$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: Uv7ObJOKUYogl9B5ZnseW4gTN2shlItBlEhVORvizrE= Subject key identifier: 33:E2:1F:CE:50:C8:70:09:C5:90:82:72:AC:48:28:86:F3:9F:29:86 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0881 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 086A Signing time: Tue 24 Mar 2026 20:27:38 +0000 Manifest this update: Tue 24 Mar 2026 20:27:38 +0000 Manifest next update: Tue 31 Mar 2026 20:27:38 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: cXpovE/EA8e9s7OLPVk0ItNqAdw7RBqOqbT00RYsxZ0=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: yYK7V7dW/D0eC17jG/LycZEBlM7X3W0O8v5bUzFm2dA=) 3: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: xE0G8jy0x1aFTqJiiedpm0HY07HDA+9aAMGkr13aJlo=) 4: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: X+7xi8ucS3fgs8IMY8mWHVyiqI68xFhirEd+62e8Rek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Mar 24 20:27:38 2026 GMT Not After : Mar 31 20:27:38 2026 GMT Subject: CN=69c2f3ba-c677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:1c:af:78:8f:a2:94:9a:7c:e3:81:44:91: 12:af:e8:29:cf:28:c5:c3:ea:ac:04:d2:65:61:ae: 6c:23:76:26:2e:9e:31:1e:f6:c3:10:c4:eb:53:eb: 6d:26:7b:08:d4:c4:6b:a0:3c:cc:c2:2e:c5:83:ac: a9:a2:31:10:7c:66:c1:68:a2:35:e2:c3:59:36:50: 59:6f:6f:51:5f:97:9a:2b:8a:85:f1:aa:96:4e:82: 2b:b9:50:43:d7:95:7c:31:28:2d:ca:d4:ee:e8:3b: 74:f7:25:9d:93:dd:77:d1:16:9c:43:1c:0b:a1:c6: dd:03:05:e5:fd:01:df:b8:3b:4d:37:2f:21:65:a8: 23:49:75:80:e3:a0:5b:1a:d5:74:b1:fd:be:18:2c: 94:0e:38:77:61:a9:d3:da:51:19:df:bd:d8:df:41: 95:af:f5:f9:6b:d5:f1:4d:3f:8b:1f:56:7d:f6:33: 53:a5:4e:23:9b:ef:a3:b9:f4:82:ec:01:2b:e6:3d: 60:b9:de:78:28:6f:82:8a:fa:39:6f:42:8c:e3:c3: df:d3:71:05:31:cc:40:a5:85:02:1b:cd:e0:88:e1: 74:62:be:d4:e7:83:46:f3:09:89:e0:7e:0f:01:86: 92:b1:99:af:19:41:19:e8:77:8c:9d:15:d2:dd:8b: 77:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E2:1F:CE:50:C8:70:09:C5:90:82:72:AC:48:28:86:F3:9F:29:86 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:0b:6d:d1:74:25:1f:42:15:53:ab:c0:4b:c5:87:a5:87:b4: 9d:a3:2d:21:a1:ef:d0:fa:0e:a8:11:38:fb:8e:ba:e2:94:ce: 48:5e:b4:ec:e6:8c:59:d9:95:6d:79:97:26:a5:e8:4d:0d:b1: 7b:00:2e:19:11:97:26:9c:be:3c:ad:bb:68:cd:eb:cf:a8:67: f9:26:49:a8:77:7e:83:19:85:77:d6:42:30:a1:a3:78:4f:49: 59:8f:df:22:2e:a4:68:c4:18:00:71:13:4a:b8:3a:9f:e5:d7: 80:34:24:65:56:dd:da:aa:5d:ff:e2:d3:b4:77:5c:f3:f8:f4: 9e:ba:b3:1e:cb:80:ee:02:0f:27:88:42:72:de:30:b1:56:98: dc:6b:a2:b9:4d:ed:54:1d:44:60:53:46:04:56:14:20:18:a6: 23:86:70:1a:62:06:97:3d:8a:35:a8:7b:6a:d7:10:84:ba:bf: 0c:f8:1f:5b:4b:35:9d:a9:10:47:f7:ab:05:ae:6d:50:f7:d2: df:ac:42:8f:36:23:ce:7a:f9:83:8a:7e:a2:fd:b5:39:c9:f4: 03:5b:58:d6:52:5f:43:ea:81:1e:d0:69:7b:85:2d:51:4f:b2: 3b:d3:6c:ee:98:b0:40:78:c6:23:80:72:94:4a:9d:76:76:1f: 45:a4:ac:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwMzI0MjAyNzM4WhcNMjYwMzMxMjAyNzM4WjAYMRYwFAYD VQQDEw02OWMyZjNiYS1jNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+ccr3iPopSafOOBRJESr+gpzyjFw+qsBNJlYa5sI3YmLp4xHvbDEMTrU+tt JnsI1MRroDzMwi7Fg6ypojEQfGbBaKI14sNZNlBZb29RX5eaK4qF8aqWToIruVBD 15V8MSgtytTu6Dt09yWdk9130RacQxwLocbdAwXl/QHfuDtNNy8hZagjSXWA46Bb GtV0sf2+GCyUDjh3YanT2lEZ373Y30GVr/X5a9XxTT+LH1Z99jNTpU4jm++jufSC 7AEr5j1gud54KG+Civo5b0KM48Pf03EFMcxApYUCG83giOF0Yr7U54NG8wmJ4H4P AYaSsZmvGUEZ6HeMnRXS3Yt3/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDPiH85Q yHAJxZCCcqxIKIbznymGMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAQtt0XQlH0IVU6vAS8WHpYe0naMtIaHv0PoOqBE4+4664pTOSF607OaMWdmV bXmXJqXoTQ2xewAuGRGXJpy+PK27aM3rz6hn+SZJqHd+gxmFd9ZCMKGjeE9JWY/f Ii6kaMQYAHETSrg6n+XXgDQkZVbd2qpd/+LTtHdc8/j0nrqzHsuA7gIPJ4hCct4w sVaY3GuiuU3tVB1EYFNGBFYUIBimI4ZwGmIGlz2KNah7atcQhLq/DPgfW0s1nakQ R/erBa5tUPfS36xCjzYjznr5g4p+ov21Ocn0A1tY1lJfQ+qBHtBpe4UtUU+yO9Ns 7piwQHjGI4BylEqddnYfRaSslA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:40:51 2026 by rpki-client