$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: J6sePbifYTS5YpKejwpRE7k+uCzZgPfmgoQb6YcDNLs= Subject key identifier: BB:F0:77:DD:08:1E:A9:A6:9A:3D:1F:24:8E:6E:73:D8:35:A6:C7:65 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 035D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 033F Signing time: Wed 25 Mar 2026 00:46:12 +0000 Manifest this update: Wed 25 Mar 2026 00:46:12 +0000 Manifest next update: Wed 01 Apr 2026 00:46:12 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: nSFCO1QRmLNSVBcPwNXuxjscOByPGEEAS+cEtIjqYlQ=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: SW2MBqcXl5xSEpQph30V999FQxKYuuhpPrLOGWRxvbE=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: cowXSRNOgJ9ObQh9KilsrcwC5u2xTRXMhEv+iz/pLWU=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: UNxrnTL2FmFMqfTx/jpbHTzVSiNAq7+cipG/Kkdxbl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Mar 25 00:46:12 2026 GMT Not After : Apr 1 00:46:12 2026 GMT Subject: CN=69c33054-7a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:2c:35:a4:e2:d8:76:6b:a8:5e:29:02:92: c9:81:73:e5:53:2a:52:9d:b6:e4:f9:d5:7d:c5:7d: 1d:6d:76:b6:b2:e2:ea:c7:e6:c2:f3:d0:c7:40:d4: ee:ad:f3:4e:64:2c:45:d5:5e:e9:f8:63:be:65:d9: 35:c5:87:48:de:20:c9:7e:72:94:a7:77:ff:35:4e: b7:7e:5b:f2:32:9b:25:c8:e7:28:a4:bc:f0:8e:2e: 35:2d:34:69:5f:ec:c7:61:bf:ce:a9:6b:52:c2:61: 8c:00:11:88:24:f4:e9:8f:33:bd:34:a7:31:c2:d2: e4:81:cc:2c:33:9d:e3:1e:14:93:3b:1e:ed:8e:8a: 97:68:58:33:e5:dd:72:c4:7a:f0:40:b4:b2:bf:27: 86:cb:42:bc:7e:38:ad:bd:da:a1:5e:64:be:35:ea: 9d:9f:cb:c0:4d:7e:34:a1:ff:8b:01:ba:f0:be:dc: 64:90:d3:05:1b:39:0d:57:0d:3a:35:1a:d0:0e:5e: 49:c5:8a:18:20:0d:4b:32:0f:09:70:ce:9a:91:0a: df:cc:3c:ec:9b:b2:3f:76:67:31:d6:31:a2:93:76: e4:45:9e:14:27:64:64:31:e2:a5:2c:13:ed:4f:c1: 33:e5:74:6c:ee:3c:57:ae:9e:42:38:19:99:ae:e5: 0c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F0:77:DD:08:1E:A9:A6:9A:3D:1F:24:8E:6E:73:D8:35:A6:C7:65 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:11:4e:35:ea:87:94:29:3e:ef:1e:8c:99:f8:ff:ce:93:89: bf:d3:6b:8d:68:05:ce:14:d3:a8:b6:a3:10:ef:bf:02:67:15: 0f:6c:66:8d:7b:18:cc:b6:3a:24:da:b6:79:b2:31:9e:ad:59: bc:6a:35:d3:de:da:8f:ef:a8:65:0d:e7:06:20:82:48:58:e9: 34:de:54:8e:6c:30:64:74:3e:e0:09:99:6b:b2:3a:45:3e:6a: 49:d5:97:4c:01:bf:75:0f:e3:06:06:98:4e:db:4c:10:c3:32: 67:ba:d3:70:c7:6c:86:08:81:0e:db:23:9b:65:19:4e:93:ee: 46:b7:12:16:85:1c:89:2c:f3:a7:13:62:24:03:05:63:04:e6: 1c:30:2b:19:6a:b6:71:e9:f0:12:1c:24:fe:bf:98:65:a8:fc: 99:f0:de:82:86:c5:d1:4b:cc:02:7f:2f:bd:b4:cc:1b:b8:ce: d8:c7:2f:6a:27:5f:55:b9:c1:c4:f7:cb:b6:a0:f2:78:84:d2: 93:c9:f9:2e:e0:a6:d2:ee:ae:55:85:44:86:61:1e:9b:c7:7a: e1:95:b9:d4:64:2b:29:d6:07:fd:79:5c:ed:b9:40:6a:cc:9f: a3:4d:83:0c:d0:5a:da:5f:c6:4b:95:2b:16:e0:85:cd:3f:35: 04:ed:b4:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjYwMzI1MDA0NjEyWhcNMjYwNDAxMDA0NjEyWjAYMRYwFAYD VQQDEw02OWMzMzA1NC03YTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gksNaTi2HZrqF4pApLJgXPlUypSnbbk+dV9xX0dbXa2suLqx+bC89DHQNTu rfNOZCxF1V7p+GO+Zdk1xYdI3iDJfnKUp3f/NU63flvyMpslyOcopLzwji41LTRp X+zHYb/OqWtSwmGMABGIJPTpjzO9NKcxwtLkgcwsM53jHhSTOx7tjoqXaFgz5d1y xHrwQLSyvyeGy0K8fjitvdqhXmS+Neqdn8vATX40of+LAbrwvtxkkNMFGzkNVw06 NRrQDl5JxYoYIA1LMg8JcM6akQrfzDzsm7I/dmcx1jGik3bkRZ4UJ2RkMeKlLBPt T8Ez5XRs7jxXrp5COBmZruUMvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLvwd90I Hqmmmj0fJI5uc9g1psdlMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXBFONeqHlCk+7x6Mmfj/zpOJv9NrjWgFzhTTqLajEO+/AmcVD2xmjXsYzLY6 JNq2ebIxnq1ZvGo1097aj++oZQ3nBiCCSFjpNN5UjmwwZHQ+4AmZa7I6RT5qSdWX TAG/dQ/jBgaYTttMEMMyZ7rTcMdshgiBDtsjm2UZTpPuRrcSFoUciSzzpxNiJAMF YwTmHDArGWq2cenwEhwk/r+YZaj8mfDegobF0UvMAn8vvbTMG7jO2McvaidfVbnB xPfLtqDyeITSk8n5LuCm0u6uVYVEhmEem8d64ZW51GQrKdYH/Xlc7blAasyfo02D DNBa2l/GS5UrFuCFzT81BO20ww== -----END CERTIFICATE-----Generated at Thu Mar 26 12:55:44 2026 by rpki-client