$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: f81rGxxPaKE41qfZB/wRwpxQcOeq9VXbkw3J3fBxZ18= Subject key identifier: 87:83:CB:C6:DC:AE:52:82:E7:CB:D9:E5:2E:DE:C1:44:44:2A:E1:7D Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 131A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 1314 Signing time: Tue 24 Mar 2026 16:54:53 +0000 Manifest this update: Tue 24 Mar 2026 16:54:52 +0000 Manifest next update: Tue 31 Mar 2026 16:54:52 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: EO2oax+LtJAhkmXxhPF+F8oPq1yLraiFw/1a/BEABJ8=) 2: 5144F80E926B11F09CB88A3FC4F9AE02.roa (hash: A8V1gIPZhwUZTarJ4Mgm3GQ16Ga+pusOMKw3yDRvHDk=) 3: 5232D4B6926B11F09CB88A3FC4F9AE02.roa (hash: NGAAp5bKrPsqJtekMakHs7H1OfK9jRPnn3ajrINjxiM=) 4: 51C3E830926B11F09CB88A3FC4F9AE02.roa (hash: 3ZXUqVaSWRuqxEz8m47I5k4iPWpdb6iN8DnYHpIukoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4890 (0x131a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: Mar 24 16:54:52 2026 GMT Not After : Mar 31 16:54:52 2026 GMT Subject: CN=69c2c1dc-25b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:e7:24:4e:85:8c:3d:11:d3:ff:48:81:10: 0f:5c:d9:62:2b:3e:3a:c1:f9:a8:25:1a:b3:96:1e: 61:c1:81:55:2c:0c:58:78:59:62:f2:2b:97:10:0b: a6:cb:9f:d7:05:fa:2a:db:43:64:de:61:9c:44:12: 5f:11:e4:46:a8:29:76:02:04:3b:ee:ed:67:0e:e9: ea:5e:58:bf:ab:ef:e0:d2:4f:b8:cf:49:ff:88:1a: ae:5c:c9:4f:ab:be:17:33:c0:65:a8:d2:27:19:86: 5c:86:d6:a4:bc:47:60:fc:29:32:7c:36:af:ca:6e: b8:15:72:80:ac:34:6f:6e:82:87:51:72:e7:55:22: 1a:8b:1d:d7:56:30:e0:d1:43:f3:60:0a:5b:f6:6b: 2a:86:cf:1a:3d:8b:31:e3:98:9b:b7:bd:2a:7b:62: e1:95:7e:db:22:3e:e5:2b:98:d6:f5:f6:c6:35:f2: 9a:c5:10:d6:0e:34:f7:e4:1e:37:a0:0d:5b:cc:b1: 34:b0:3e:3c:18:c0:9f:b7:79:46:af:0e:e1:d7:c7: e0:0e:a3:c3:45:f7:7e:55:2d:8b:d7:78:81:a0:bc: 1a:c7:b0:e6:fd:0c:ef:76:6f:a4:84:9a:52:62:83: 67:8c:38:c6:08:ed:b5:3c:22:31:15:aa:6e:1d:13: cf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:83:CB:C6:DC:AE:52:82:E7:CB:D9:E5:2E:DE:C1:44:44:2A:E1:7D X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:11:25:3e:ef:8f:4a:80:d0:0b:e5:2d:a8:65:8f:3d:ad:2e: 9e:ef:13:31:35:0d:6c:b4:91:41:b4:b3:f8:8c:56:94:3b:1c: d5:1c:c5:ad:69:f4:30:74:a3:72:99:d7:54:09:7b:ac:9e:17: 1c:c1:45:90:37:6d:80:a8:4a:c8:cd:be:5c:ea:3b:6a:ea:4f: 47:0f:88:71:e6:34:bd:e1:b6:e8:24:7b:47:5e:10:78:fd:b4: ec:93:da:19:3a:30:19:96:87:17:b4:9e:47:2b:d6:cf:6f:fe: 3b:84:68:23:fd:cc:1a:04:0e:21:ef:27:c4:b9:99:cb:3f:fd: 50:29:3f:39:a6:a3:cf:28:33:36:07:61:1e:28:28:0c:99:07: 43:84:93:f6:be:f8:6e:0d:4e:12:9a:87:f5:01:24:9a:fe:97: 6c:f9:c3:be:bf:1c:ad:9f:00:d9:e9:14:bc:8c:ca:31:f2:69: 1f:86:1a:8f:e1:e3:2e:22:c5:41:07:20:e2:19:22:22:79:a6: c8:7b:fc:a7:fe:cd:32:20:26:a0:1a:a5:77:f1:09:9e:87:92: e0:a5:eb:cb:a4:50:d8:ba:18:dc:e6:f6:b5:d1:6a:f6:48:76: 3e:c5:8f:70:b0:e7:22:09:1e:ee:16:8b:30:c6:76:08:f2:a5: ec:2c:03:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICExowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjYwMzI0MTY1NDUyWhcNMjYwMzMxMTY1NDUyWjAYMRYwFAYD VQQDEw02OWMyYzFkYy0yNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMznJE6FjD0R0/9IgRAPXNliKz46wfmoJRqzlh5hwYFVLAxYeFli8iuXEAum y5/XBfoq20Nk3mGcRBJfEeRGqCl2AgQ77u1nDunqXli/q+/g0k+4z0n/iBquXMlP q74XM8BlqNInGYZchtakvEdg/CkyfDavym64FXKArDRvboKHUXLnVSIaix3XVjDg 0UPzYApb9msqhs8aPYsx45ibt70qe2LhlX7bIj7lK5jW9fbGNfKaxRDWDjT35B43 oA1bzLE0sD48GMCft3lGrw7h18fgDqPDRfd+VS2L13iBoLwax7Dm/Qzvdm+khJpS YoNnjDjGCO21PCIxFapuHRPPbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIeDy8bc rlKC58vZ5S7ewUREKuF9MB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAghElPu+PSoDQC+UtqGWPPa0unu8TMTUNbLSRQbSz+IxWlDsc1RzFrWn0MHSj cpnXVAl7rJ4XHMFFkDdtgKhKyM2+XOo7aupPRw+IceY0veG26CR7R14QeP207JPa GTowGZaHF7SeRyvWz2/+O4RoI/3MGgQOIe8nxLmZyz/9UCk/OaajzygzNgdhHigo DJkHQ4ST9r74bg1OEpqH9QEkmv6XbPnDvr8crZ8A2ekUvIzKMfJpH4Yaj+HjLiLF QQcg4hkiInmmyHv8p/7NMiAmoBqld/EJnoeS4KXry6RQ2LoY3Ob2tdFq9kh2PsWP cLDnIgke7haLMMZ2CPKl7CwD/w== -----END CERTIFICATE-----Generated at Thu Mar 26 06:08:00 2026 by rpki-client