$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: 2aD740RSb83z+mOjd2phA6Y2sqDOWdCnsFl2cYGTIj8= Subject key identifier: 07:29:A4:47:34:D6:F1:7C:87:A1:93:5B:96:EB:41:3C:C8:FD:A9:57 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: C2 Signing time: Wed 25 Mar 2026 06:10:04 +0000 Manifest this update: Wed 25 Mar 2026 06:10:03 +0000 Manifest next update: Wed 01 Apr 2026 06:10:03 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: feJARM8MLwX0mfRRDlr2QPoESng7pU2oZ4skrK+m6Vs=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: 6P2hBxUHzqjP2+oG6i740uJYxBeonxP8fzF0Md+3yP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Mar 25 06:10:03 2026 GMT Not After : Apr 1 06:10:03 2026 GMT Subject: CN=69c37c3c-866c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:76:60:24:77:d8:cc:75:76:ff:e5:e3:60: bb:a5:07:39:b0:fa:c6:a4:4c:91:96:fa:cf:c5:2f: f3:53:72:08:a9:7e:cc:a0:30:1d:8f:d1:31:f9:f1: e7:d0:5b:c2:7e:bf:6b:a5:6c:99:9e:ca:5c:ec:d1: 44:81:cf:ea:93:28:1a:58:69:40:97:3d:9b:5e:7e: 0d:3a:e2:93:84:ae:ca:1d:c3:5a:d8:a2:d5:d9:55: fd:58:f4:20:9b:66:04:75:73:21:2c:ae:fd:89:de: 0a:80:1f:cd:cf:49:b4:04:17:6d:8e:b8:e9:83:80: e1:19:61:02:57:28:e7:1c:82:04:0b:8b:86:92:fd: 03:50:e2:a0:ae:d6:3e:ab:71:c1:c6:e2:77:71:69: 40:f0:6d:90:0b:eb:d0:f4:78:c4:61:48:3f:08:8a: d0:d3:64:b5:75:28:1d:09:49:71:8b:0a:e3:0e:e4: b2:52:35:4f:8f:94:4b:73:78:8a:31:67:6a:d0:a2: e6:b8:ba:70:83:ed:1a:b8:bc:2c:ea:bb:fe:0a:27: 85:49:29:f2:1c:4b:a6:fa:f3:91:a5:10:02:0d:cd: b9:a9:ee:d6:12:31:88:24:82:aa:5c:b8:1e:0c:3e: 30:8a:cf:5b:da:b6:7c:a4:f9:82:d4:57:26:c6:b6: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:29:A4:47:34:D6:F1:7C:87:A1:93:5B:96:EB:41:3C:C8:FD:A9:57 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a2:4f:76:9e:2c:1c:4d:68:f4:c7:cc:ca:21:4d:39:2d:45: 1d:32:3f:1e:17:0e:1e:d9:db:7b:d4:0f:67:44:86:73:89:a7: f4:89:e0:b9:ae:51:82:0f:b5:a6:81:8a:86:4b:f8:9b:9a:5c: 97:6b:97:0d:46:ac:22:66:ed:3f:18:c8:e6:17:64:1e:80:21: e0:35:d6:28:35:d2:56:3f:41:c6:9c:4f:a3:2a:5d:7d:30:8b: ca:d6:64:2a:1a:02:05:20:22:3a:66:b5:6a:46:5b:63:07:41: 1c:92:0d:db:5b:ca:a3:f3:14:2b:b7:75:78:81:f6:4e:13:ca: 8d:5b:81:0a:ac:bc:6c:ac:44:90:6f:7f:db:2f:c0:21:f0:13: e7:64:02:4f:45:56:a0:fa:41:e1:fc:5a:38:18:e7:64:ed:55: f0:13:52:a3:d7:8b:11:f0:b9:3d:2d:a7:19:73:ea:8b:70:9d: e0:b3:60:26:42:a6:ee:6c:f7:5f:c0:0c:86:49:ce:54:92:13: 7f:fd:96:8f:a2:15:68:5e:ac:a7:fc:8e:41:d0:58:5a:26:15: a3:e0:ae:5d:44:78:f9:d8:69:b7:c0:5b:ce:76:44:a5:72:6a: 66:b7:5a:aa:77:1d:4d:58:19:4c:7c:fc:c1:c8:f9:7c:80:72: 2e:5f:61:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKEIwMzQxQzM0M0ZFMTUyNUY3NkM5Mjk5NjEwQ0EwRTc4 RTkzRTg3QzMwHhcNMjYwMzI1MDYxMDAzWhcNMjYwNDAxMDYxMDAzWjAYMRYwFAYD VQQDEw02OWMzN2MzYy04NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuZ2YCR32Mx1dv/l42C7pQc5sPrGpEyRlvrPxS/zU3IIqX7MoDAdj9Ex+fHn 0FvCfr9rpWyZnspc7NFEgc/qkygaWGlAlz2bXn4NOuKThK7KHcNa2KLV2VX9WPQg m2YEdXMhLK79id4KgB/Nz0m0BBdtjrjpg4DhGWECVyjnHIIEC4uGkv0DUOKgrtY+ q3HBxuJ3cWlA8G2QC+vQ9HjEYUg/CIrQ02S1dSgdCUlxiwrjDuSyUjVPj5RLc3iK MWdq0KLmuLpwg+0auLws6rv+CieFSSnyHEum+vORpRACDc25qe7WEjGIJIKqXLge DD4wis9b2rZ8pPmC1FcmxrZcoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcppEc0 1vF8h6GTW5brQTzI/alXMB8GA1UdIwQYMBaAFLA0HDQ/4VJfdskplhDKDnjpPofD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80MkZDM0Q4QTA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVsOTJ5U21XRU1vT2VPay1o OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80MkZDM0Q4QTA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVs OTJ5U21XRU1vT2VPay1oOE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEqJPdp4sHE1o9MfMyiFNOS1FHTI/HhcOHtnbe9QPZ0SGc4mn9Ingua5Rgg+1 poGKhkv4m5pcl2uXDUasImbtPxjI5hdkHoAh4DXWKDXSVj9BxpxPoypdfTCLytZk KhoCBSAiOma1akZbYwdBHJIN21vKo/MUK7d1eIH2ThPKjVuBCqy8bKxEkG9/2y/A IfAT52QCT0VWoPpB4fxaOBjnZO1V8BNSo9eLEfC5PS2nGXPqi3Cd4LNgJkKm7mz3 X8AMhknOVJITf/2Wj6IVaF6sp/yOQdBYWiYVo+CuXUR4+dhpt8BbznZEpXJqZrda qncdTVgZTHz8wcj5fIByLl9h/A== -----END CERTIFICATE-----Generated at Thu Mar 26 13:22:28 2026 by rpki-client