$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft File: avg9FyUOFuw4duVnrj4dq4MlHAY.mft (raw, json) Hash identifier: PuMqLnw2QUb0U0HCHw5NhaNME4gbwVQ97HePd+qagYI= Subject key identifier: D7:38:B6:90:B8:A2:C7:7E:BF:65:08:07:16:46:15:9F:79:73:F7:35 Authority key identifier: 6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 Certificate issuer: /CN=A9164B02/serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft Manifest number: D2 Signing time: Wed 25 Mar 2026 05:59:04 +0000 Manifest this update: Wed 25 Mar 2026 05:59:04 +0000 Manifest next update: Wed 01 Apr 2026 05:59:04 +0000 Files and hashes: 1: avg9FyUOFuw4duVnrj4dq4MlHAY.crl (hash: EBvieoqx9J/WcUnOa8tDS0IluXbzlzOtnUBUJ1VqTuw=) 2: DC0082F6EE1F11EF9191EE31C4F9AE02.roa (hash: RfHLlcRz+bkkiNXL85ejvAqK1QMc4Bz6mAhB2a1qIb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B02, serialNumber=6AF83D17250E16EC3876E567AE3E1DAB83251C06 Validity Not Before: Mar 25 05:59:04 2026 GMT Not After : Apr 1 05:59:04 2026 GMT Subject: CN=69c379a8-5fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f8:80:c3:50:f7:18:be:a0:50:e4:ee:04:da: 14:33:c8:c3:28:b7:3f:69:79:9a:ae:cf:e1:65:05: cf:c3:91:eb:10:1c:f9:46:25:de:d6:de:57:51:a8: dc:67:4b:ee:84:78:f6:f3:a2:94:94:6f:c3:e6:8d: 47:a3:24:6b:3c:45:03:2f:1c:a8:79:56:94:65:88: be:5c:e0:ca:0a:27:81:1f:27:5c:5f:01:77:8a:1c: 87:18:e8:24:5e:df:c4:eb:8a:aa:1e:a4:70:2a:6b: eb:13:e0:2f:89:6f:c7:29:5a:ef:cf:96:40:1e:90: 88:5a:ab:48:e2:01:d4:51:a7:3f:a7:9c:6e:74:74: 87:e0:9c:1d:d5:7a:9d:91:c0:80:04:69:2d:e0:0b: 19:35:89:11:1d:2e:b8:f4:68:dc:f4:87:43:2e:09: e5:96:4f:ba:3f:b4:8e:bd:93:0d:08:d4:e7:f0:ab: 45:2f:17:1d:8b:c2:b2:a5:c5:f0:64:34:8f:c2:86: 15:70:9f:b6:d5:e9:76:70:05:1b:26:6b:14:ef:3a: c9:77:b1:bc:9c:69:2d:96:96:a7:8b:1b:60:53:ca: 15:98:a9:7f:cb:ec:1c:f9:9b:57:5f:46:8c:c7:d4: 8a:25:45:ea:ab:e0:f2:ab:8a:bf:3c:47:7e:f8:9a: 04:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:38:B6:90:B8:A2:C7:7E:BF:65:08:07:16:46:15:9F:79:73:F7:35 X509v3 Authority Key Identifier: keyid:6A:F8:3D:17:25:0E:16:EC:38:76:E5:67:AE:3E:1D:AB:83:25:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/avg9FyUOFuw4duVnrj4dq4MlHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B02/99B3AD88EE1F11EFAD2F4B31C4F9AE02/avg9FyUOFuw4duVnrj4dq4MlHAY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:e4:03:fa:4c:6b:0e:f2:06:9a:6e:fa:2b:e2:89:d1:60:c0: