$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: srNg8sQyu5qge9nExlEkiroutl8Llj9kxMMQABYzUGk= Subject key identifier: B2:C0:B5:32:98:28:4F:6F:D1:09:F3:3C:0F:2F:1B:1C:9B:DA:54:5C Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 0144 Signing time: Wed 25 Mar 2026 04:30:59 +0000 Manifest this update: Wed 25 Mar 2026 04:30:58 +0000 Manifest next update: Wed 01 Apr 2026 04:30:58 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: IKEa1TnHOUkjjJDCzOS/UoRdZZhcKcTQhKWK3jiDstk=) 2: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: e7uP2Q15Y7+PdXnvPFnRHiamG3196fJe6Q0lPV/VwQQ=) 3: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: nUPXQLFgYxbwvoUneYWVygADhQDRKvtWC/3dO1oUTC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Mar 25 04:30:58 2026 GMT Not After : Apr 1 04:30:58 2026 GMT Subject: CN=69c36503-965c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5b:62:38:18:7e:b9:09:95:a5:19:47:e4:64: 3a:60:07:5d:82:93:56:bb:89:72:f9:b1:27:9a:ea: b0:20:d5:4f:00:74:20:9a:2a:77:10:8a:00:78:98: c6:b2:0c:8c:0a:c9:a2:13:1d:e2:b8:e2:e7:ea:f1: cc:31:25:08:f8:d4:dd:23:69:9f:78:f4:07:d3:75: 34:75:38:b7:ac:94:61:11:19:48:4f:4e:ec:68:fa: 23:5b:e1:5a:bd:b4:c5:e4:71:2d:3e:0d:72:26:66: 42:05:9e:87:00:c7:21:2d:2f:74:88:6a:36:23:db: 72:b0:d3:4c:75:b6:0c:43:e0:24:b7:76:e0:45:29: b7:e3:92:5b:84:27:43:5d:2c:b0:b4:de:b2:68:ab: fd:ec:28:63:60:20:ce:b4:b0:52:fd:2f:c0:13:50: 46:85:3b:b9:ed:7d:8c:43:7a:c1:3e:2e:2b:0c:ef: db:95:6f:b9:ef:c4:da:d7:3f:b8:93:33:ac:46:07: b6:41:bd:83:1d:41:21:9a:75:c0:23:c8:de:31:62: 8f:70:2a:be:0e:ce:5f:5f:e4:c9:d9:91:f9:ea:a7: d2:bc:24:cd:98:60:41:bd:60:59:c2:81:05:ec:db: 29:1f:a1:4f:4c:0d:05:ca:d2:25:fc:e8:51:fb:e8: 31:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C0:B5:32:98:28:4F:6F:D1:09:F3:3C:0F:2F:1B:1C:9B:DA:54:5C X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:3e:05:07:ac:0b:77:52:3a:43:fb:b8:11:05:2c:bf:29:b8: 42:d7:57:b2:8e:eb:a1:b6:e1:f6:f6:b6:e5:31:57:96:02:5f: 5e:27:c6:67:c8:bd:fe:ff:45:80:23:53:96:3f:e1:38:d4:30: 9b:48:f0:8b:5e:fc:54:f5:04:6b:f3:7b:72:ea:4b:79:18:fe: 91:87:50:d1:a6:a1:d7:f5:0a:f3:ee:c8:1c:fd:7f:53:ca:31: 99:08:47:2b:40:20:6a:0b:c4:a4:5e:c3:f8:c1:76:9e:78:ee: a0:c8:49:94:a0:be:63:74:3c:37:5d:10:f5:48:7c:be:bc:3a: b5:6c:fe:e3:d8:c1:1b:13:f8:65:3f:5d:ac:9d:5c:e4:8c:6e: 06:0b:d7:31:77:c0:3f:3e:5c:b5:c2:19:1e:10:7e:12:b3:6b: 9d:26:83:08:05:8c:ab:a5:53:a1:05:f3:49:5c:e2:b7:01:92: ac:5c:d0:a0:b2:cc:fc:4a:f0:85:72:dd:89:2d:9d:f1:e8:fd: 0e:78:a7:d1:94:a7:1a:d7:7e:04:2c:a7:81:13:33:17:37:3f: b1:cc:7d:c2:e9:04:7a:70:4b:8d:78:64:66:f5:30:b9:aa:2f: 8a:53:ac:3a:de:1a:4b:ab:6f:71:1b:28:60:35:37:eb:78:01: ea:4a:88:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjYwMzI1MDQzMDU4WhcNMjYwNDAxMDQzMDU4WjAYMRYwFAYD VQQDEw02OWMzNjUwMy05NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFtiOBh+uQmVpRlH5GQ6YAddgpNWu4ly+bEnmuqwINVPAHQgmip3EIoAeJjG sgyMCsmiEx3iuOLn6vHMMSUI+NTdI2mfePQH03U0dTi3rJRhERlIT07saPojW+Fa vbTF5HEtPg1yJmZCBZ6HAMchLS90iGo2I9tysNNMdbYMQ+Akt3bgRSm345JbhCdD XSywtN6yaKv97ChjYCDOtLBS/S/AE1BGhTu57X2MQ3rBPi4rDO/blW+578Ta1z+4 kzOsRge2Qb2DHUEhmnXAI8jeMWKPcCq+Ds5fX+TJ2ZH56qfSvCTNmGBBvWBZwoEF 7NspH6FPTA0FytIl/OhR++gx6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLAtTKY KE9v0QnzPA8vGxyb2lRcMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACT4FB6wLd1I6Q/u4EQUsvym4QtdXso7robbh9va25TFXlgJfXifGZ8i9/v9F gCNTlj/hONQwm0jwi178VPUEa/N7cupLeRj+kYdQ0aah1/UK8+7IHP1/U8oxmQhH K0AgagvEpF7D+MF2nnjuoMhJlKC+Y3Q8N10Q9Uh8vrw6tWz+49jBGxP4ZT9drJ1c 5IxuBgvXMXfAPz5ctcIZHhB+ErNrnSaDCAWMq6VToQXzSVzitwGSrFzQoLLM/Erw hXLdiS2d8ej9Dnin0ZSnGtd+BCyngRMzFzc/scx9wukEenBLjXhkZvUwuaovilOs Ot4aS6tvcRsoYDU363gB6kqIZQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:32:13 2026 by rpki-client