$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: mD7FRczwXzJCs/kxs1uBaUDFeht9MkteVM+ZAiOJN5c= Subject key identifier: C5:3A:BF:4D:55:8F:12:AA:67:40:9A:48:BE:3C:21:08:FD:67:2B:D9 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0E92 Signing time: Tue 24 Mar 2026 17:36:26 +0000 Manifest this update: Tue 24 Mar 2026 17:36:25 +0000 Manifest next update: Tue 31 Mar 2026 17:36:25 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: tOjd4Zv4Fb1vg6IGdTXq1FZD/j72h9hLiL6Y4QUR7ds=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: Arkrsyo5+ae+fzAV/8rJkRmaTl2oT1Ort1Y2T29kOdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3743 (0xe9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Mar 24 17:36:25 2026 GMT Not After : Mar 31 17:36:25 2026 GMT Subject: CN=69c2cb9a-b007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f1:61:c7:7c:bf:18:6a:50:32:0c:22:22:bd: eb:2f:9b:58:80:f7:70:1b:70:27:b1:21:1e:74:0f: ef:14:ca:f0:13:23:6b:e4:84:dd:5b:d6:28:5f:68: bf:bf:72:44:9c:b8:b8:4c:b5:44:7f:92:89:f9:1e: ba:eb:74:4e:ae:3d:d5:74:59:dc:c2:63:76:08:11: 90:7e:8c:5f:53:a2:5f:ed:2f:90:f1:c8:1c:e0:8f: 6d:92:1e:20:1c:29:aa:05:85:da:73:9b:02:24:fa: c4:8e:71:b5:44:e6:71:9f:06:1e:33:53:19:56:d0: f0:97:45:67:a0:99:dd:29:05:fd:30:6b:31:70:54: 35:75:c2:87:5c:67:15:56:ba:3a:d4:1c:84:d8:24: ed:85:21:20:62:0f:80:bf:0f:55:86:21:c4:cb:85: e2:b5:9f:44:17:ad:cd:d1:a7:78:be:42:64:b4:6a: 87:54:a2:9e:0c:58:bf:03:14:de:b5:94:e1:af:ac: 97:f4:7d:a8:98:72:5f:db:b5:d9:6f:bf:fc:a8:29: 56:ec:7f:0b:74:7f:7e:ac:a2:6e:f6:db:a0:33:e2: c8:4e:a3:45:69:52:80:87:0b:e0:86:d2:af:89:28: 27:63:b3:a5:0e:4b:b0:f5:7a:52:04:35:6d:ec:dc: 07:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3A:BF:4D:55:8F:12:AA:67:40:9A:48:BE:3C:21:08:FD:67:2B:D9 X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a4:c6:58:a3:c1:63:2e:8c:a0:40:6d:16:ce:81:e2:ec:e1: 8d:21:49:6c:d6:f3:ca:6b:48:93:65:ad:ca:58:fb:87:e1:fb: da:03:85:9f:ed:1d:f0:c4:4c:a0:36:a0:22:c7:46:66:b8:08: 40:2e:0b:fd:8b:67:d8:ce:4a:9c:e1:e9:6f:f5:85:3d:2c:d5: 5b:30:15:94:d5:c0:4d:d8:9f:be:7d:e9:e3:32:74:43:85:17: cc:cc:ac:64:91:f4:70:0e:fb:8b:dd:6f:af:26:c9:56:9e:25: 30:6d:f0:8f:7c:cf:76:81:c6:a7:af:c3:5a:82:c7:35:3e:6c: 33:41:12:cd:d1:54:d4:9b:76:e8:8f:6d:6c:10:23:50:f7:91: 64:5a:6a:12:d0:be:00:c0:64:a8:3d:ff:a6:a2:ff:2d:9f:08: 83:cb:1a:a9:5c:33:84:0e:61:ea:d0:b6:18:fc:cd:97:28:1a: b7:db:c4:2d:16:47:a3:ea:20:d5:01:a5:d1:8a:fb:23:4c:47: 6c:08:14:8e:92:ed:a5:93:de:c8:9f:4c:23:92:17:03:a2:e4: fe:b7:30:f8:ed:fa:fe:6f:e8:01:eb:89:73:47:5b:95:9c:68: 23:82:59:86:a1:9a:7e:26:0c:9a:29:0a:2b:a0:a7:02:f6:d8: 6e:79:b8:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjYwMzI0MTczNjI1WhcNMjYwMzMxMTczNjI1WjAYMRYwFAYD VQQDEw02OWMyY2I5YS1iMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/Fhx3y/GGpQMgwiIr3rL5tYgPdwG3AnsSEedA/vFMrwEyNr5ITdW9YoX2i/ v3JEnLi4TLVEf5KJ+R6663ROrj3VdFncwmN2CBGQfoxfU6Jf7S+Q8cgc4I9tkh4g HCmqBYXac5sCJPrEjnG1ROZxnwYeM1MZVtDwl0VnoJndKQX9MGsxcFQ1dcKHXGcV Vro61ByE2CTthSEgYg+Avw9VhiHEy4XitZ9EF63N0ad4vkJktGqHVKKeDFi/AxTe tZThr6yX9H2omHJf27XZb7/8qClW7H8LdH9+rKJu9tugM+LITqNFaVKAhwvghtKv iSgnY7OlDkuw9XpSBDVt7NwHZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMU6v01V jxKqZ0CaSL48IQj9ZyvZMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMaTGWKPBYy6MoEBtFs6B4uzhjSFJbNbzymtIk2Wtylj7h+H72gOFn+0d8MRM oDagIsdGZrgIQC4L/Ytn2M5KnOHpb/WFPSzVWzAVlNXATdifvn3p4zJ0Q4UXzMys ZJH0cA77i91vrybJVp4lMG3wj3zPdoHGp6/DWoLHNT5sM0ESzdFU1Jt26I9tbBAj UPeRZFpqEtC+AMBkqD3/pqL/LZ8Ig8saqVwzhA5h6tC2GPzNlygat9vELRZHo+og 1QGl0Yr7I0xHbAgUjpLtpZPeyJ9MI5IXA6Lk/rcw+O36/m/oAeuJc0dblZxoI4JZ hqGafiYMmikKK6CnAvbYbnm4RQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:43:31 2026 by rpki-client