$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: FZKZ3qSAZsXqdM3GZlm5aUXyeFfdtGWZ4EgRkDC+9ic= Subject key identifier: 65:54:D9:11:92:E9:84:9E:70:23:5B:05:13:C5:92:54:ED:EC:B9:69 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 8B Signing time: Wed 25 Mar 2026 06:46:27 +0000 Manifest this update: Wed 25 Mar 2026 06:46:26 +0000 Manifest next update: Wed 01 Apr 2026 06:46:26 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: TDtVgc8bquudbnXd5MHHyeHRELQscYq12FlQiSDQ4m0=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: weUBuaqXjk5/5+ZvfK6KOqbWfTtXBnBwNWpgK2K7P90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Mar 25 06:46:26 2026 GMT Not After : Apr 1 06:46:26 2026 GMT Subject: CN=69c384c3-beb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:4b:89:6f:3c:21:21:b4:d9:b7:40:3b:f2: f0:74:50:62:23:93:4a:d1:59:c1:8f:95:f3:d7:ad: 4b:52:d5:10:0f:10:46:b2:b6:c9:78:08:9b:02:b1: 37:3b:0e:e6:f0:65:b8:6a:fa:62:9c:4a:2d:38:48: 59:a8:d3:32:03:28:f5:70:72:06:57:33:e0:4b:9f: a1:a7:07:fa:f3:ce:5b:1c:38:dc:11:66:0d:96:a2: 45:a3:72:bd:f2:37:86:52:92:cd:22:45:fb:72:ef: 1f:86:8f:c2:99:ee:70:17:49:53:1d:02:cf:98:f2: 6e:fa:bc:ae:bf:b0:9f:ec:89:5d:97:09:4a:4a:3e: 9b:4a:f5:ba:7b:33:44:0e:01:86:df:a1:34:31:64: fb:0b:08:3b:9f:84:b3:a5:f2:2f:af:ed:eb:58:45: af:a7:1a:31:fa:00:de:c6:fe:01:4e:6b:3f:6e:04: 43:91:52:42:20:fb:10:fe:c5:af:38:a9:fe:da:20: 76:67:68:64:aa:ab:0e:53:a8:bc:7a:c9:8c:94:f9: 88:f1:3d:43:b8:d8:f7:f1:6b:b5:a0:8a:e7:8c:b4: 8c:91:1a:6e:d0:80:90:da:3f:c8:0d:c2:7f:78:03: 43:6c:5b:a7:2b:9a:77:2b:23:d7:ab:e8:7b:88:7f: 38:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:54:D9:11:92:E9:84:9E:70:23:5B:05:13:C5:92:54:ED:EC:B9:69 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:15:fb:e4:cf:33:7e:06:60:a6:c8:99:55:29:8d:2b:1d:32: 85:53:fa:1f:b6:4e:b1:84:8e:23:c6:19:61:e3:a7:a9:53:c5: 2b:28:60:ff:be:7e:3f:3a:49:3a:6b:c4:3d:aa:b7:6e:7b:11: 73:1e:b3:f2:b6:58:39:b7:37:07:10:99:f8:fb:6a:1c:4a:dd: d8:9f:68:85:e5:f1:69:74:6a:ef:7d:06:a2:59:b2:94:46:05: e9:e0:48:7e:72:d1:a2:f3:af:18:0e:71:5e:9b:ab:93:ed:30: 4b:d4:f1:8e:40:d4:e5:59:6e:cf:f2:ed:6e:a3:7b:e8:85:02: 60:05:d0:67:db:5c:c1:bd:c4:26:cf:27:67:e2:e4:f1:5e:96: 01:02:47:77:f1:9e:f7:fc:00:5c:d4:55:8f:59:9e:94:9c:80: 6e:49:d1:43:73:6b:30:49:1b:a0:4d:ea:73:1b:89:88:26:a5: d8:ea:f3:4d:3a:42:5e:40:ae:b5:d6:1a:28:8d:00:7d:5e:6e: ae:b3:e3:ca:3b:59:d9:c0:85:c9:ea:32:dc:e8:51:ae:a8:aa: 8f:3c:c6:ed:94:dd:cf:4d:a5:01:6e:b5:64:ff:b6:22:c3:b2: 93:11:85:52:cd:66:b6:2f:dc:01:c5:ff:7f:69:30:7b:87:7a: 12:a3:4f:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKEQ0MjU2RURDMkJDMTFDODQ1REI1MDdCN0MwQTg5MzU0 NDYyRUI2M0QwHhcNMjYwMzI1MDY0NjI2WhcNMjYwNDAxMDY0NjI2WjAYMRYwFAYD VQQDEw02OWMzODRjMy1iZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtflLiW88ISG02bdAO/LwdFBiI5NK0VnBj5Xz161LUtUQDxBGsrbJeAibArE3 Ow7m8GW4avpinEotOEhZqNMyAyj1cHIGVzPgS5+hpwf6885bHDjcEWYNlqJFo3K9 8jeGUpLNIkX7cu8fho/Cme5wF0lTHQLPmPJu+ryuv7Cf7IldlwlKSj6bSvW6ezNE DgGG36E0MWT7Cwg7n4SzpfIvr+3rWEWvpxox+gDexv4BTms/bgRDkVJCIPsQ/sWv OKn+2iB2Z2hkqqsOU6i8esmMlPmI8T1DuNj38Wu1oIrnjLSMkRpu0ICQ2j/IDcJ/ eANDbFunK5p3KyPXq+h7iH84vwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGVU2RGS 6YSecCNbBRPFklTt7LlpMB8GA1UdIwQYMBaAFNQlbtwrwRyEXbUHt8Cok1RGLrY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DNTU5NDI0QTU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJUmR0UWUzd0tpVFZFWXV0 ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DNTU5NDI0QTU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi8xQ1Z1M0N2QkhJ UmR0UWUzd0tpVFZFWXV0ajAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnBX75M8zfgZgpsiZVSmNKx0yhVP6H7ZOsYSOI8YZYeOnqVPFKyhg/75+PzpJ OmvEPaq3bnsRcx6z8rZYObc3BxCZ+PtqHErd2J9oheXxaXRq730GolmylEYF6eBI fnLRovOvGA5xXpurk+0wS9TxjkDU5Vluz/LtbqN76IUCYAXQZ9tcwb3EJs8nZ+Lk 8V6WAQJHd/Ge9/wAXNRVj1melJyAbknRQ3NrMEkboE3qcxuJiCal2OrzTTpCXkCu tdYaKI0AfV5urrPjyjtZ2cCFyeoy3OhRrqiqjzzG7ZTdz02lAW61ZP+2IsOykxGF Us1mti/cAcX/f2kwe4d6EqNPCQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:24:08 2026 by rpki-client