$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: fI8cRUe0ct1DFwRvCiIzDHK+JzADnjHlQWAtLAdj8k4= Subject key identifier: DB:C5:32:18:5C:3F:F6:98:F9:F3:4C:BB:86:96:20:C1:E0:BF:C0:36 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09F6 Signing time: Tue 24 Mar 2026 19:39:40 +0000 Manifest this update: Tue 24 Mar 2026 19:39:39 +0000 Manifest next update: Tue 31 Mar 2026 19:39:39 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: bNdFojtX8wAIt7Mk7k5QnLHKfeZ4jSomoZpic7/0+I0=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Od5KYLxvqq8bPa97Fy0kuI4FHkEaW4Gm3D6V7HRmSiU=) 3: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: Zmk+e16+6eqsGa5Xu4c3qgkHkTU472qL2Fssh+v6Tm4=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: LO9ouDVpuivnYHBghIyjyP9NLDarWKgm/7HMedCaaUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2586 (0xa1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Mar 24 19:39:39 2026 GMT Not After : Mar 31 19:39:39 2026 GMT Subject: CN=69c2e87b-3e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:34:44:f6:49:dd:4a:8b:b4:9c:9f:cb:7f:87: c5:d4:b0:72:9c:13:2b:ff:cb:60:fb:2d:4f:0d:a0: 86:f2:1b:e3:7b:55:ae:99:8f:94:06:d1:aa:93:17: e2:96:ca:f9:c9:ce:b6:a8:98:24:38:82:cd:81:e8: 0d:7d:70:db:d5:01:26:b0:2d:7b:e7:37:70:9e:43: b5:be:c1:38:2d:1d:f3:02:d5:95:9e:cf:a4:5a:99: 5e:5e:f2:53:a3:50:b4:20:62:23:b8:44:87:70:5a: 45:8e:11:f5:99:11:0a:84:86:18:80:50:90:df:10: ff:fd:cb:99:58:ea:73:36:f4:2f:6e:ea:33:d1:24: 1b:47:fe:1d:2c:4a:76:51:e9:65:1f:01:3b:e3:5d: f2:d0:ce:b5:ce:ea:75:50:3a:b7:5b:5a:03:80:37: 05:f6:0b:1c:8e:4f:ad:b9:03:08:a4:4c:3e:a1:99: cc:7f:5d:b0:ee:0c:68:6b:b3:6c:8f:d4:42:43:38: f4:37:1f:6b:2a:e2:17:2b:5d:57:40:ff:be:bc:ad: 8c:c6:59:94:1d:87:fc:64:10:71:60:e9:bd:b0:6f: 38:0a:17:58:41:91:2a:94:31:21:9a:1a:b9:c6:fb: c9:66:89:6e:01:1f:49:49:f7:78:e0:41:3b:c2:ce: 20:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C5:32:18:5C:3F:F6:98:F9:F3:4C:BB:86:96:20:C1:E0:BF:C0:36 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6d:7f:ed:03:ed:af:4b:54:c4:5e:ef:80:30:ef:e2:48:3a: 3e:4f:9b:72:29:d9:e0:0b:c7:96:ad:48:80:02:33:5a:ef:91: dc:2d:37:fb:12:82:df:f6:f0:d1:be:b3:18:f7:6f:ba:6d:0d: 51:83:8f:d5:55:05:1f:a0:55:0e:16:db:3c:f9:b5:d7:99:67: 12:b8:9f:63:74:0a:f6:f0:f9:d3:2d:52:c3:bb:5d:68:05:23: f7:25:d0:0a:91:52:a8:a0:be:a9:1a:77:c2:f9:a4:5f:b9:90: 0f:f7:d2:94:7e:f4:fd:d9:69:48:f0:90:54:5a:0f:11:05:2d: d4:ac:68:86:d6:49:4a:e5:a3:2c:4d:02:cd:e6:52:1b:8c:32: 9d:c7:68:87:d9:79:a5:de:d6:07:56:98:12:93:63:a7:bc:f9: f8:49:aa:43:d3:1f:67:6d:ae:d2:b0:8b:a5:1d:02:44:99:d0: e0:4d:a7:8c:65:74:6d:91:8b:b6:16:2b:52:18:db:00:75:96: ef:b7:6c:12:52:86:44:67:bb:4c:e5:78:f3:08:8d:f0:3c:eb: bc:4b:f8:d5:7b:d8:b1:a7:bd:40:e0:62:bd:fb:c6:d3:d4:8a: 5b:39:1c:39:10:6e:e2:62:f7:b4:4e:de:a2:d5:d8:7f:41:9b: 89:5f:1d:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwMzI0MTkzOTM5WhcNMjYwMzMxMTkzOTM5WjAYMRYwFAYD VQQDEw02OWMyZTg3Yi0zZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkDRE9kndSou0nJ/Lf4fF1LBynBMr/8tg+y1PDaCG8hvje1WumY+UBtGqkxfi lsr5yc62qJgkOILNgegNfXDb1QEmsC175zdwnkO1vsE4LR3zAtWVns+kWpleXvJT o1C0IGIjuESHcFpFjhH1mREKhIYYgFCQ3xD//cuZWOpzNvQvbuoz0SQbR/4dLEp2 UellHwE7413y0M61zup1UDq3W1oDgDcF9gscjk+tuQMIpEw+oZnMf12w7gxoa7Ns j9RCQzj0Nx9rKuIXK11XQP++vK2MxlmUHYf8ZBBxYOm9sG84ChdYQZEqlDEhmhq5 xvvJZoluAR9JSfd44EE7ws4gKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNvFMhhc P/aY+fNMu4aWIMHgv8A2MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmW1/7QPtr0tUxF7vgDDv4kg6Pk+bcinZ4AvHlq1IgAIzWu+R3C03+xKC3/bw 0b6zGPdvum0NUYOP1VUFH6BVDhbbPPm115lnErifY3QK9vD50y1Sw7tdaAUj9yXQ CpFSqKC+qRp3wvmkX7mQD/fSlH70/dlpSPCQVFoPEQUt1KxohtZJSuWjLE0CzeZS G4wyncdoh9l5pd7WB1aYEpNjp7z5+EmqQ9MfZ22u0rCLpR0CRJnQ4E2njGV0bZGL thYrUhjbAHWW77dsElKGRGe7TOV48wiN8DzrvEv41XvYsae9QOBivfvG09SKWzkc ORBu4mL3tE7eotXYf0GbiV8dqQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:02:34 2026 by rpki-client