$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: dFSkCO10pfY/Ha81yGQ+/NIBogBIRW25uQRyBNOnUCA= Subject key identifier: BF:F4:0E:7A:7B:73:8C:F0:19:BC:B8:8F:D6:67:4B:C1:3F:D0:3A:BD Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: 0166 Signing time: Wed 25 Mar 2026 04:08:59 +0000 Manifest this update: Wed 25 Mar 2026 04:08:59 +0000 Manifest next update: Wed 01 Apr 2026 04:08:59 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: 64V6b6/ocHiRK/1q3j+bSVaFUK5xjn8q+oS35VU+Aps=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: LYriHLSpUhMr55UlNlgp7shUCvecZ8GUsEOVzeACv2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: Mar 25 04:08:59 2026 GMT Not After : Apr 1 04:08:59 2026 GMT Subject: CN=69c35fdb-46e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:e4:56:79:ae:1a:21:bf:b0:7d:4d:fb:48: 56:41:a7:75:0f:a0:9b:12:b7:1d:d5:56:5c:a7:27: ee:55:9c:47:d9:f0:a9:a3:21:58:11:76:a9:3c:b8: b4:34:62:a3:4b:14:e7:93:c3:44:30:a9:af:5f:0a: 44:e5:8a:bd:31:3c:b3:3a:81:03:17:58:8c:c1:7f: bf:6d:5f:16:4b:da:5a:36:a1:6a:ce:ce:8f:45:72: fd:bf:b1:45:bb:82:46:92:65:0f:50:a5:52:19:71: 8a:33:40:2e:d0:32:06:bc:d7:2b:d0:c4:d5:b0:ad: a6:5a:ee:6c:37:c3:9e:ca:d5:96:57:bd:2c:8a:10: 65:75:d6:a4:75:01:8f:32:68:71:03:0d:4d:49:66: 1e:46:8b:b7:bc:ab:a1:c4:f9:bb:9d:8a:3f:58:48: 6c:68:24:49:d5:5f:9e:c7:e7:6b:38:bf:2a:e2:37: 00:7e:2f:c1:25:c6:a7:5f:31:2a:c8:97:5e:69:39: 3f:91:a3:29:42:c2:e6:9c:1f:4e:a2:0e:85:80:b0: c7:23:bb:7a:5b:84:b2:fc:56:21:23:d8:83:13:21: 72:56:85:09:1a:72:60:ea:45:46:9a:fa:98:9a:cd: ab:37:f1:cc:1b:6e:22:5f:0c:7e:bb:fd:53:eb:a3: b1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F4:0E:7A:7B:73:8C:F0:19:BC:B8:8F:D6:67:4B:C1:3F:D0:3A:BD X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6c:b9:88:88:66:5b:35:93:41:a8:33:a9:2d:bb:b9:8a:bf: 26:56:16:52:c3:3e:ce:05:1a:b0:fe:c7:ef:d7:a4:5c:80:47: eb:4d:50:bd:61:6e:8a:cd:4c:54:26:ab:2c:44:a6:5b:4c:39: da:67:66:43:01:83:a3:b4:5f:4c:c3:9d:81:6a:0e:ea:fd:97: e4:c1:75:57:0a:ca:16:aa:fd:ce:ba:06:b3:63:a5:50:7e:fc: 32:b1:3b:7d:d4:d1:b4:c1:28:ad:63:ed:11:11:a6:36:f2:fb: 5d:93:b5:e8:e5:de:fa:01:64:d3:9e:a2:3b:af:7b:b1:0a:45: 08:2a:93:ff:18:e1:b5:1f:3b:e0:bf:a0:e7:74:74:49:81:19: 74:10:1e:8d:21:15:b0:8f:74:da:c3:c3:d2:0a:af:96:e0:c6: f1:1a:f0:82:be:c8:2d:19:e5:57:e5:7f:10:44:83:3e:da:ed: 95:3d:8a:6c:de:2d:a3:54:b2:1a:20:06:88:bb:b5:0a:a2:b6: 65:85:c6:9d:cc:2e:43:48:69:37:36:b1:2d:53:97:41:af:3e: a3:35:c6:cf:65:59:5b:a4:46:b6:d9:53:8a:c4:5d:f4:43:2c: 73:92:10:0b:fa:27:1d:da:d5:df:87:b7:91:33:fe:1d:02:1b: cd:9e:d1:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjYwMzI1MDQwODU5WhcNMjYwNDAxMDQwODU5WjAYMRYwFAYD VQQDEw02OWMzNWZkYi00NmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGHkVnmuGiG/sH1N+0hWQad1D6CbErcd1VZcpyfuVZxH2fCpoyFYEXapPLi0 NGKjSxTnk8NEMKmvXwpE5Yq9MTyzOoEDF1iMwX+/bV8WS9paNqFqzs6PRXL9v7FF u4JGkmUPUKVSGXGKM0Au0DIGvNcr0MTVsK2mWu5sN8OeytWWV70sihBlddakdQGP MmhxAw1NSWYeRou3vKuhxPm7nYo/WEhsaCRJ1V+ex+drOL8q4jcAfi/BJcanXzEq yJdeaTk/kaMpQsLmnB9Oog6FgLDHI7t6W4Sy/FYhI9iDEyFyVoUJGnJg6kVGmvqY ms2rN/HMG24iXwx+u/1T66OxsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL/0Dnp7 c4zwGby4j9ZnS8E/0Dq9MB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjWy5iIhmWzWTQagzqS27uYq/JlYWUsM+zgUasP7H79ekXIBH601QvWFuis1M VCarLESmW0w52mdmQwGDo7RfTMOdgWoO6v2X5MF1VwrKFqr9zroGs2OlUH78MrE7 fdTRtMEorWPtERGmNvL7XZO16OXe+gFk056iO697sQpFCCqT/xjhtR874L+g53R0 SYEZdBAejSEVsI902sPD0gqvluDG8Rrwgr7ILRnlV+V/EESDPtrtlT2KbN4to1Sy GiAGiLu1CqK2ZYXGncwuQ0hpNzaxLVOXQa8+ozXGz2VZW6RGttlTisRd9EMsc5IQ C/onHdrV34e3kTP+HQIbzZ7RLg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:50:48 2026 by rpki-client