$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: cToS+3EWkf2z/2S2MVFdwsiZQvJ0ENF5R5lpDuAs3nY= Subject key identifier: 44:1C:8E:3F:B3:4F:0B:AE:A8:58:2A:E4:4A:4E:53:DE:50:F6:52:E5 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 023B Signing time: Fri 27 Mar 2026 02:03:35 +0000 Manifest this update: Fri 27 Mar 2026 02:03:34 +0000 Manifest next update: Fri 03 Apr 2026 02:03:34 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: v8XiLomwktdkDsAFyI3qqCGdeTZefVJgJlyAW5mI1hA=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: hj+uCG3BczK6y02o1/8ZHFisCvHEGnt+l8aKiIPe2aA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Mar 27 02:03:34 2026 GMT Not After : Apr 3 02:03:34 2026 GMT Subject: CN=69c5e576-a570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5a:2d:15:c9:b5:16:94:c9:52:e5:30:70:17: d7:af:ec:76:db:b6:c4:96:90:c0:67:73:51:2a:ba: 9d:0e:e0:f9:c5:f8:8b:2f:ac:c6:07:bf:76:03:50: c0:e5:d8:00:89:23:e9:9c:37:e0:cf:90:1c:ab:b2: d2:71:90:ed:62:d2:84:a2:69:ad:5a:c0:fe:76:8c: 6f:38:92:ed:cd:d7:75:c8:a1:a4:9e:54:e0:8c:fa: 30:57:9e:e5:b8:9d:cb:9b:dc:a0:f4:89:6f:ab:9f: 8a:cb:4e:d8:09:e5:10:fa:5c:03:05:4e:cb:4c:b3: 92:4c:16:48:fd:09:9c:94:4e:f6:ca:e3:54:06:5c: d7:fa:a8:2d:d9:bb:34:3f:b2:c9:5d:1f:68:e0:2a: b5:00:64:f8:b2:b8:0d:47:97:21:3e:e4:4c:1c:31: 34:96:d4:ef:21:6c:45:05:4d:06:b4:f8:1b:28:9d: 11:55:c5:ca:39:a4:c5:91:1d:2d:0d:f8:dc:a3:38: 17:3d:85:1b:a6:90:92:71:e2:49:fd:63:fa:87:8e: 97:02:c2:91:98:e6:85:d4:0d:7f:c3:a3:bf:40:7e: fc:3b:27:1a:6c:c1:41:33:05:c0:ac:9e:05:12:38: a1:5a:5b:21:ec:c7:c0:dc:ff:20:e3:af:9b:5f:da: d4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1C:8E:3F:B3:4F:0B:AE:A8:58:2A:E4:4A:4E:53:DE:50:F6:52:E5 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:0e:b1:17:cc:c0:40:a8:30:1e:fd:a7:51:6f:89:67:41:be: 9e:58:ac:11:45:99:42:de:93:08:d3:34:11:ba:c2:36:be:27: f9:7c:1e:86:9f:5f:fb:ba:e1:61:0f:f0:00:ba:83:bd:d6:21: d4:b7:50:b1:7e:c5:b0:9d:8d:6e:b9:5c:ba:b5:a6:ef:d0:8e: 1b:09:e8:bb:41:79:ce:0e:ce:ef:71:37:66:84:d1:86:09:6a: 8e:60:6d:9a:a7:79:25:da:45:b1:69:c8:c7:92:b9:7f:9b:55: cc:6c:da:6d:40:25:ab:c7:4a:01:bc:df:ce:64:a2:70:66:e4: 5c:44:dc:0c:9f:37:49:92:46:f0:ac:8e:0b:f1:a8:00:96:c7: f5:a7:fc:f5:84:02:a1:97:72:db:d2:c6:30:98:0e:4e:e0:16: 0a:ee:30:60:25:13:ad:3d:80:fd:bf:fd:e1:c8:ae:21:ec:c9: 68:8f:61:2a:4f:00:31:db:73:f7:62:ed:c8:5f:4a:10:0c:45: 7e:31:70:ad:b0:19:52:c8:b2:d6:c5:b2:ed:81:ce:6f:64:7e: e4:98:e4:22:ea:b1:40:4e:80:fb:58:05:de:7a:03:8c:19:34: 80:c8:22:3f:2f:ed:1b:d8:42:e6:de:7c:c9:64:48:60:e9:bf: 3c:c7:e7:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjYwMzI3MDIwMzM0WhcNMjYwNDAzMDIwMzM0WjAYMRYwFAYD VQQDEw02OWM1ZTU3Ni1hNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1otFcm1FpTJUuUwcBfXr+x227bElpDAZ3NRKrqdDuD5xfiLL6zGB792A1DA 5dgAiSPpnDfgz5Acq7LScZDtYtKEommtWsD+doxvOJLtzdd1yKGknlTgjPowV57l uJ3Lm9yg9Ilvq5+Ky07YCeUQ+lwDBU7LTLOSTBZI/QmclE72yuNUBlzX+qgt2bs0 P7LJXR9o4Cq1AGT4srgNR5chPuRMHDE0ltTvIWxFBU0GtPgbKJ0RVcXKOaTFkR0t DfjcozgXPYUbppCSceJJ/WP6h46XAsKRmOaF1A1/w6O/QH78OycabMFBMwXArJ4F EjihWlsh7MfA3P8g46+bX9rUhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEQcjj+z TwuuqFgq5EpOU95Q9lLlMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmA6xF8zAQKgwHv2nUW+JZ0G+nlisEUWZQt6TCNM0EbrCNr4n+Xwehp9f+7rh YQ/wALqDvdYh1LdQsX7FsJ2NbrlcurWm79COGwnou0F5zg7O73E3ZoTRhglqjmBt mqd5JdpFsWnIx5K5f5tVzGzabUAlq8dKAbzfzmSicGbkXETcDJ83SZJG8KyOC/Go AJbH9af89YQCoZdy29LGMJgOTuAWCu4wYCUTrT2A/b/94ciuIezJaI9hKk8AMdtz 92LtyF9KEAxFfjFwrbAZUsiy1sWy7YHOb2R+5JjkIuqxQE6A+1gF3noDjBk0gMgi Py/tG9hC5t58yWRIYOm/PMfnLA== -----END CERTIFICATE-----Generated at Sat Mar 28 09:13:47 2026 by rpki-client