$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: fYxXYX0KwzZsbnwwcPy8zi3aQw82v6loWL4CyMAGFjA= Subject key identifier: D5:E9:78:35:CC:86:F2:2C:7B:1F:F3:E8:DF:6E:76:4F:18:57:CF:EA Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CC4 Signing time: Thu 26 Mar 2026 18:21:35 +0000 Manifest this update: Thu 26 Mar 2026 18:21:35 +0000 Manifest next update: Thu 02 Apr 2026 18:21:35 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: LyVcrv+JqtH3IPw/ywLb2cadXioE7H250Nfj+fmLUpI=) 2: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 3: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) 4: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3297 (0xce1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Mar 26 18:21:35 2026 GMT Not After : Apr 2 18:21:35 2026 GMT Subject: CN=69c5792f-986c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0b:db:2b:e5:53:76:f6:e9:9d:69:d1:55:ec: d6:24:a2:98:23:30:5e:81:b9:e0:75:60:81:3c:36: 65:e8:35:fe:bb:6b:d8:31:d2:03:9c:39:c4:0a:b9: 8a:18:8d:20:06:26:69:9d:c2:af:f4:97:82:ef:bc: dc:2b:65:e2:24:37:ee:e2:f4:24:db:63:55:7b:3e: 8e:3e:5c:bb:b7:7e:d5:0d:c1:60:60:3c:7c:27:2a: 45:f7:eb:f2:7a:73:e1:09:83:fb:84:06:6a:17:c0: 89:8f:1c:2b:28:19:25:04:e9:e2:50:f4:da:9a:90: 4d:7d:bb:34:34:2e:c5:d5:02:68:7a:1d:ec:9b:63: 0a:5a:43:db:e6:f2:49:5f:61:28:34:ab:10:60:0a: f6:98:d5:03:2d:38:fd:ca:55:b7:32:ce:de:21:71: 6b:1a:e7:13:14:d0:73:b0:61:ff:01:88:73:a5:86: 9f:b3:cd:3d:23:8d:e6:2d:97:0d:00:a3:41:68:25: 1d:62:f5:c6:10:2e:65:b5:46:8d:83:63:53:39:d5: 23:ed:4b:75:e4:a6:90:67:8b:de:4d:7c:e7:61:d6: 24:11:41:fc:85:ee:85:d2:eb:51:b0:4f:89:b4:28: a0:44:87:33:c2:4f:d4:4f:95:c8:db:a8:0c:8c:3c: e4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E9:78:35:CC:86:F2:2C:7B:1F:F3:E8:DF:6E:76:4F:18:57:CF:EA X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:dc:f7:2a:10:52:eb:2b:bd:a7:16:10:c5:1b:c9:a6:58:f7: 01:fc:d9:10:7f:f2:07:7b:b0:f6:ca:d2:dd:12:bb:38:95:83: 9d:40:d5:3f:89:17:ee:a5:6a:ac:a7:2e:8a:7f:18:4f:9e:66: 74:bc:e2:ec:c1:44:e5:09:a6:79:b0:15:0b:5b:64:d8:06:ab: 8e:18:fa:f0:e6:a4:8d:59:ac:27:92:63:14:4b:db:7c:2a:a8: dd:14:a4:fe:7f:bd:fb:33:a3:b6:24:2e:9b:4c:50:f8:b5:cb: 73:23:83:a5:a7:8c:8c:bd:15:39:66:a9:fc:85:00:8c:2f:45: b4:2e:5c:a3:35:26:1c:63:30:9d:d9:f9:11:2a:7f:0f:b2:e6: d8:82:1a:0c:c5:02:9d:81:90:51:a5:f2:6c:12:3e:d2:a0:cc: fd:8e:a7:53:cb:7c:23:10:34:f9:c8:e9:b9:cc:b4:49:95:a7: ae:c4:9e:f6:7e:d7:77:45:fa:4d:12:07:7c:d9:bf:f3:90:5f: 57:6f:fa:ac:3e:e1:b1:73:6d:d7:10:11:77:c9:7b:01:d7:75: 95:53:ba:34:68:81:77:1a:dc:2b:22:11:bb:ab:9e:4e:f5:af: 99:07:6f:cc:08:79:ed:7b:fe:ea:86:f9:fa:14:ea:37:27:b4: fc:68:5d:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwMzI2MTgyMTM1WhcNMjYwNDAyMTgyMTM1WjAYMRYwFAYD VQQDEw02OWM1NzkyZi05ODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AvbK+VTdvbpnWnRVezWJKKYIzBegbngdWCBPDZl6DX+u2vYMdIDnDnECrmK GI0gBiZpncKv9JeC77zcK2XiJDfu4vQk22NVez6OPly7t37VDcFgYDx8JypF9+vy enPhCYP7hAZqF8CJjxwrKBklBOniUPTampBNfbs0NC7F1QJoeh3sm2MKWkPb5vJJ X2EoNKsQYAr2mNUDLTj9ylW3Ms7eIXFrGucTFNBzsGH/AYhzpYafs809I43mLZcN AKNBaCUdYvXGEC5ltUaNg2NTOdUj7Ut15KaQZ4veTXznYdYkEUH8he6F0utRsE+J tCigRIczwk/UT5XI26gMjDzkSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXpeDXM hvIsex/z6N9udk8YV8/qMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANNz3KhBS6yu9pxYQxRvJplj3AfzZEH/yB3uw9srS3RK7OJWDnUDVP4kX7qVq rKcuin8YT55mdLzi7MFE5QmmebAVC1tk2Aarjhj68OakjVmsJ5JjFEvbfCqo3RSk /n+9+zOjtiQum0xQ+LXLcyODpaeMjL0VOWap/IUAjC9FtC5cozUmHGMwndn5ESp/ D7Lm2IIaDMUCnYGQUaXybBI+0qDM/Y6nU8t8IxA0+cjpucy0SZWnrsSe9n7Xd0X6 TRIHfNm/85BfV2/6rD7hsXNt1xARd8l7Add1lVO6NGiBdxrcKyIRu6ueTvWvmQdv zAh57Xv+6ob5+hTqNye0/GhdhQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:41:14 2026 by rpki-client