a1:9b:df:d7:d9:2c:96:69:0f:8b:63:ff:87:61:60:57:09:dd: 0c:3d:db:8c:bd:c3:6f:db:08:c1:27:4b:e0:25:3c:1e:18:63: 8b:d8:d1:0f:86:aa:bc:a8:b0:9a:0d:83:30:66:45:6b:f6:41: fb:79:35:ea:9e:5d:3a:b6:c8:1f:76:db:ff:17:f4:aa:70:fe: 72:67:39:fd:4a:1f:31:1a:09:8f:b8:dd:25:b2:8e:82:4f:1f: a1:a8:ae:60:93:b8:2c:da:ae:fe:21:7a:b2:f4:a3:84:99:29: 64:c7:cb:d5:6b:8d:60:62:62:c1:2c:75:3e:8e:12:66:35:f1: ae:e5:65:dd:88:b7:db:61:6d:37:bd:60:18:5b:71:09:36:09: 00:17:01:5f:75:b5:ed:a7:53:94:5f:c9:1b:b3:4e:11:f8:3b: f1:88:88:bf:0e:78:1f:ba:a3:87:e5:77:fb:cc:f5:d2:5f:2d: f6:89:e3:3c:68:bc:17:3b:e5:70:fd:04:67:a6:11:c9:c6:39: c2:ec:3f:51:6a:7f:dd:15:c1:52:4a:c3:df:ee:22:28:a8:b8: c7:90:bc:f7:2e:31:ba:c5:41:77:76:33:f0:c6:9d:ab:ec:33: ae:c9:6a:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMDIxMTAvBgNVBAUTKDZBRjgzRDE3MjUwRTE2RUMzODc2RTU2N0FFM0UxREFC ODMyNTFDMDYwHhcNMjYwMzI1MDU1OTA0WhcNMjYwNDAxMDU1OTA0WjAYMRYwFAYD VQQDEw02OWMzNzlhOC01ZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/iAw1D3GL6gUOTuBNoUM8jDKLc/aXmars/hZQXPw5HrEBz5RiXe1t5XUajc Z0vuhHj286KUlG/D5o1HoyRrPEUDLxyoeVaUZYi+XODKCieBHydcXwF3ihyHGOgk Xt/E64qqHqRwKmvrE+AviW/HKVrvz5ZAHpCIWqtI4gHUUac/p5xudHSH4Jwd1Xqd kcCABGkt4AsZNYkRHS649Gjc9IdDLgnllk+6P7SOvZMNCNTn8KtFLxcdi8KypcXw ZDSPwoYVcJ+21el2cAUbJmsU7zrJd7G8nGktlpanixtgU8oVmKl/y+wc+ZtXX0aM x9SKJUXqq+Dyq4q/PEd++JoEgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNc4tpC4 osd+v2UIBxZGFZ95c/c1MB8GA1UdIwQYMBaAFGr4PRclDhbsOHblZ64+HauDJRwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwMi85OUIzQUQ4OEVF MUYxMUVGQUQyRjRCMzFDNEY5QUUwMi9hdmc5RnlVT0Z1dzRkdVZucmo0ZHE0TWxI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F2ZzlGeVVPRnV3NGR1Vm5yajRkcTRNbEhBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwMi85OUIzQUQ4OEVFMUYxMUVGQUQyRjRCMzFDNEY5QUUwMi9hdmc5RnlVT0Z1 dzRkdVZucmo0ZHE0TWxIQVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU+QD+kxrDvIGmm76K+KJ0WDAoZvf19kslmkPi2P/h2FgVwndDD3bjL3Db9sI wSdL4CU8Hhhji9jRD4aqvKiwmg2DMGZFa/ZB+3k16p5dOrbIH3bb/xf0qnD+cmc5 /UofMRoJj7jdJbKOgk8foaiuYJO4LNqu/iF6svSjhJkpZMfL1WuNYGJiwSx1Po4S ZjXxruVl3Yi322FtN71gGFtxCTYJABcBX3W17adTlF/JG7NOEfg78YiIvw54H7qj h+V3+8z10l8t9onjPGi8FzvlcP0EZ6YRycY5wuw/UWp/3RXBUkrD3+4iKKi4x5C8 9y4xusVBd3Yz8Madq+wzrslqBw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:58 2026 by rpki-client