$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: HEr+PFrShYRR/hg9/wnZ62A4WsSStRCPxwWhyAjVDHA= Subject key identifier: 5A:D3:C4:FE:1C:7F:43:17:FF:05:A0:A1:5F:69:00:FD:05:B7:CB:3A Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0870 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 0853 Signing time: Tue 24 Mar 2026 20:40:34 +0000 Manifest this update: Tue 24 Mar 2026 20:40:34 +0000 Manifest next update: Tue 31 Mar 2026 20:40:34 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: uKyBLUh3ZTdVfHyV/vRQ+pPmH25S/Wjz3qlIRHSVmHY=) 2: D5775FF4E54F11F0875E48B9366F56BC.roa (hash: dBaY0JbbVzl8W6CAtYQ8b8Su4AnGzP3sLeHSsKnDsdA=) 3: 0ED6FD58E4AC11F09CFF02084D6F56BC.roa (hash: c00S8PMH6seb894IcBTA4+jGD8At/7O3wWr5RItqF8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2160 (0x870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Mar 24 20:40:34 2026 GMT Not After : Mar 31 20:40:34 2026 GMT Subject: CN=69c2f6c2-d7a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:c8:2d:d0:fd:e9:83:3f:84:cb:52:b9:4a:0f: 31:bb:c1:05:eb:c4:4a:90:a3:57:bf:0e:85:a1:15: c5:c1:ec:99:15:39:c9:3d:45:47:cc:3d:fe:ca:75: c5:bf:85:67:14:49:e6:4a:ea:4d:db:ab:1d:bc:24: 0c:fc:88:ae:94:99:9d:82:44:69:df:98:03:37:0a: 4a:bc:8f:14:f5:ba:e7:63:21:24:cf:d1:e2:e9:78: 60:a4:a0:5f:3b:fc:cd:54:ad:e1:c6:fa:e3:f6:b5: 67:dd:55:26:4c:27:33:2d:53:e8:a2:7d:30:12:b3: 7c:3a:26:5b:1b:d8:20:5a:e8:4a:f4:87:94:0e:ba: ab:f4:62:53:c6:15:21:7f:42:ba:71:f9:ad:bd:f2: 9a:a2:4d:af:31:16:37:19:81:56:4b:08:41:05:d7: 52:ea:91:25:4c:12:d8:97:06:c2:e9:79:1c:a4:d2: f9:81:7e:ae:c8:0c:f1:90:8c:79:cd:0e:2c:78:d6: 95:4f:81:4f:35:22:38:a2:a7:96:ea:1b:e8:7e:d8: 95:c6:e1:75:3b:99:7e:af:07:b8:99:a7:4c:bb:6f: 14:c3:a4:6b:79:99:c7:c0:fb:81:eb:81:b6:f1:24: 33:a8:93:1e:71:25:81:69:1f:75:9e:c7:c1:19:7e: f6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D3:C4:FE:1C:7F:43:17:FF:05:A0:A1:5F:69:00:FD:05:B7:CB:3A X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:2e:6f:9d:0a:e5:11:cb:4a:31:ab:d5:fd:fb:95:ed:5e:f0: d3:87:a5:41:8a:09:73:cd:9b:94:84:b9:b9:f9:ce:b7:e7:28: 82:18:49:5d:a7:80:7f:61:10:e1:d4:f9:43:03:d5:a1:e2:22: d2:42:61:61:41:6f:b6:34:43:df:80:d4:74:e6:86:c3:25:1a: ff:ec:33:be:b3:0d:c1:5f:0c:54:23:80:c7:60:cb:81:80:5e: c1:a3:db:36:43:9d:17:ce:88:55:2a:e2:01:4b:a4:96:6d:6a: 53:db:82:50:3d:46:4c:4d:80:c1:b9:02:05:e8:6a:a4:67:c8: b0:f5:c4:89:d0:fd:7a:52:60:54:e3:58:ad:4e:5b:03:4f:66: 5b:11:00:f1:cf:99:67:d4:82:75:25:2a:cb:cf:5f:a4:f2:41: bc:66:f9:58:d6:8d:97:90:bf:16:55:97:c0:85:b1:6b:16:86: 55:8e:68:d9:26:67:8e:fe:c7:83:6c:b2:7e:8d:6a:b2:0d:33: 0e:51:7c:99:38:bc:c4:bb:00:9b:12:43:e8:4b:1e:c3:fb:c4: 90:36:e5:ea:cf:84:2c:fe:a1:59:ce:b9:34:2f:a7:25:a7:4a: 89:f7:71:53:e2:c2:c9:ec:eb:c1:04:17:bc:01:14:14:b0:34: f4:2a:fe:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjYwMzI0MjA0MDM0WhcNMjYwMzMxMjA0MDM0WjAYMRYwFAYD VQQDEw02OWMyZjZjMi1kN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlcgt0P3pgz+Ey1K5Sg8xu8EF68RKkKNXvw6FoRXFweyZFTnJPUVHzD3+ynXF v4VnFEnmSupN26sdvCQM/IiulJmdgkRp35gDNwpKvI8U9brnYyEkz9Hi6XhgpKBf O/zNVK3hxvrj9rVn3VUmTCczLVPoon0wErN8OiZbG9ggWuhK9IeUDrqr9GJTxhUh f0K6cfmtvfKaok2vMRY3GYFWSwhBBddS6pElTBLYlwbC6XkcpNL5gX6uyAzxkIx5 zQ4seNaVT4FPNSI4oqeW6hvoftiVxuF1O5l+rwe4madMu28Uw6RreZnHwPuB64G2 8SQzqJMecSWBaR91nsfBGX72swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFrTxP4c f0MX/wWgoV9pAP0Ft8s6MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATS5vnQrlEctKMavV/fuV7V7w04elQYoJc82blIS5ufnOt+coghhJXaeAf2EQ 4dT5QwPVoeIi0kJhYUFvtjRD34DUdOaGwyUa/+wzvrMNwV8MVCOAx2DLgYBewaPb NkOdF86IVSriAUuklm1qU9uCUD1GTE2AwbkCBehqpGfIsPXEidD9elJgVONYrU5b A09mWxEA8c+ZZ9SCdSUqy89fpPJBvGb5WNaNl5C/FlWXwIWxaxaGVY5o2SZnjv7H g2yyfo1qsg0zDlF8mTi8xLsAmxJD6Esew/vEkDbl6s+ELP6hWc65NC+nJadKifdx U+LCyezrwQQXvAEUFLA09Cr+iQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:27 2026 by rpki-client