$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: UFouYFvrP0ygCHgqdcnwuWVpgtt8U0XDccsfXoNtkLs= Subject key identifier: 58:F5:4A:87:73:39:EA:04:0E:12:F7:F1:DC:7E:C0:0D:28:FB:8B:39 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0594 Signing time: Tue 24 Mar 2026 22:54:30 +0000 Manifest this update: Tue 24 Mar 2026 22:54:29 +0000 Manifest next update: Tue 31 Mar 2026 22:54:29 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: m5qvnV6B7/OTTn0bWR6zjjwm5jM0puQklObJzL77+sg=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: MARAw22DhIJFp/wfG19G5Gz01JcFPueQuJN4T376eTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Mar 24 22:54:29 2026 GMT Not After : Mar 31 22:54:29 2026 GMT Subject: CN=69c31625-633f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ab:d8:ff:26:7d:0f:de:90:79:a1:7e:ce:d9: 33:06:79:c0:6f:04:66:20:d0:bc:ff:26:29:bd:f0: 9a:06:52:8d:7f:49:03:b7:01:d0:33:51:b1:cb:5c: 74:49:38:e5:82:c2:47:57:d8:d3:e0:03:c1:7a:95: 4b:88:23:2d:d1:38:6f:fb:1c:ad:66:07:bb:1a:00: 8c:47:78:d1:2b:9c:ad:cb:e2:28:ec:bb:c4:96:93: 78:9d:ed:4b:d0:bd:af:71:6a:84:78:f6:74:b5:50: 86:6e:20:fb:a6:bc:4f:d9:c2:8b:b3:04:50:9a:79: 05:69:61:cb:3c:5f:b3:e9:77:f5:72:91:53:40:28: eb:91:c0:02:d4:bf:60:54:0d:f9:38:e2:c6:43:12: 6d:bd:62:bc:a4:48:37:d5:25:18:74:1b:b4:e6:8a: 0e:cf:80:97:eb:91:a2:b3:63:b3:39:05:9a:8b:48: a9:35:bf:06:d1:2f:0b:43:86:c1:27:dd:b3:e6:7d: 21:53:da:d9:ca:48:14:33:84:3c:d1:53:d4:2c:ca: da:46:9c:1e:53:00:fc:72:db:32:6a:77:b5:1f:05: 21:ab:f6:a8:f2:47:94:2a:c1:96:91:31:07:91:5d: 7a:e3:51:14:0d:eb:98:cb:19:12:23:bc:45:0b:a7: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F5:4A:87:73:39:EA:04:0E:12:F7:F1:DC:7E:C0:0D:28:FB:8B:39 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a7:32:70:bc:3c:23:90:33:32:34:cc:1c:2f:a2:7a:f8:06: 5a:d4:e6:b8:15:63:00:fc:fc:8f:a3:d9:ba:3c:ea:62:eb:99: fe:f2:b6:38:93:60:c1:f1:fa:4c:ae:d3:e6:5a:7d:93:d6:9a: 40:92:fd:b5:45:8c:56:1b:67:b0:21:af:07:ef:c4:4e:70:45: 24:f7:45:f4:02:c2:21:04:e2:3b:0e:d6:56:38:11:ab:fb:55: d3:95:3b:60:e8:a5:d7:f0:a6:35:cd:8d:04:e6:52:cd:14:5f: a1:df:23:e7:de:21:b1:58:d2:3b:a6:4a:a1:7d:2b:de:4b:1d: dc:94:e8:31:2d:ce:f6:9e:3d:7f:d7:5d:b5:b4:a0:a4:e3:cb: 5e:4d:08:f1:a9:af:d9:e0:33:ec:5f:b7:a7:83:61:9f:a7:27: 7b:dd:c6:4c:a9:6b:15:9e:39:90:9b:a9:8a:56:4d:61:a1:fb: 34:91:8b:68:bc:ed:13:b3:4c:e9:b3:67:be:95:c7:c8:50:cf: 38:62:61:cf:0c:db:1b:34:10:f0:c9:4a:8f:89:e3:c7:88:10: 24:c1:2c:5b:49:56:ac:fc:d6:75:17:91:0c:0d:80:52:a3:67: 23:2d:47:fc:cb:81:63:19:a5:b6:45:77:7c:98:79:50:53:83: 3f:da:4a:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjYwMzI0MjI1NDI5WhcNMjYwMzMxMjI1NDI5WjAYMRYwFAYD VQQDEw02OWMzMTYyNS02MzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxavY/yZ9D96QeaF+ztkzBnnAbwRmINC8/yYpvfCaBlKNf0kDtwHQM1Gxy1x0 STjlgsJHV9jT4APBepVLiCMt0Thv+xytZge7GgCMR3jRK5yty+Io7LvElpN4ne1L 0L2vcWqEePZ0tVCGbiD7prxP2cKLswRQmnkFaWHLPF+z6Xf1cpFTQCjrkcAC1L9g VA35OOLGQxJtvWK8pEg31SUYdBu05ooOz4CX65Gis2OzOQWai0ipNb8G0S8LQ4bB J92z5n0hU9rZykgUM4Q80VPULMraRpweUwD8ctsyane1HwUhq/ao8keUKsGWkTEH kV1641EUDeuYyxkSI7xFC6cSGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFj1Sodz OeoEDhL38dx+wA0o+4s5MB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPKcycLw8I5AzMjTMHC+ievgGWtTmuBVjAPz8j6PZujzqYuuZ/vK2OJNgwfH6 TK7T5lp9k9aaQJL9tUWMVhtnsCGvB+/ETnBFJPdF9ALCIQTiOw7WVjgRq/tV05U7 YOil1/CmNc2NBOZSzRRfod8j594hsVjSO6ZKoX0r3ksd3JToMS3O9p49f9ddtbSg pOPLXk0I8amv2eAz7F+3p4Nhn6cne93GTKlrFZ45kJupilZNYaH7NJGLaLztE7NM 6bNnvpXHyFDPOGJhzwzbGzQQ8MlKj4njx4gQJMEsW0lWrPzWdReRDA2AUqNnIy1H /MuBYxmltkV3fJh5UFODP9pKDA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:28 2026 by rpki-client