$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: JqHjsrVuiY9YrEVq1qffhbYA09BkxS1YKtw3vQAyiYo= Subject key identifier: 86:F0:23:A4:30:C8:FA:6E:B9:8F:3F:34:A4:41:61:50:E1:63:84:15 Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 038D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 0388 Signing time: Wed 25 Mar 2026 00:27:27 +0000 Manifest this update: Wed 25 Mar 2026 00:27:27 +0000 Manifest next update: Wed 01 Apr 2026 00:27:27 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: vm3mMc6GsM8OQoFJJOty/z5Y/GJl/j3wo9xvRpJ5zHc=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: JWhoa2NKg4RrDWpyShk965Wq7gv+qj3/iSfECHpocFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41, serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Validity Not Before: Mar 25 00:27:27 2026 GMT Not After : Apr 1 00:27:27 2026 GMT Subject: CN=69c32bef-b431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:55:43:1e:59:fa:d0:69:60:7e:40:20:70:cb: 78:bf:fd:41:88:16:92:3a:7e:90:5d:fd:9b:8c:8c: 4a:60:3e:29:69:e0:1e:fb:e9:db:df:ce:36:86:60: ae:ba:18:b6:45:b7:64:0b:6e:82:2f:8c:20:a9:81: ee:b1:59:bd:87:3c:b0:0d:47:93:fa:c4:1a:e6:6d: de:f3:19:9e:73:fe:b2:53:c1:ae:59:e2:b5:c8:5a: 35:5c:59:3c:db:d9:cf:f6:1a:8e:1f:06:42:d7:68: c2:69:6a:c1:4e:49:78:f7:5b:17:1b:1c:d1:59:88: 8c:09:6e:89:10:63:13:7a:2a:dc:d8:2b:33:8c:21: 18:ad:d0:c8:47:2f:d3:da:0c:01:e2:0f:d2:f6:14: 13:b6:93:fc:3a:d6:71:d3:5f:cd:d9:16:b7:d6:e6: 16:70:2a:c6:90:5d:1e:1f:8d:a4:7a:8f:42:72:e9: 83:00:4c:e0:ca:71:96:44:4c:7f:16:9a:14:e5:6d: 8d:9f:38:5f:a7:dc:5c:65:1a:5f:4d:69:3a:7d:c6: 6d:d0:a9:20:92:24:63:ce:25:f6:ce:7d:7a:ee:e0: 22:50:a3:e2:df:5c:b9:20:95:a5:6e:7f:46:90:69: 40:d5:14:a1:43:5a:fb:d8:3c:4d:cf:6c:8d:6d:78: 62:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F0:23:A4:30:C8:FA:6E:B9:8F:3F:34:A4:41:61:50:E1:63:84:15 X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:50:a1:eb:3b:d7:20:b3:ed:5a:81:83:02:22:40:89:21:d5: 84:44:be:59:63:11:94:d5:82:b6:16:73:c6:c7:1c:f1:2c:26: 6f:df:00:ee:f0:02:ee:cb:ec:bc:e9:6f:13:df:7b:f2:f2:da: 4b:e4:12:91:eb:bc:8e:83:63:39:31:a3:ad:98:a2:76:5a:de: 08:99:3f:94:7e:db:6c:09:d4:d1:11:8d:8f:00:8d:92:15:fc: 63:5c:4f:22:b2:7a:f3:e8:1e:3e:72:f7:99:02:39:67:bb:19: a4:5a:76:92:93:e2:a9:f0:a2:41:4a:2e:d6:2c:9c:9d:42:9b: 77:91:31:0d:2f:ce:38:66:f5:6f:a3:2e:a2:0b:e8:47:ca:84: 0e:07:b0:da:ae:b7:1c:fd:17:c9:49:45:4f:4a:74:1f:ef:33: b9:a9:9c:5e:e1:28:74:81:20:9a:7f:87:11:6d:31:a7:e9:63: a7:99:b5:fc:bd:cf:d4:80:7e:8d:23:d4:fa:54:2b:14:eb:44: d6:b3:1d:56:ef:c3:13:5a:16:2a:68:cf:2c:65:8e:2f:18:0a: d8:01:52:59:9d:26:a2:1a:3e:ed:d1:05:89:a4:ae:95:f8:02: 61:7f:79:43:a7:70:45:4e:88:1c:d9:47:2e:7c:49:48:fc:fb: 1c:ef:c6:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjYwMzI1MDAyNzI3WhcNMjYwNDAxMDAyNzI3WjAYMRYwFAYD VQQDEw02OWMzMmJlZi1iNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FVDHln60GlgfkAgcMt4v/1BiBaSOn6QXf2bjIxKYD4paeAe++nb3842hmCu uhi2RbdkC26CL4wgqYHusVm9hzywDUeT+sQa5m3e8xmec/6yU8GuWeK1yFo1XFk8 29nP9hqOHwZC12jCaWrBTkl491sXGxzRWYiMCW6JEGMTeirc2CszjCEYrdDIRy/T 2gwB4g/S9hQTtpP8OtZx01/N2Ra31uYWcCrGkF0eH42keo9CcumDAEzgynGWREx/ FpoU5W2Nnzhfp9xcZRpfTWk6fcZt0KkgkiRjziX2zn167uAiUKPi31y5IJWlbn9G kGlA1RShQ1r72DxNz2yNbXhi2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIbwI6Qw yPpuuY8/NKRBYVDhY4QVMB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfVCh6zvXILPtWoGDAiJAiSHVhES+WWMRlNWCthZzxscc8Swmb98A7vAC7svs vOlvE9978vLaS+QSkeu8joNjOTGjrZiidlreCJk/lH7bbAnU0RGNjwCNkhX8Y1xP IrJ68+gePnL3mQI5Z7sZpFp2kpPiqfCiQUou1iycnUKbd5ExDS/OOGb1b6Muogvo R8qEDgew2q63HP0XyUlFT0p0H+8zuamcXuEodIEgmn+HEW0xp+ljp5m1/L3P1IB+ jSPU+lQrFOtE1rMdVu/DE1oWKmjPLGWOLxgK2AFSWZ0moho+7dEFiaSulfgCYX95 Q6dwRU6IHNlHLnxJSPz7HO/GEw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:30 2026 by rpki-client