEGqJP4LdH7bHqLUU8ZZOQsWnxPEhzjnAo1MOgjGNtpFKda6qxsq+gjS4rkCEP4 toReEQeXwl3Irvo3Sej3vgQtbMs15GUpMfxQ4KHWCdOTaldljQ4nErwI45m+ZQ1G gc7aFp8iOaaHnFA71fvM+Cw26wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFALKFJaY CLu13ewkj/XLiTzPMx2wMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTlDMS9FRTcwMkY0NDdBQzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVL eXotaU16YUJCYWM5SFVHZk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABpVIoPV0Z8fn19qvIjfvqRc6nKHv2ztam6GFYaobg0Y+pYJGezFPjxrvTOKD 71nMp7DfpcSezdoH0W9iys7xY1NkdQZmxFZMqxlyvX1XfJd3Bkf3AinytdZm1axM qw11mbgCpP26IRan9spwREsDcuLbZaeEcUqUvzercff1B5R8q0/kC9Pw3syH1S0D 1Y6SeWz0m6K9GOhyvlgDqgrShXxlEqvT+qEG9vQfYO7VGa5fsXaIz5SiPG3F0ysu 6zYS1hkLJhf4QdOTvaTtEQWCbe+mQEidC2VtDE4TTd99TQ51wIF6h+oqfno6V5EA 9Nq4aNigXO4DyrfW2ysyFjx+fA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:05 2026 by rpki-client