$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft File: CfwHfzPjrWe_FHdVFno61OrLHnw.mft (raw, json) Hash identifier: JWwCV6AOpE+U03TSlG5FZnLC21IVv4C027+0O8YD/s0= Subject key identifier: 84:05:5B:17:49:19:08:10:7C:13:34:FD:8F:93:01:E3:19:AA:0E:89 Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Certificate serial: 070C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft Manifest number: 067C Signing time: Tue 24 Mar 2026 22:36:28 +0000 Manifest this update: Tue 24 Mar 2026 22:36:28 +0000 Manifest next update: Tue 31 Mar 2026 22:36:28 +0000 Files and hashes: 1: CfwHfzPjrWe_FHdVFno61OrLHnw.crl (hash: rlJxPpqXaZt0VIyf2M/lIH5WnnH28Xu/cWvtZU7uyoM=) 2: 80AD3A9AE53E11EB9E429C44C4F9AE02.roa (hash: X+spXolOWWwuHY9Z83c9dy9Vthj0rRVggTg5yRTJYB0=) 3: AEEA30A444C911F0B1847067C4F9AE02.roa (hash: 6FCwJQ7Hqu9T8wGvhRafVaBteW1BYD7lgrGRZ0Zmux0=) 4: 8023B518E53E11EB9E429C44C4F9AE02.roa (hash: PmZWdw64LAwMI3NXzeEum/iMQ1lGbZaRPEZVFE8w0Kc=) 5: 81618D88E53E11EB9E429C44C4F9AE02.roa (hash: 5OgF+X2LoxN0P+i647U0hTdD4GO+IWC1F/YvG+N71mY=) 6: ACDC465C7AEF11EFA321CE80C4F9AE02.roa (hash: 0dQke78mRtg8wIYZ3ojGRxbDU4jUz/0rwyFcMRKo6hI=) 7: 1432240216D511F194D24B17313D8C67.roa (hash: SgtPAAG4VJWvzbWowcaouFw5lm5bl6SduOlTyr3VLv0=) 8: 639394F4B05611EF95B2931BC4F9AE02.roa (hash: QT8qZMQxmuuDteCOnOSOp3NwZ0+//1IQE1zDb3G1+qs=) 9: 30904BA8329711EE8EC1E923C4F9AE02.roa (hash: 0d8bbf6HjJPorzi+T4Hyc8LZ4syqGpJzbgTNxkLreXg=) 10: 7F2A4208E53E11EB9E429C44C4F9AE02.roa (hash: Xo9SbW0hHxgSfQuZO4oC/bgXuLNqUVMBniXjZSkvX0c=) 11: 167A6086BBD211EEABCC0D23C4F9AE02.roa (hash: 39GHxxx7Fn5zKnCQd2JJT99uUGGd/APAhehkZtN8lrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1804 (0x70c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161613, serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Validity Not Before: Mar 24 22:36:28 2026 GMT Not After : Mar 31 22:36:28 2026 GMT Subject: CN=69c311ec-ee89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:2f:f7:c2:08:8e:35:19:6e:1d:c3:d8:64: 89:8c:ba:ba:74:ce:cd:f0:86:e4:50:73:02:10:a2: b4:38:9f:c2:d5:65:ee:8e:7c:51:68:3d:b0:8b:f3: 84:6d:b0:27:b5:ed:f4:7c:a7:3f:c5:17:bf:93:23: c2:75:92:4b:f3:69:0e:42:df:24:0a:8b:30:29:18: 52:03:f3:98:b3:b5:0b:8b:60:6e:c5:10:9c:55:eb: 87:33:c4:03:cf:76:0b:bd:f9:14:b2:04:ca:bb:64: 1c:68:76:19:46:0c:a8:fc:00:52:8e:0e:fa:fe:92: 65:4e:c0:02:df:a4:98:97:e0:a9:e4:53:e2:f8:48: 12:01:2b:82:a0:10:78:70:c3:d4:39:69:ce:a0:a1: bb:7e:66:9a:51:38:f1:82:b0:e1:d2:79:06:b6:8e: 46:5e:9c:b5:81:30:e6:62:c8:1f:6c:0f:07:75:21: f6:35:9a:16:89:f2:22:da:a7:20:15:45:96:e4:e2: 32:36:ec:9c:06:05:01:a2:6d:0f:10:d3:d3:2e:20: cb:6b:6d:35:a8:aa:74:56:30:65:64:da:75:4a:13: 62:ff:41:0b:56:6f:97:da:83:a4:d7:f8:45:c7:f2: