$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: UXr9KDWC4le+g/jGnhwhvDRpLATx1bMumA+U/Dal+ng= Subject key identifier: F6:9C:B4:82:DB:37:6D:7D:9F:70:5F:9F:9A:A4:3B:EC:29:73:3B:FD Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0B67 Signing time: Tue 24 Mar 2026 18:58:58 +0000 Manifest this update: Tue 24 Mar 2026 18:58:58 +0000 Manifest next update: Tue 31 Mar 2026 18:58:58 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: KN8RBEaHu0HkkHldtfCHI50j1WrHHSb2/jtqnu5e8IM=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: Zn/XezK+y9Y4Ruq1+B6NF6U84qQrsZwbbi5IxkiKJ3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Mar 24 18:58:58 2026 GMT Not After : Mar 31 18:58:58 2026 GMT Subject: CN=69c2def2-8acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:ac:1f:80:87:90:f6:19:6d:22:21:f8:4d: 85:19:63:24:c9:d4:ad:af:28:3b:bb:dd:97:9c:a8: eb:ab:4e:2d:8a:79:a4:f0:ad:13:17:ac:b8:a1:dd: 68:a8:16:9c:55:9c:d3:d8:c6:f1:7c:1f:b3:bb:b2: c4:06:1c:1f:40:bb:62:3f:44:e9:5d:75:3e:51:8d: 83:99:67:fa:e8:e2:8c:5e:e1:6e:59:9b:21:79:21: f9:b7:43:ca:a8:60:6d:26:96:1b:45:e6:d2:01:53: 2f:48:6b:91:b8:7a:41:a5:83:72:27:26:4d:e1:58: 3d:86:29:f9:88:c2:54:b8:6e:ef:e0:d3:49:71:6d: a0:04:30:75:2a:07:67:81:8c:0a:08:32:e5:d2:26: 4a:2a:ee:ea:0d:77:58:b4:ff:d6:f0:5e:fb:33:a5: b6:8d:08:d9:eb:f2:49:f2:47:a0:81:f6:65:e4:f6: bd:c7:e1:0e:89:5b:96:3c:43:89:22:2e:88:f5:9a: ea:6f:3d:45:ac:10:92:d4:38:81:b8:22:06:57:8c: 19:e0:ac:f4:68:05:9f:fc:e6:d1:bc:80:26:fe:3d: 74:de:59:52:9f:10:0e:d8:af:be:ff:69:2e:26:e7: 68:a1:36:6e:78:35:64:db:fb:fa:a7:96:66:6d:e0: 82:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:9C:B4:82:DB:37:6D:7D:9F:70:5F:9F:9A:A4:3B:EC:29:73:3B:FD X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:06:26:63:e8:e2:40:f7:25:f7:ff:fa:6d:a1:85:47:8d:47: 98:82:8e:e6:2c:bf:df:6d:1e:a8:99:fc:a4:3f:c0:f4:ab:41: 12:96:af:8a:49:25:2a:9b:f3:a7:b9:6f:a7:21:d2:e2:40:0d: 8d:d8:12:e4:09:29:bd:5f:c2:15:ed:2d:06:1a:70:07:76:fd: c5:ea:ed:51:3b:43:d0:dd:5f:f7:b7:7c:94:08:67:4a:b9:83: 84:08:e1:2b:d0:3e:04:c4:80:3a:5a:6e:a4:9d:45:1e:9d:84: c2:d5:47:54:78:12:1c:3d:75:a3:ab:d6:00:12:66:81:9f:e1: 57:08:57:a2:8b:9e:84:62:34:39:77:bc:bd:17:d6:aa:7c:aa: af:c6:41:3a:47:b5:cc:60:19:f5:a3:89:36:25:1d:b8:3d:67: 52:c5:9a:e0:ef:01:92:e8:61:34:73:ea:3d:79:e3:4e:74:02: fc:92:25:9e:83:22:23:59:40:34:a1:fb:38:7a:66:a5:2d:1f: a1:aa:d9:38:29:f9:a3:bd:8f:24:2b:ee:ad:9e:c2:42:17:95: ae:96:c6:2c:bb:90:08:48:04:82:d2:82:69:2d:e7:0b:7c:9e: 96:01:42:46:09:47:f4:ad:b1:ce:2a:dd:cc:29:df:a4:d0:b2: 53:26:08:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjYwMzI0MTg1ODU4WhcNMjYwMzMxMTg1ODU4WjAYMRYwFAYD VQQDEw02OWMyZGVmMi04YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvCsH4CHkPYZbSIh+E2FGWMkydStryg7u92XnKjrq04tinmk8K0TF6y4od1o qBacVZzT2MbxfB+zu7LEBhwfQLtiP0TpXXU+UY2DmWf66OKMXuFuWZsheSH5t0PK qGBtJpYbRebSAVMvSGuRuHpBpYNyJyZN4Vg9hin5iMJUuG7v4NNJcW2gBDB1Kgdn gYwKCDLl0iZKKu7qDXdYtP/W8F77M6W2jQjZ6/JJ8keggfZl5Pa9x+EOiVuWPEOJ Ii6I9Zrqbz1FrBCS1DiBuCIGV4wZ4Kz0aAWf/ObRvIAm/j103llSnxAO2K++/2ku JudooTZueDVk2/v6p5ZmbeCC9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPactILb N219n3Bfn5qkO+wpczv9MB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARwYmY+jiQPcl9//6baGFR41HmIKO5iy/320eqJn8pD/A9KtBEpavikklKpvz p7lvpyHS4kANjdgS5AkpvV/CFe0tBhpwB3b9xertUTtD0N1f97d8lAhnSrmDhAjh K9A+BMSAOlpupJ1FHp2EwtVHVHgSHD11o6vWABJmgZ/hVwhXoouehGI0OXe8vRfW qnyqr8ZBOke1zGAZ9aOJNiUduD1nUsWa4O8BkuhhNHPqPXnjTnQC/JIlnoMiI1lA NKH7OHpmpS0foarZOCn5o72PJCvurZ7CQheVrpbGLLuQCEgEgtKCaS3nC3yelgFC RglH9K2xzirdzCnfpNCyUyYIBQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:59 2026 by rpki-client