$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: ho4yBSQSEvkYxFPdz3WtuwT1unR32MmnKdwehTwDorU= Subject key identifier: 5F:29:97:99:F3:49:BE:2B:EF:49:0F:C3:42:99:8A:D5:8E:3B:D5:3B Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 07E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 07DC Signing time: Tue 24 Mar 2026 21:04:52 +0000 Manifest this update: Tue 24 Mar 2026 21:04:52 +0000 Manifest next update: Tue 31 Mar 2026 21:04:52 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: kGEYF50e645uFck0Xmf8YlIGJyo3NlIdUiXEamHGwIE=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: /ee3Z/RejGv34651CFjDfo357/BI2yYheaPQiVddGg4=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: +Ytbh6uS9SueVTTFSqsYD08Z5VmVPcYhz5ek3giGdE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Mar 24 21:04:52 2026 GMT Not After : Mar 31 21:04:52 2026 GMT Subject: CN=69c2fc74-be6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:55:44:b6:7c:09:48:20:50:29:0f:78:f3:92: 76:a9:7a:96:4d:27:1f:4a:84:92:ae:2e:3b:df:95: 06:53:3e:bf:a6:25:8b:38:12:86:91:a3:33:51:af: ed:2a:98:8b:43:d0:f2:44:ff:6a:bc:93:b7:ee:32: 90:22:b8:20:2a:c1:46:88:7a:a0:78:aa:d4:55:9f: 2c:4b:0a:8f:00:b1:47:75:c0:ca:80:45:1b:d4:5c: 75:34:14:d3:20:51:ed:2d:9a:98:a3:88:f7:cc:0e: 51:7e:f0:49:4f:a9:4f:ff:e1:5a:17:8f:6c:3f:53: d4:4d:b8:23:13:73:f5:bf:df:51:a8:b9:38:a9:ee: 73:86:c1:75:62:52:eb:7c:e7:45:03:94:45:2e:42: 42:3c:47:29:4f:ee:8a:1a:a4:fe:64:2a:92:c3:60: e0:19:5b:9e:07:39:32:6e:e0:ba:92:e1:72:ad:44: af:4c:cc:e5:4a:c8:f4:a5:0b:d3:9a:83:72:d8:d8: 83:94:87:53:9a:ea:58:6b:70:f2:a8:5f:de:b5:70: 21:43:50:a3:0b:fa:2b:88:3a:a0:de:df:e3:74:24: f3:a9:e6:b2:92:67:60:b5:66:22:81:af:c7:87:96: 35:45:e4:2e:4f:29:ef:60:39:d5:34:3c:f6:9c:88: a5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:29:97:99:F3:49:BE:2B:EF:49:0F:C3:42:99:8A:D5:8E:3B:D5:3B X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a4:12:e9:49:0e:55:96:51:9b:54:a0:0c:ea:c3:6d:5b:c6: d8:88:e8:ab:98:c5:53:e8:ce:84:6c:c9:f2:40:c0:c6:38:78: cc:e1:99:51:17:01:b6:c3:41:7a:00:71:fa:0f:71:a2:85:75: 43:1d:d8:f5:0c:d9:a2:c8:3e:04:20:d3:1f:13:b1:4b:70:2f: 59:09:d9:0d:15:7e:a1:3c:d7:9c:0e:5b:11:0d:3d:87:be:0e: d9:26:e5:a0:1a:47:31:8e:2e:d8:c7:ec:43:e7:ca:36:c7:e2: 78:b1:eb:1e:53:93:c5:28:ce:f5:a9:9a:73:73:6e:7f:b3:fa: 40:c7:6e:40:3a:17:68:41:93:3f:95:d6:c9:4e:f6:fe:b9:b3: 3c:70:92:31:6e:b8:70:f0:ff:e4:12:4a:51:a1:ac:4f:13:e6: d3:11:8e:a0:38:1b:e2:e3:e5:ae:f2:56:2e:09:24:79:65:42: c1:65:52:cc:c9:59:90:a9:55:f4:7d:1b:3e:1b:fb:a2:21:c1: dd:83:c7:58:b1:48:93:56:03:3e:b2:b2:2f:f8:d6:ee:97:3f: dd:5e:6f:75:e0:02:6f:71:a8:97:d0:19:e6:d8:bb:d4:10:71: 77:79:ab:62:cc:f2:8a:f2:6b:1f:b3:b7:d4:b9:60:5b:be:21: 6e:80:8c:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjYwMzI0MjEwNDUyWhcNMjYwMzMxMjEwNDUyWjAYMRYwFAYD VQQDEw02OWMyZmM3NC1iZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFVEtnwJSCBQKQ9485J2qXqWTScfSoSSri4735UGUz6/piWLOBKGkaMzUa/t KpiLQ9DyRP9qvJO37jKQIrggKsFGiHqgeKrUVZ8sSwqPALFHdcDKgEUb1Fx1NBTT IFHtLZqYo4j3zA5RfvBJT6lP/+FaF49sP1PUTbgjE3P1v99RqLk4qe5zhsF1YlLr fOdFA5RFLkJCPEcpT+6KGqT+ZCqSw2DgGVueBzkybuC6kuFyrUSvTMzlSsj0pQvT moNy2NiDlIdTmupYa3DyqF/etXAhQ1CjC/oriDqg3t/jdCTzqeaykmdgtWYiga/H h5Y1ReQuTynvYDnVNDz2nIil9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF8pl5nz Sb4r70kPw0KZitWOO9U7MB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJaQS6UkOVZZRm1SgDOrDbVvG2Ijoq5jFU+jOhGzJ8kDAxjh4zOGZURcBtsNB egBx+g9xooV1Qx3Y9QzZosg+BCDTHxOxS3AvWQnZDRV+oTzXnA5bEQ09h74O2Sbl oBpHMY4u2MfsQ+fKNsfieLHrHlOTxSjO9amac3Nuf7P6QMduQDoXaEGTP5XWyU72 /rmzPHCSMW64cPD/5BJKUaGsTxPm0xGOoDgb4uPlrvJWLgkkeWVCwWVSzMlZkKlV 9H0bPhv7oiHB3YPHWLFIk1YDPrKyL/jW7pc/3V5vdeACb3Gol9AZ5ti71BBxd3mr YszyivJrH7O31LlgW74hboCM8g== -----END CERTIFICATE-----Generated at Thu Mar 26 08:53:34 2026 by rpki-client