$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: gIK9ewxfpjoUmILX+vkjpKpTtZxn9e9ppGw26Tymbvs= Subject key identifier: AA:70:6C:9B:F5:33:95:47:41:33:EF:C9:F6:2E:5A:91:A2:B5:2F:21 Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0EA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E84 Signing time: Tue 24 Mar 2026 17:37:06 +0000 Manifest this update: Tue 24 Mar 2026 17:37:05 +0000 Manifest next update: Tue 31 Mar 2026 17:37:05 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: RQBhTOvWm1Gyv8js1Vq2feO51FWrAS2HjOIqhOxv/lE=) 2: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: oPPYxBYmiiy4enhiiy5O2BkIuc1yyliJlPvf0DwR6C8=) 3: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: 4waDGGKnkJeLLa4QkYuztqh/mv8xS12LSc+ievo5tLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Mar 24 17:37:05 2026 GMT Not After : Mar 31 17:37:05 2026 GMT Subject: CN=69c2cbc2-ab76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:42:79:11:80:92:99:52:b8:d7:2a:37:02:47: e0:e0:24:a5:63:8a:2d:40:d0:6b:21:89:48:ee:02: de:04:3f:e7:9c:96:d1:ff:f2:26:cf:eb:68:1f:19: ef:eb:7c:ee:2a:2b:ff:19:b6:5d:51:08:a7:f9:b9: 54:ac:52:bd:b4:e5:98:8d:1e:9d:cb:c3:da:eb:a4: d5:52:ba:98:7b:34:c3:d8:68:f4:29:19:bd:21:8a: 2a:c6:2a:4f:72:f7:51:c8:17:73:c3:fa:1b:5f:1e: fc:44:4c:5c:03:65:50:7b:c5:b7:3c:15:a2:4f:e3: 2c:cc:d2:23:a4:d0:6f:8d:db:2e:e8:64:48:20:b3: de:b9:67:e2:87:72:db:df:5c:22:0b:c5:38:f3:0b: 1c:52:21:83:44:37:ad:2a:12:30:f5:7a:e1:0e:d0: ab:7a:57:fa:5b:5b:95:9c:32:64:0d:86:ff:59:ec: ef:e7:c1:a1:0b:7d:e9:d0:01:f0:e5:8a:0b:94:70: 31:25:70:5e:44:f8:7f:3e:9f:84:bc:96:a3:3f:a5: c1:2a:e8:03:0e:7f:be:65:e9:db:f4:50:93:19:8b: 69:2b:2b:6d:62:5d:35:94:b8:63:72:d3:73:b7:ff: 30:07:ec:82:b0:90:42:e1:c8:50:cc:9a:77:e8:c1: 59:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:70:6C:9B:F5:33:95:47:41:33:EF:C9:F6:2E:5A:91:A2:B5:2F:21 X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:91:b7:b6:b2:e6:3c:ab:bd:74:86:bf:f4:c6:5b:b6:f2:cf: 5f:32:96:c0:24:da:29:41:35:9b:34:70:32:90:88:97:3e:af: 65:fa:19:9c:e4:9c:04:3b:a3:ab:70:8c:d8:eb:64:5f:50:c9: 47:a4:bd:a3:6c:ad:3d:21:2c:d6:e9:cc:dd:5b:40:a7:99:09: bd:71:1d:34:45:48:59:0a:97:07:72:0a:2c:b9:af:e3:50:f5: 25:7e:a2:f2:2b:fc:20:45:34:94:14:35:b3:02:95:e9:aa:b5: 25:a3:b8:e5:83:d6:21:ed:65:d5:02:b9:3c:90:ef:58:bd:66: 5f:d1:04:6e:e2:12:be:77:b7:55:78:48:fc:7d:31:bf:58:54: 2c:46:1a:87:88:3e:6e:2b:b3:de:57:0f:bc:f3:34:56:ff:64: e8:77:8c:74:b0:53:5c:6a:9f:7c:1b:b2:4e:84:c8:d1:56:a1: 9b:c4:e5:fd:07:e7:e9:c6:94:b9:2a:bb:09:ea:49:ba:55:a8: ef:94:f2:2f:a4:6f:80:d8:22:b4:26:a5:73:3b:fd:f3:d8:1b: 56:a8:b6:f1:7e:83:07:45:44:c1:c5:f8:36:09:a4:f6:45:fb: 99:bd:91:f3:f7:d6:03:17:7d:f8:13:0e:78:81:4a:ad:07:6b: 63:44:db:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjYwMzI0MTczNzA1WhcNMjYwMzMxMTczNzA1WjAYMRYwFAYD VQQDEw02OWMyY2JjMi1hYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA80J5EYCSmVK41yo3Akfg4CSlY4otQNBrIYlI7gLeBD/nnJbR//Imz+toHxnv 63zuKiv/GbZdUQin+blUrFK9tOWYjR6dy8Pa66TVUrqYezTD2Gj0KRm9IYoqxipP cvdRyBdzw/obXx78RExcA2VQe8W3PBWiT+MszNIjpNBvjdsu6GRIILPeuWfih3Lb 31wiC8U48wscUiGDRDetKhIw9XrhDtCrelf6W1uVnDJkDYb/Wezv58GhC33p0AHw 5YoLlHAxJXBeRPh/Pp+EvJajP6XBKugDDn++Zenb9FCTGYtpKyttYl01lLhjctNz t/8wB+yCsJBC4chQzJp36MFZ5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpwbJv1 M5VHQTPvyfYuWpGitS8hMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA35G3trLmPKu9dIa/9MZbtvLPXzKWwCTaKUE1mzRwMpCIlz6vZfoZnOScBDuj q3CM2OtkX1DJR6S9o2ytPSEs1unM3VtAp5kJvXEdNEVIWQqXB3IKLLmv41D1JX6i 8iv8IEU0lBQ1swKV6aq1JaO45YPWIe1l1QK5PJDvWL1mX9EEbuISvne3VXhI/H0x v1hULEYah4g+biuz3lcPvPM0Vv9k6HeMdLBTXGqffBuyToTI0Vahm8Tl/Qfn6caU uSq7CepJulWo75TyL6RvgNgitCalczv989gbVqi28X6DB0VEwcX4Ngmk9kX7mb2R 8/fWAxd9+BMOeIFKrQdrY0Tbbw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:09 2026 by rpki-client