bc:dc:84:44:73:2f:09:af:4e:2f:39:8b:d8:83:07: 95:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:05:5B:17:49:19:08:10:7C:13:34:FD:8F:93:01:E3:19:AA:0E:89 X509v3 Authority Key Identifier: keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:f1:1d:c5:ce:96:45:08:7e:48:23:af:bb:64:d9:45:61:d5: 22:e8:17:68:5a:b1:14:e3:79:4d:81:d4:e5:d6:10:61:e0:e4: 90:17:b6:5a:28:2b:96:fe:a9:63:14:9e:80:eb:15:66:df:0e: c4:40:30:14:a5:6c:5d:28:fa:eb:1f:fe:40:e3:09:a0:0b:b2: 69:23:b7:e5:8a:70:ac:53:c5:44:c2:0c:4b:94:2a:c5:b5:db: e0:9e:60:5f:33:59:0a:16:0a:9f:1b:b2:cd:84:85:26:ff:a6: f3:de:34:d4:2a:37:8f:69:d1:02:e8:fc:82:8d:4f:be:59:7c: 0e:13:6a:1a:be:fe:ac:20:ab:67:55:b2:69:45:95:7d:21:3d: 4f:23:83:b4:55:b7:0b:aa:2d:b0:13:1c:f4:aa:53:30:64:02: fb:79:68:bb:29:d7:fb:1c:06:65:a6:b3:c5:41:98:39:d0:b4: a0:6e:49:83:27:24:2b:41:3a:6f:64:b9:e5:d9:5a:28:12:99: 24:2d:36:58:08:af:a2:08:35:c2:a1:e7:ba:74:b9:77:87:6d: 19:e0:dd:2d:97:70:00:d2:59:0d:c7:88:28:f8:4b:f6:a1:3b: 0f:b6:8c:65:2b:e8:72:57:bc:ec:82:4e:b1:1f:15:7b:45:d1: 87:cb:f4:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2MTMxMTAvBgNVBAUTKDA5RkMwNzdGMzNFM0FENjdCRjE0Nzc1NTE2N0EzQUQ0 RUFDQjFFN0MwHhcNMjYwMzI0MjIzNjI4WhcNMjYwMzMxMjIzNjI4WjAYMRYwFAYD VQQDEw02OWMzMTFlYy1lZTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9Iv98IIjjUZbh3D2GSJjLq6dM7N8IbkUHMCEKK0OJ/C1WXujnxRaD2wi/OE bbAnte30fKc/xRe/kyPCdZJL82kOQt8kCoswKRhSA/OYs7ULi2BuxRCcVeuHM8QD z3YLvfkUsgTKu2QcaHYZRgyo/ABSjg76/pJlTsAC36SYl+Cp5FPi+EgSASuCoBB4 cMPUOWnOoKG7fmaaUTjxgrDh0nkGto5GXpy1gTDmYsgfbA8HdSH2NZoWifIi2qcg FUWW5OIyNuycBgUBom0PENPTLiDLa201qKp0VjBlZNp1ShNi/0ELVm+X2oOk1/hF x/K83IREcy8Jr04vOYvYgweVMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIQFWxdJ GQgQfBM0/Y+TAeMZqg6JMB8GA1UdIwQYMBaAFAn8B38z461nvxR3VRZ6OtTqyx58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTYxMy8zMDk5MjY2OEU1 MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJXZV9GSGRWRm5vNjFPckxI bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nmd0hmelBqcldlX0ZIZFZGbm82MU9yTEhudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTYxMy8zMDk5MjY2OEU1MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJX ZV9GSGRWRm5vNjFPckxIbncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ/Edxc6WRQh+SCOvu2TZRWHVIugXaFqxFON5TYHU5dYQYeDkkBe2Wigrlv6p YxSegOsVZt8OxEAwFKVsXSj66x/+QOMJoAuyaSO35YpwrFPFRMIMS5QqxbXb4J5g XzNZChYKnxuyzYSFJv+m89401Co3j2nRAuj8go1Pvll8DhNqGr7+rCCrZ1WyaUWV fSE9TyODtFW3C6otsBMc9KpTMGQC+3louynX+xwGZaazxUGYOdC0oG5JgyckK0E6 b2S55dlaKBKZJC02WAivogg1wqHnunS5d4dtGeDdLZdwANJZDceIKPhL9qE7D7aM ZSvocle87IJOsR8Ve0XRh8v0+A== -----END CERTIFICATE-----Generated at Thu Mar 26 12:45:13 2026 by rpki-client