$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft File: AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft (raw, json) Hash identifier: 9jT2uJ3qD9UE0+detbp0oO2RJcJD4SbGRAyG0uxgto0= Subject key identifier: 8C:49:5F:E3:47:B0:E0:96:55:E8:CB:13:72:56:08:C2:B5:76:AD:ED Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft Manifest number: 01C8 Signing time: Wed 25 Mar 2026 03:06:55 +0000 Manifest this update: Wed 25 Mar 2026 03:06:55 +0000 Manifest next update: Wed 01 Apr 2026 03:06:55 +0000 Files and hashes: 1: AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl (hash: tGFQp9emjkPli8lYxXRm6IVOQ6nd87b2aY/YwDC9VpM=) 2: 5694D344791B11EEA64C016BC4F9AE02.roa (hash: oIvNDV0kKg8+q3urTzdMBjxhKk7FfiR/yZ0iZHzMy9A=) 3: D39B04847C4B11EEB4EA3632C4F9AE02.roa (hash: yzSO4tM9nUI6xnt7Kh6rwJxk9dfi0T3Au+GC85D5PJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678, serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: Mar 25 03:06:55 2026 GMT Not After : Apr 1 03:06:55 2026 GMT Subject: CN=69c3514f-8666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:14:e8:3e:23:6f:60:32:62:a2:ed:0d:ed:3b: 38:f7:b4:ca:e2:2e:10:96:3e:b0:4c:89:54:51:25: b1:62:a8:27:60:73:dd:9a:03:71:f1:34:4f:94:3a: 1e:f0:10:13:3b:cc:f5:b6:b3:f3:76:2a:d8:89:f6: 56:8a:61:1f:11:d1:23:28:44:3c:49:fd:5c:ac:fb: 6d:e9:74:5d:28:9d:5f:91:74:c0:2a:ef:bc:25:5c: 65:3e:46:aa:a5:8e:00:b4:28:bc:ab:e4:d1:0d:ff: 4f:4d:39:ca:d1:76:b3:a3:cc:36:b2:ca:66:de:dd: 8c:8c:61:e4:48:ca:9a:5c:61:2b:b7:41:0a:6b:23: bf:a9:7d:c5:7e:32:27:c4:9a:cf:fe:77:3f:4f:28: 11:fd:47:93:83:9d:98:71:3d:24:20:7a:f4:d1:83: 90:55:52:53:cd:5c:27:3b:79:df:f7:db:45:8b:68: 57:9a:c0:57:88:cb:57:f5:b6:57:78:c4:33:e5:39: 81:dc:45:87:d3:92:c9:90:3c:ed:8b:a6:a9:aa:49: 23:52:14:b7:77:36:28:53:df:c6:0b:97:11:19:32: 39:5e:c7:32:9a:d6:0e:87:06:73:b1:cf:85:68:b2: 81:93:98:e4:82:40:92:f0:36:82:e7:f7:d2:65:de: e0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:49:5F:E3:47:B0:E0:96:55:E8:CB:13:72:56:08:C2:B5:76:AD:ED X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d7:a7:1e:5d:48:a3:d5:49:40:17:a1:f4:97:10:00:d9:d7: f0:ab:3d:01:40:27:4b:35:d1:53:00:66:e5:30:65:3c:49:a4: fc:bf:b4:ae:e5:c5:fc:ac:7d:67:32:60:5f:d2:ec:a0:e5:66: 7f:b8:69:68:03:69:df:ba:9d:eb:b8:b3:90:00:6a:28:ef:94: 9a:2e:65:80:e7:7e:9c:e2:69:0d:69:31:ad:e2:6b:d6:29:0b: a4:8e:72:37:94:5d:66:d0:94:f2:1e:69:a4:b7:1e:cd:8a:3b: d3:5b:a1:8b:ae:40:3e:a6:1b:f8:9a:65:43:23:79:e3:4c:39: d6:a3:ba:38:07:c7:d6:94:a1:55:be:fb:c2:1e:d5:83:21:fb: 21:f2:61:41:e0:cd:28:6a:ed:7f:dd:31:c2:aa:ee:a9:f3:84: 28:76:83:bf:7e:90:c9:24:f4:9c:36:1b:e6:fb:e0:33:41:3b: a2:a7:9d:13:ce:c2:3c:58:e8:ed:16:25:e1:fa:6b:5b:cf:93: f8:7b:7c:9a:cf:c6:50:28:50:dd:48:49:a2:c1:07:62:92:f2: c2:ad:1a:39:d8:6f:a8:7f:82:d0:05:18:01:0d:b9:19:58:85: 5e:46:4b:d2:c9:e0:7f:ca:31:a5:3a:19:68:b7:d2:79:2d:3e: 06:36:d2:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU2NzgxMTAvBgNVBAUTKDAwOEY1RDA2RjBGRUZDNDBGRDgzMEIyNkNENzY2MEEz ODMxMTBDOTEwHhcNMjYwMzI1MDMwNjU1WhcNMjYwNDAxMDMwNjU1WjAYMRYwFAYD VQQDEw02OWMzNTE0Zi04NjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRToPiNvYDJiou0N7Ts497TK4i4Qlj6wTIlUUSWxYqgnYHPdmgNx8TRPlDoe 8BATO8z1trPzdirYifZWimEfEdEjKEQ8Sf1crPtt6XRdKJ1fkXTAKu+8JVxlPkaq pY4AtCi8q+TRDf9PTTnK0Xazo8w2sspm3t2MjGHkSMqaXGErt0EKayO/qX3FfjIn xJrP/nc/TygR/UeTg52YcT0kIHr00YOQVVJTzVwnO3nf99tFi2hXmsBXiMtX9bZX eMQz5TmB3EWH05LJkDzti6apqkkjUhS3dzYoU9/GC5cRGTI5XscymtYOhwZzsc+F aLKBk5jkgkCS8DaC5/fSZd7giQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIxJX+NH sOCWVejLE3JWCMK1dq3tMB8GA1UdIwQYMBaAFACPXQbw/vxA/YMLJs12YKODEQyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTY3OC83QUVFRDg2Mjc5 MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9FRDlnd3NtelhaZ280TVJE SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTY3OC83QUVFRDg2Mjc5MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9F RDlnd3NtelhaZ280TVJESkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp9enHl1Io9VJQBeh9JcQANnX8Ks9AUAnSzXRUwBm5TBlPEmk/L+0ruXF/Kx9 ZzJgX9LsoOVmf7hpaANp37qd67izkABqKO+Umi5lgOd+nOJpDWkxreJr1ikLpI5y N5RdZtCU8h5ppLcezYo701uhi65APqYb+JplQyN540w51qO6OAfH1pShVb77wh7V gyH7IfJhQeDNKGrtf90xwqruqfOEKHaDv36QyST0nDYb5vvgM0E7oqedE87CPFjo 7RYl4fprW8+T+Ht8ms/GUChQ3UhJosEHYpLywq0aOdhvqH+C0AUYAQ25GViFXkZL 0sngf8oxpToZaLfSeS0+BjbSNA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:37:03 2026 by rpki-client