$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: nTY6ttAEV1cqPKpSZ54I5cLVA7UVk6x7H/QqEIMnlcw= Subject key identifier: DA:B2:43:1D:6D:FB:C7:B8:1B:7B:43:29:14:A9:FF:0C:CE:8F:43:85 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 022F Signing time: Wed 25 Mar 2026 02:04:47 +0000 Manifest this update: Wed 25 Mar 2026 02:04:47 +0000 Manifest next update: Wed 01 Apr 2026 02:04:47 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: 8XCmX/yOshuSHZzCL0Rap0GxfGV48jSXTD5Pvvz/4IY=) 2: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: sE0FXcv6AB6dmDFKiWcu8KQiOOpk2VVY0iuOGiUmgoI=) 3: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RremoPLYHwOMsWIoI3OXSWs8zLNwfSA8SoWwpFXqkZA=) 4: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: LUHYZ/6kqurL/jOA9WsqOIbXqqpGM7KM4Mk7l+DENE0=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: GKQTSqIzwIY4GOth+FkYLT5SOAlB26R/4wVLOg8mq+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Mar 25 02:04:47 2026 GMT Not After : Apr 1 02:04:47 2026 GMT Subject: CN=69c342bf-8c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:c8:a7:d9:70:0a:63:b7:b7:4d:d4:ef:2a: 19:24:71:24:9c:86:4e:4c:14:b7:70:d0:95:89:94: 7d:bf:f8:ac:3f:fe:c2:91:09:63:02:f7:50:3f:6e: 5a:2d:6e:63:23:77:ea:4b:4f:ae:f5:c3:42:8a:03: df:52:19:c1:71:38:15:bc:79:1c:8e:7b:ab:31:15: a4:b3:38:21:cf:49:20:cd:a2:75:2d:ee:3e:73:73: 34:c4:db:90:ca:de:17:74:4c:bc:77:27:0d:18:bf: 48:9d:32:d5:46:83:9b:de:db:d5:0c:dc:dc:0d:55: 2f:23:a1:48:88:51:b0:00:9d:62:79:c8:b1:78:15: 1f:39:fc:46:c2:96:f6:f1:fa:bc:51:94:54:0c:0b: ca:52:74:5d:2b:f9:c5:38:71:ea:45:71:8e:f4:15: b9:b7:89:dc:4e:b2:06:2a:28:48:af:3c:97:73:1e: 74:d3:3d:8f:28:8f:87:29:c2:53:c0:1d:e3:7e:d1: 50:05:f4:4a:6d:91:a1:a3:bd:b2:ee:ff:5b:ae:c8: a8:fe:48:7d:f3:11:2a:dd:d1:01:49:c5:57:e2:e2: 98:63:a1:af:b6:35:fc:52:a8:12:d5:1c:3c:25:64: 26:f0:d4:70:28:1e:7a:5d:32:41:af:c3:7c:5d:a3: d9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B2:43:1D:6D:FB:C7:B8:1B:7B:43:29:14:A9:FF:0C:CE:8F:43:85 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:0c:ba:9a:cd:63:00:97:19:f4:3e:8d:08:13:8f:4b:ac:9e: 8a:fa:0e:9b:e9:c4:0e:be:4f:78:8a:8e:9b:62:42:53:2c:cd: 5b:5b:8c:22:88:55:1e:33:16:f3:71:e0:8e:b8:20:19:a2:53: 39:74:98:15:39:95:13:87:2e:77:a9:98:22:18:b6:69:18:f1: 95:29:08:27:5d:0a:b5:81:60:23:98:2b:c4:b9:06:b6:ad:6c: a8:1b:c7:8b:38:89:e1:94:62:30:91:74:da:63:b0:90:e9:22: 17:89:cd:a2:45:ff:05:66:54:d0:06:63:55:10:e1:50:9b:cc: aa:52:4e:51:93:0b:59:ac:3f:24:30:11:0d:1b:7e:79:e3:94: 41:bf:a4:ab:33:83:24:e3:8c:44:dd:f1:65:a1:8a:dd:28:31: 4e:5f:3d:bc:19:87:2b:e5:94:1a:ef:e7:3b:ee:82:54:16:ed: 1f:0c:6e:29:17:ac:e5:66:a3:f6:a7:12:36:3f:52:a4:ef:8e: da:d6:c6:5d:04:00:5b:03:dd:43:30:ab:af:a5:a8:bc:d3:e6: bb:1f:f4:d1:9a:e5:c2:ad:5d:55:cb:e9:ca:a9:89:42:39:eb: 34:bf:62:96:f8:71:43:52:62:47:cb:37:68:c2:da:a0:43:14: 36:37:a6:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjYwMzI1MDIwNDQ3WhcNMjYwNDAxMDIwNDQ3WjAYMRYwFAYD VQQDEw02OWMzNDJiZi04Yzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcnIp9lwCmO3t03U7yoZJHEknIZOTBS3cNCViZR9v/isP/7CkQljAvdQP25a LW5jI3fqS0+u9cNCigPfUhnBcTgVvHkcjnurMRWkszghz0kgzaJ1Le4+c3M0xNuQ yt4XdEy8dycNGL9InTLVRoOb3tvVDNzcDVUvI6FIiFGwAJ1iecixeBUfOfxGwpb2 8fq8UZRUDAvKUnRdK/nFOHHqRXGO9BW5t4ncTrIGKihIrzyXcx500z2PKI+HKcJT wB3jftFQBfRKbZGho72y7v9brsio/kh98xEq3dEBScVX4uKYY6GvtjX8UqgS1Rw8 JWQm8NRwKB56XTJBr8N8XaPZFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNqyQx1t +8e4G3tDKRSp/wzOj0OFMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMQy6ms1jAJcZ9D6NCBOPS6yeivoOm+nEDr5PeIqOm2JCUyzNW1uMIohVHjMW 83HgjrggGaJTOXSYFTmVE4cud6mYIhi2aRjxlSkIJ10KtYFgI5grxLkGtq1sqBvH iziJ4ZRiMJF02mOwkOkiF4nNokX/BWZU0AZjVRDhUJvMqlJOUZMLWaw/JDARDRt+ eeOUQb+kqzODJOOMRN3xZaGK3SgxTl89vBmHK+WUGu/nO+6CVBbtHwxuKRes5Waj 9qcSNj9SpO+O2tbGXQQAWwPdQzCrr6WovNPmux/00Zrlwq1dVcvpyqmJQjnrNL9i lvhxQ1JiR8s3aMLaoEMUNjemWw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:30 2026 by rpki-client