$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: 8f4bbIiQPlWeTmHrb5KIoOhAsSOxLiFCxvgTM1EH8us= Subject key identifier: 51:BB:AD:5D:DF:C3:FC:7E:87:30:3C:D7:30:68:72:CD:D5:EC:2B:1C Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 02A0 Signing time: Wed 25 Mar 2026 01:07:59 +0000 Manifest this update: Wed 25 Mar 2026 01:07:58 +0000 Manifest next update: Wed 01 Apr 2026 01:07:58 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: 6WlVCZwLgJGuj79G01dymqDXEFP2gU9GO08khLm7ncA=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: akPAZSOa93x2Wngs9MzKkfgLP+esBNNQavCi79ZhFO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Mar 25 01:07:58 2026 GMT Not After : Apr 1 01:07:58 2026 GMT Subject: CN=69c3356f-5127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dd:37:d8:b2:09:88:dd:8c:13:24:fe:0e:37: 78:4d:0a:6a:55:b8:02:87:6c:42:1d:64:d6:5a:a2: f5:62:dc:3e:4c:04:97:a3:9b:2b:39:9d:49:90:70: aa:34:84:bb:5a:8d:dd:8b:b2:28:28:ad:71:87:f3: ee:0c:7c:f8:1d:01:bd:02:8c:fa:bb:ba:01:6a:62: 79:f0:aa:aa:fd:c0:45:a1:a5:84:f7:00:f2:a1:14: 12:ec:55:cd:9b:57:36:5c:0e:2a:cd:ae:0f:60:13: b4:b3:e5:03:96:3b:12:ee:21:cd:7a:c5:e9:a6:8b: a4:21:5d:6d:36:6a:f4:07:9f:57:9a:e4:74:97:f2: 0d:05:60:53:3a:ff:25:65:0a:30:6d:d9:e5:ef:f2: 0a:ed:a1:30:82:e1:5e:9a:08:42:db:06:30:7f:9a: 6c:0e:73:43:e8:e6:20:92:95:b2:8c:f3:94:5c:35: 4b:f0:5c:fe:6f:65:a2:0d:ab:af:9e:84:5c:ca:03: 94:2f:8b:5d:df:83:86:27:5a:be:a8:f8:88:8a:ca: 43:b4:9b:4f:fd:cc:09:50:bc:d5:8f:43:b0:67:d3: c1:35:2b:57:80:cc:ab:4e:e1:28:11:3d:4e:ee:2f: 19:e2:01:41:59:1a:db:e4:1b:fe:09:29:dc:61:2a: fb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BB:AD:5D:DF:C3:FC:7E:87:30:3C:D7:30:68:72:CD:D5:EC:2B:1C X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ce:e6:bf:c5:02:06:f0:99:ff:43:ca:b2:bb:af:c9:be:02: 98:26:91:0d:bc:9e:aa:f2:b6:bb:ce:95:ff:5f:10:16:cc:2a: 47:7a:56:2a:ce:0d:40:0c:7a:4a:bf:7c:38:b8:2a:82:18:24: 48:55:31:75:9a:0a:1c:f2:3f:dc:df:aa:f9:ad:a4:78:09:9c: 29:ac:6a:4d:80:d3:59:e1:7e:a4:ab:58:79:bc:3e:43:ac:c2: 90:99:8e:91:94:61:b2:41:83:1d:60:bb:13:b7:a4:68:28:4f: 41:ed:96:cb:11:52:3c:fd:df:cd:1b:4d:78:5b:bb:12:d7:ab: 9c:c0:2b:dc:87:a3:09:58:20:c7:4b:ac:56:26:1a:ba:6b:53: 2f:32:bb:a3:96:dc:19:87:02:20:a3:d4:77:2a:e6:cf:7e:53: 8d:7a:82:ca:43:84:20:b0:b8:b6:ba:4f:26:23:9c:3e:2e:1b: 61:d0:19:36:a2:92:c5:0b:94:74:2c:7c:08:18:38:c9:9b:88: a8:11:7b:89:cd:11:34:68:d7:3a:bb:d9:5e:b6:34:3e:d7:3a: 5c:76:dd:05:8a:1a:d6:9f:d5:c9:92:4f:3d:a1:0c:49:a4:90: 43:18:cf:d7:b7:00:d7:c6:a5:7a:2c:1a:dd:65:3d:1a:6a:6f: f5:57:05:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjYwMzI1MDEwNzU4WhcNMjYwNDAxMDEwNzU4WjAYMRYwFAYD VQQDEw02OWMzMzU2Zi01MTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnd032LIJiN2MEyT+Djd4TQpqVbgCh2xCHWTWWqL1Ytw+TASXo5srOZ1JkHCq NIS7Wo3di7IoKK1xh/PuDHz4HQG9Aoz6u7oBamJ58Kqq/cBFoaWE9wDyoRQS7FXN m1c2XA4qza4PYBO0s+UDljsS7iHNesXppoukIV1tNmr0B59XmuR0l/INBWBTOv8l ZQowbdnl7/IK7aEwguFemghC2wYwf5psDnND6OYgkpWyjPOUXDVL8Fz+b2WiDauv noRcygOUL4td34OGJ1q+qPiIispDtJtP/cwJULzVj0OwZ9PBNStXgMyrTuEoET1O 7i8Z4gFBWRrb5Bv+CSncYSr76QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFG7rV3f w/x+hzA81zBocs3V7CscMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQ87mv8UCBvCZ/0PKsruvyb4CmCaRDbyeqvK2u86V/18QFswqR3pWKs4NQAx6 Sr98OLgqghgkSFUxdZoKHPI/3N+q+a2keAmcKaxqTYDTWeF+pKtYebw+Q6zCkJmO kZRhskGDHWC7E7ekaChPQe2WyxFSPP3fzRtNeFu7EternMAr3IejCVggx0usViYa umtTLzK7o5bcGYcCIKPUdyrmz35TjXqCykOEILC4trpPJiOcPi4bYdAZNqKSxQuU dCx8CBg4yZuIqBF7ic0RNGjXOrvZXrY0Ptc6XHbdBYoa1p/VyZJPPaEMSaSQQxjP 17cA18aleiwa3WU9Gmpv9VcFpQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:41:44 2026 by rpki-client