$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: q9UejFHBab/36Q8ti7K9FF3RGQwI3vh5ljxsdQSRiG8= Subject key identifier: BA:53:AB:A6:AC:52:98:6F:9D:B7:4B:75:60:36:4F:03:82:88:81:84 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0BB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0BAA Signing time: Tue 24 Mar 2026 18:48:22 +0000 Manifest this update: Tue 24 Mar 2026 18:48:22 +0000 Manifest next update: Tue 31 Mar 2026 18:48:22 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: zUjTQH/3MUJTo9Kh/wn+3Hu0BVzcQ0Es9q6M8dVwCFE=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: zLtKv7KdakETMk2s3XQHHR2CRFWRdDk6mJ+jm4StCoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Mar 24 18:48:22 2026 GMT Not After : Mar 31 18:48:22 2026 GMT Subject: CN=69c2dc76-b950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:91:eb:bf:15:e7:6a:7e:b5:58:16:a8:ce: 8b:d4:90:2b:40:88:c4:94:b6:f0:6e:11:60:3f:ca: d9:30:42:78:14:6a:ec:52:ab:46:e5:0e:27:ca:0e: e9:d8:ea:07:26:e1:f2:31:98:27:1c:a9:12:67:6f: 9e:5e:59:1f:25:2f:f2:89:75:17:5b:45:ff:f1:9f: 29:7a:58:a0:e0:df:ba:68:da:0c:af:f2:29:73:87: 45:b8:7b:30:e2:3c:70:9c:34:3d:2c:a2:99:93:45: a9:42:93:0b:6a:99:b0:dd:75:5f:f0:d8:f3:ed:e9: 0c:f3:0d:89:69:c7:d6:5e:f9:c9:00:38:ff:ba:de: 27:fe:9b:fb:6d:db:c6:9d:41:a2:cb:e8:8c:20:23: 52:c4:05:fb:f5:88:40:99:60:ac:cc:da:4c:d6:e3: 2a:09:9b:7f:64:08:ec:aa:37:b7:63:09:3a:e1:7f: a9:d3:05:7b:53:f2:40:c5:6b:e8:04:fb:66:5b:19: d2:91:22:f2:17:d9:0d:08:6d:36:4f:92:d3:ce:bb: 93:b8:bb:22:be:42:17:cf:7f:45:f4:f1:69:94:d0: da:38:6e:27:be:64:d0:08:78:7f:9c:27:7e:06:8f: 42:f1:5f:8e:19:f3:11:b8:cf:a2:64:bb:b1:bb:0c: a1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:53:AB:A6:AC:52:98:6F:9D:B7:4B:75:60:36:4F:03:82:88:81:84 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9d:82:7d:1b:57:ae:86:2c:28:e3:23:2c:94:1f:a4:72:9b: ca:38:2c:cb:b4:13:b9:1a:c1:39:f8:06:30:42:f7:d3:88:6b: 8c:3f:97:b4:ca:42:b5:47:ab:eb:3a:2f:8f:13:1c:60:f2:82: 7f:2a:e3:c7:e4:98:bb:39:8f:33:59:5c:90:b2:69:e2:0d:fd: 35:7e:b5:c0:aa:aa:5f:ab:c8:67:36:62:ea:ff:b9:c7:1e:09: 3d:c4:5f:31:d2:43:24:b9:8f:b8:15:86:5e:90:89:a6:08:00: 92:4a:37:2f:d9:43:3b:ce:1c:90:5f:39:77:a1:4b:7d:f9:9c: 6a:23:23:80:f2:8f:be:49:30:a7:56:4c:f1:88:ec:9c:99:e0: 7f:e0:2a:76:ae:9e:8c:49:a4:87:dd:fb:65:24:9b:b4:47:31: 7c:f8:7d:c3:30:ff:9c:b4:ec:c0:55:57:d9:97:3e:67:73:5d: c6:22:6d:b8:38:41:43:40:22:1e:97:27:98:96:28:de:23:03: 2c:04:5d:9b:94:e6:14:c4:cf:d4:fc:3c:3b:9b:e9:15:50:25: cb:24:a3:22:0c:17:04:5e:46:11:d3:68:49:af:bb:e6:06:6d: 68:59:96:ef:f3:ba:4b:0d:d1:d9:dc:75:db:1f:2a:a0:28:6e: 7c:3f:08:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjYwMzI0MTg0ODIyWhcNMjYwMzMxMTg0ODIyWjAYMRYwFAYD VQQDEw02OWMyZGM3Ni1iOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8mR678V52p+tVgWqM6L1JArQIjElLbwbhFgP8rZMEJ4FGrsUqtG5Q4nyg7p 2OoHJuHyMZgnHKkSZ2+eXlkfJS/yiXUXW0X/8Z8pelig4N+6aNoMr/Ipc4dFuHsw 4jxwnDQ9LKKZk0WpQpMLapmw3XVf8Njz7ekM8w2JacfWXvnJADj/ut4n/pv7bdvG nUGiy+iMICNSxAX79YhAmWCszNpM1uMqCZt/ZAjsqje3Ywk64X+p0wV7U/JAxWvo BPtmWxnSkSLyF9kNCG02T5LTzruTuLsivkIXz39F9PFplNDaOG4nvmTQCHh/nCd+ Bo9C8V+OGfMRuM+iZLuxuwyh2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLpTq6as UphvnbdLdWA2TwOCiIGEMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWZ2CfRtXroYsKOMjLJQfpHKbyjgsy7QTuRrBOfgGMEL304hrjD+XtMpCtUer 6zovjxMcYPKCfyrjx+SYuzmPM1lckLJp4g39NX61wKqqX6vIZzZi6v+5xx4JPcRf MdJDJLmPuBWGXpCJpggAkko3L9lDO84ckF85d6FLffmcaiMjgPKPvkkwp1ZM8Yjs nJngf+Aqdq6ejEmkh937ZSSbtEcxfPh9wzD/nLTswFVX2Zc+Z3NdxiJtuDhBQ0Ai HpcnmJYo3iMDLARdm5TmFMTP1Pw8O5vpFVAlyySjIgwXBF5GEdNoSa+75gZtaFmW 7/O6Sw3R2dx12x8qoChufD8IdA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:09:15 2026 by rpki-client