$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: uDTGr5av5PXZdf8CIxNfveAPyNAjm8eGP12D0K1xt7w= Subject key identifier: 5D:3C:72:A8:44:7B:3B:28:9F:54:9C:02:C8:85:FC:33:2C:34:2E:7A Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0430 Signing time: Tue 24 Mar 2026 23:57:48 +0000 Manifest this update: Tue 24 Mar 2026 23:57:47 +0000 Manifest next update: Tue 31 Mar 2026 23:57:47 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: I7YD5B+hiLUMoZpWrkAFyV2KUgOvHEHXBnNaJvtP5gs=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: CyAPIryFlMvRXQMHNUKmX5rt46dYzi5Et826Eaq5wSA=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: KTaHAZyPpMlIDuVBthhJ2WYqqSedJ7oO3+TcA6KSViM=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: 5eb6uZJpTqcHOSf05lSyEE7mRhNxK+ts+wu0orWfPFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Mar 24 23:57:47 2026 GMT Not After : Mar 31 23:57:47 2026 GMT Subject: CN=69c324fb-b944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ef:27:d8:6d:e7:be:a2:61:66:e1:22:a8:b6: e5:df:c7:9a:bb:cb:62:d9:3c:76:8b:a7:e7:71:f5: 41:89:6f:c0:9b:fc:5c:10:60:13:0c:76:6e:0d:ef: f5:d5:bb:a4:a1:d2:4f:87:d6:ce:d8:05:f4:df:ee: e8:99:e5:7f:49:7b:31:8c:42:37:4e:42:7e:01:09: 9a:04:47:5c:f5:5e:b0:d1:82:3e:35:0a:e8:7a:31: db:db:e0:1d:f9:af:af:99:16:bd:e1:28:7d:ba:b7: f3:ed:14:80:e7:15:cf:7a:4a:e7:4e:78:48:9b:53: 0f:91:3a:22:af:99:b6:90:42:e8:c1:1a:96:9b:00: f8:6f:8e:77:3e:af:66:9c:2e:b7:60:bd:32:69:42: c1:c7:5d:67:3f:9c:58:ae:bd:9e:aa:b4:2a:40:d7: 22:99:09:34:42:b7:36:3c:b4:01:1f:15:c6:f7:4c: 8a:d2:0c:37:aa:c7:05:46:ec:e2:97:d3:33:1b:c6: d9:c3:86:2c:05:d0:02:af:72:ea:d4:87:07:86:66: ad:e4:b3:eb:12:60:5a:c9:a1:37:24:52:d5:fe:52: ad:ba:ec:e4:10:4b:d5:b7:68:9e:36:31:3c:a9:19: 14:9e:19:e4:54:89:5e:1a:59:e8:45:bd:00:26:ef: a4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3C:72:A8:44:7B:3B:28:9F:54:9C:02:C8:85:FC:33:2C:34:2E:7A X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:27:1b:3a:ca:4e:02:06:90:09:db:16:21:be:57:7e:33:3d: a5:64:d5:3f:59:9b:43:a2:e8:4a:f1:9d:8a:41:e0:63:9b:82: 7f:05:ab:0f:cb:79:9a:f2:55:3f:9f:f8:b7:cb:0f:3c:b7:e6: a6:92:1c:fc:77:87:1c:21:1d:fd:e8:83:f6:86:09:0a:b8:78: 2c:dc:4a:6a:86:b8:04:78:5a:0e:9a:8a:9d:e2:aa:56:5c:09: c5:fd:5f:03:3c:98:16:e3:53:93:95:bb:1e:b6:d4:fa:7d:e9: 64:99:36:9c:1d:ab:bb:8a:f4:eb:8d:ab:eb:c1:20:93:bb:87: 38:4a:05:f7:28:78:f5:d0:31:96:e5:ec:b6:f6:8f:c8:bc:a1: ba:33:87:a5:bc:7f:ae:80:af:af:fa:01:36:ff:7b:f7:c3:2f: ca:67:eb:ea:3c:a5:06:e8:56:4d:91:38:6b:45:cf:ac:c3:71: 77:67:bf:1b:30:78:f0:04:74:7d:db:a0:8f:a6:85:66:ce:8e: 86:13:aa:34:ca:7d:6e:6c:c7:d3:97:c5:34:92:1f:c5:be:9f: e0:5c:5c:63:85:1a:95:a1:ff:dc:03:c3:2b:da:39:de:1c:44: 82:4d:ee:32:c9:f9:2c:4b:1a:22:2c:2e:85:5c:bd:d6:89:1c: 3e:78:59:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjYwMzI0MjM1NzQ3WhcNMjYwMzMxMjM1NzQ3WjAYMRYwFAYD VQQDEw02OWMzMjRmYi1iOTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+8n2G3nvqJhZuEiqLbl38eau8ti2Tx2i6fncfVBiW/Am/xcEGATDHZuDe/1 1bukodJPh9bO2AX03+7omeV/SXsxjEI3TkJ+AQmaBEdc9V6w0YI+NQroejHb2+Ad +a+vmRa94Sh9urfz7RSA5xXPekrnTnhIm1MPkToir5m2kELowRqWmwD4b453Pq9m nC63YL0yaULBx11nP5xYrr2eqrQqQNcimQk0Qrc2PLQBHxXG90yK0gw3qscFRuzi l9MzG8bZw4YsBdACr3Lq1IcHhmat5LPrEmBayaE3JFLV/lKtuuzkEEvVt2ieNjE8 qRkUnhnkVIleGlnoRb0AJu+kSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF08cqhE ezson1ScAsiF/DMsNC56MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmicbOspOAgaQCdsWIb5XfjM9pWTVP1mbQ6LoSvGdikHgY5uCfwWrD8t5mvJV P5/4t8sPPLfmppIc/HeHHCEd/eiD9oYJCrh4LNxKaoa4BHhaDpqKneKqVlwJxf1f AzyYFuNTk5W7HrbU+n3pZJk2nB2ru4r0642r68Egk7uHOEoF9yh49dAxluXstvaP yLyhujOHpbx/roCvr/oBNv9798Mvymfr6jylBuhWTZE4a0XPrMNxd2e/GzB48AR0 fdugj6aFZs6OhhOqNMp9bmzH05fFNJIfxb6f4FxcY4UalaH/3APDK9o53hxEgk3u Msn5LEsaIiwuhVy91okcPnhZlQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:16 2026 by rpki-client