$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: xeHlFTgqK9N+FIhGypL+7hpi9B8i4tYtnbhidmxvk1s= Subject key identifier: 88:C1:83:1E:7E:0B:85:6B:76:56:A4:78:20:53:99:AE:C6:36:0F:B5 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 061D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 0617 Signing time: Tue 24 Mar 2026 22:32:41 +0000 Manifest this update: Tue 24 Mar 2026 22:32:41 +0000 Manifest next update: Tue 31 Mar 2026 22:32:41 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: pbpK4ITHNAOUjFGbuPYJNttK9VHv2tn40Uftg2jxNqA=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: Bz3Iq9k4u/cSFdMYB99jjcN0b1O7fjys9rSqwKOvUDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1565 (0x61d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Mar 24 22:32:41 2026 GMT Not After : Mar 31 22:32:41 2026 GMT Subject: CN=69c31109-12f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:f2:5c:7d:7c:1e:9c:2a:08:2b:e0:d2:44: 9f:88:8f:6c:e0:02:87:28:28:01:18:d6:48:d2:f7: dd:10:5d:9e:ef:be:87:b1:6a:bb:44:a4:08:6a:6b: a1:ff:93:d3:b3:bf:6d:1c:25:76:99:57:25:2e:42: 64:aa:f3:33:07:25:3d:42:ac:12:04:8d:d3:b8:1a: 8d:95:86:21:92:eb:ec:0e:29:34:59:7b:7d:38:ff: 69:73:95:1c:df:80:2f:58:42:e0:db:44:ea:f2:a9: 67:5b:a3:e1:97:54:0d:23:d5:71:b0:25:77:be:8b: f7:f5:57:f7:57:fa:e3:eb:92:df:06:db:f6:7e:58: bc:a7:b7:b3:9c:1c:89:3c:90:af:90:18:7a:ab:ee: bf:b3:98:10:75:da:24:8d:49:19:d8:ea:80:de:ea: 85:d3:61:24:6f:30:d0:d5:95:88:eb:ab:3d:bc:f3: e7:9f:8b:14:47:ff:d9:62:8d:c6:06:09:fd:8a:81: 77:7b:50:97:3d:e5:2e:10:32:36:e4:d1:8d:22:58: 33:d0:ef:8c:a3:53:e2:a4:94:39:d3:c6:15:88:53: a3:57:9d:bc:c0:78:7c:54:07:2c:44:46:07:ff:a3: 7b:58:da:1a:e5:a8:70:84:42:77:af:40:34:9a:cc: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C1:83:1E:7E:0B:85:6B:76:56:A4:78:20:53:99:AE:C6:36:0F:B5 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:dd:64:d0:4b:ef:4a:e1:78:84:a2:40:1e:ba:81:73:95:46: 05:e6:96:e7:30:d8:a6:ce:57:c1:01:92:eb:91:78:c7:4e:e3: d9:f0:bc:63:07:13:a8:1d:a5:4c:09:9e:d6:60:aa:27:86:ec: 2c:e1:b6:0b:d9:8b:a5:2a:1c:cc:3b:b8:13:70:0e:83:22:1c: d7:09:e7:84:45:fe:c0:d6:cc:28:89:58:a0:cb:37:05:ef:20: 69:cd:15:de:ae:77:f7:32:5d:11:f7:ea:9e:4a:a7:c5:32:2d: a1:9a:d3:4d:5d:cb:87:8b:34:09:29:bf:23:df:2e:78:f3:09: ff:81:d9:90:d3:83:96:ee:f3:4e:ec:fe:38:5a:a6:09:9b:95: 2a:fd:ca:4d:c6:02:4f:28:16:f9:96:c8:36:82:be:e5:85:c5: 45:6e:ba:1e:96:3f:a1:45:a2:9d:57:34:be:c8:9e:d7:37:f1: a2:fd:7d:11:1d:7d:44:8f:d4:f7:f8:9d:ab:8c:e8:51:6c:8e: a6:d1:26:0b:a3:98:4b:3b:5a:15:49:37:38:9b:b2:f9:83:b4: 70:ab:7d:ef:de:e8:10:29:e9:f1:46:13:47:f7:0b:9f:ae:41: 19:de:59:72:16:c9:3d:2f:9b:60:72:29:7f:1b:63:50:58:17: bd:a4:eb:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjYwMzI0MjIzMjQxWhcNMjYwMzMxMjIzMjQxWjAYMRYwFAYD VQQDEw02OWMzMTEwOS0xMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcPyXH18HpwqCCvg0kSfiI9s4AKHKCgBGNZI0vfdEF2e776HsWq7RKQIamuh /5PTs79tHCV2mVclLkJkqvMzByU9QqwSBI3TuBqNlYYhkuvsDik0WXt9OP9pc5Uc 34AvWELg20Tq8qlnW6Phl1QNI9VxsCV3vov39Vf3V/rj65LfBtv2fli8p7eznByJ PJCvkBh6q+6/s5gQddokjUkZ2OqA3uqF02EkbzDQ1ZWI66s9vPPnn4sUR//ZYo3G Bgn9ioF3e1CXPeUuEDI25NGNIlgz0O+Mo1PipJQ508YViFOjV528wHh8VAcsREYH /6N7WNoa5ahwhEJ3r0A0msxu6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIjBgx5+ C4VrdlakeCBTma7GNg+1MB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv91k0EvvSuF4hKJAHrqBc5VGBeaW5zDYps5XwQGS65F4x07j2fC8YwcTqB2l TAme1mCqJ4bsLOG2C9mLpSoczDu4E3AOgyIc1wnnhEX+wNbMKIlYoMs3Be8gac0V 3q539zJdEffqnkqnxTItoZrTTV3Lh4s0CSm/I98uePMJ/4HZkNODlu7zTuz+OFqm CZuVKv3KTcYCTygW+ZbINoK+5YXFRW66HpY/oUWinVc0vsie1zfxov19ER19RI/U 9/idq4zoUWyOptEmC6OYSztaFUk3OJuy+YO0cKt9797oECnp8UYTR/cLn65BGd5Z chbJPS+bYHIpfxtjUFgXvaTryA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:31:36 2026 by rpki-client