$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft File: v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft (raw, json) Hash identifier: ltAtweji/0mbMmUMrZgAuUOJt160LuKCgirbcU+zxXQ= Subject key identifier: FD:38:31:1F:2F:11:55:A9:06:AB:58:64:3B:64:57:52:6B:72:CB:10 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft Manifest number: 023B Signing time: Wed 25 Mar 2026 01:55:08 +0000 Manifest this update: Wed 25 Mar 2026 01:55:07 +0000 Manifest next update: Wed 01 Apr 2026 01:55:07 +0000 Files and hashes: 1: v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl (hash: WeVnroe7IqlJ6qB0opbbQfXRmnJBmcOy0GDCCD+bHkY=) 2: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (hash: tbYd8JflLqAHQOW0BH5GJ8PqKcZMxydsXpsTFe7lGrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Mar 25 01:55:07 2026 GMT Not After : Apr 1 01:55:07 2026 GMT Subject: CN=69c3407c-3374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:03:d9:53:b8:04:da:b9:99:8c:9d:8a:c7:7f: 7f:05:6f:c4:d3:6c:9a:58:4f:a8:bb:a2:0e:56:c1: e4:6e:37:b1:5c:a9:45:b0:0e:3f:f1:17:0a:24:ad: af:64:4d:2e:21:6c:12:24:5f:28:72:bd:9b:63:89: 64:d1:ef:27:51:b7:5d:b2:18:59:cc:e1:1c:69:96: 7c:b6:c4:d7:1f:74:96:0e:c0:ae:34:bd:32:91:c5: 9f:c2:0f:6a:3f:4f:56:1c:c8:4d:98:40:93:d9:15: 00:54:8a:97:8c:8d:8c:04:e5:45:58:d3:aa:f5:f2: 16:c1:bf:3f:8f:13:25:3a:c8:0f:f8:d7:e0:9d:ef: ac:d2:0f:1c:7c:3e:7f:dc:79:2d:83:10:79:b6:9a: 7e:83:8a:97:ab:cd:67:0e:42:b3:75:73:62:d1:72: d4:c1:12:80:20:6a:d0:6e:b4:70:23:71:ae:0c:d3: 60:c1:30:93:cf:4c:12:35:39:d1:8e:07:b9:54:95: 40:8f:d9:ba:64:1f:87:58:ee:81:8e:9f:41:62:79: 19:80:f7:25:f0:eb:14:29:b9:3a:19:95:b0:5c:22: d2:0c:e1:09:87:0f:72:71:9d:31:11:ca:b5:c4:5e: dc:67:fe:1d:a0:b8:97:43:df:bc:42:3c:65:b9:2c: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:38:31:1F:2F:11:55:A9:06:AB:58:64:3B:64:57:52:6B:72:CB:10 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:95:7a:c0:f0:5d:68:4b:db:a7:5c:10:a9:6a:f2:a7:6a:7f: 46:cc:87:3a:ff:cf:70:ab:b4:95:3d:16:fb:37:a5:94:c5:1f: 49:07:59:ca:7b:08:c1:05:32:ad:5f:2f:ac:48:17:ba:3d:fb: 9c:18:c3:2c:c1:2d:14:b8:73:ff:69:c2:1f:d9:43:e3:32:08: 6c:a3:eb:d8:c1:55:7d:2e:ba:4f:06:9a:9a:71:07:56:f9:7e: 87:83:0e:23:30:66:af:8c:d1:ae:46:2a:82:d8:15:7c:8b:82: 80:0a:f9:36:e0:11:8e:d5:5c:61:2e:34:0b:68:9a:27:ac:32: 3c:b6:ce:67:ab:af:fa:74:4e:37:60:0d:eb:9e:8c:2a:bf:e0: 2f:67:6f:a5:6b:b6:08:e0:4b:6a:ed:74:6b:a3:d0:a8:18:96: da:37:ec:30:2d:bc:52:54:8f:f5:fb:15:b1:07:34:4e:f9:fe: 88:cb:0e:5c:55:36:54:8c:80:b7:1f:25:bb:e3:ea:12:52:8b: b8:60:1d:86:22:31:aa:5b:87:d2:a3:66:b7:9e:4f:b9:b8:10: 2d:e2:cb:19:eb:4f:a9:c4:db:53:66:d7:04:45:8f:db:98:b9: 72:3c:02:94:a7:be:f5:92:70:59:69:1c:10:1e:93:1f:65:c0: 93:e9:9f:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjYwMzI1MDE1NTA3WhcNMjYwNDAxMDE1NTA3WjAYMRYwFAYD VQQDEw02OWMzNDA3Yy0zMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAPZU7gE2rmZjJ2Kx39/BW/E02yaWE+ou6IOVsHkbjexXKlFsA4/8RcKJK2v ZE0uIWwSJF8ocr2bY4lk0e8nUbddshhZzOEcaZZ8tsTXH3SWDsCuNL0ykcWfwg9q P09WHMhNmECT2RUAVIqXjI2MBOVFWNOq9fIWwb8/jxMlOsgP+Nfgne+s0g8cfD5/ 3HktgxB5tpp+g4qXq81nDkKzdXNi0XLUwRKAIGrQbrRwI3GuDNNgwTCTz0wSNTnR jge5VJVAj9m6ZB+HWO6Bjp9BYnkZgPcl8OsUKbk6GZWwXCLSDOEJhw9ycZ0xEcq1 xF7cZ/4doLiXQ9+8QjxluSykOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP04MR8v EVWpBqtYZDtkV1JrcssQMB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZGNS8yNzIwNDM5MkMxNzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tl NEZxeUczSFNCYXRCamh1RFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJZV6wPBdaEvbp1wQqWryp2p/RsyHOv/PcKu0lT0W+zellMUfSQdZynsIwQUy rV8vrEgXuj37nBjDLMEtFLhz/2nCH9lD4zIIbKPr2MFVfS66TwaamnEHVvl+h4MO IzBmr4zRrkYqgtgVfIuCgAr5NuARjtVcYS40C2iaJ6wyPLbOZ6uv+nRON2AN656M Kr/gL2dvpWu2COBLau10a6PQqBiW2jfsMC28UlSP9fsVsQc0Tvn+iMsOXFU2VIyA tx8lu+PqElKLuGAdhiIxqluH0qNmt55PubgQLeLLGetPqcTbU2bXBEWP25i5cjwC lKe+9ZJwWWkcEB6TH2XAk+mfIA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:19:01 2026 by rpki-client