$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft File: Psexptohoad1gV0cv-cjFLipXdk.mft (raw, json) Hash identifier: 0Ta5T82liIQibMN7hbH3aGHkYPEHcYilUig8c2jwqr8= Subject key identifier: 5D:86:95:74:39:83:E4:FB:BF:3F:E6:09:65:52:40:23:0A:00:B0:90 Authority key identifier: 3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 Certificate issuer: /CN=A9170DA5/serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft Manifest number: 8C Signing time: Fri 27 Mar 2026 07:05:32 +0000 Manifest this update: Fri 27 Mar 2026 07:05:32 +0000 Manifest next update: Fri 03 Apr 2026 07:05:32 +0000 Files and hashes: 1: Psexptohoad1gV0cv-cjFLipXdk.crl (hash: ih9xRHCLROk/XVKnA0Em8rnpaYWYnnOP7oqXCNhtP24=) 2: F99E9E78571B11F093AD0C10C4F9AE02.roa (hash: GVEpvnEFQk1r8mTWmBDvESje+/1MN9Uk5AtUa2pXkUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 07:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=3EC7B1A6DA21A1A775815D1CBFE72314B8A95DD9 Validity Not Before: Mar 27 07:05:32 2026 GMT Not After : Apr 3 07:05:32 2026 GMT Subject: CN=69c62c3c-c02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:79:49:fb:88:2c:da:15:a5:a9:86:68:65:ae: 71:e8:f1:b1:df:11:80:32:98:71:75:a9:17:06:07: f2:4e:32:ee:7b:42:ba:d1:27:a8:14:6c:2f:1f:5e: 54:02:dc:0f:81:9d:c8:ad:6b:19:d7:1f:df:88:e1: 72:28:91:d3:3b:0b:45:4d:d5:bf:72:87:fb:06:12: 0a:3d:db:f0:10:5e:ae:20:d7:d9:42:a3:db:2e:49: 52:af:3b:67:8a:fe:c0:7a:ae:d9:52:40:7d:89:8c: f0:91:ae:a1:3a:43:cb:b8:d6:d8:29:f2:5b:73:46: d4:c6:74:11:6c:69:fa:72:3c:a6:9c:22:80:44:f5: e5:3d:9a:55:99:68:ae:2d:99:26:7c:cb:cb:56:d3: 1f:3e:28:44:49:79:f7:24:d1:01:fc:28:fa:e8:6a: bf:ae:da:c6:0d:c1:2e:cb:b2:e9:72:00:b0:66:b3: 6a:a6:77:ea:73:2b:4a:04:93:bd:1a:85:f9:8b:c6: 55:d9:ae:37:85:0a:39:31:b5:ee:f5:89:38:08:a7: 6b:e0:8a:aa:49:0e:5e:79:21:de:2e:98:93:36:95: be:c1:88:75:dd:ef:bb:c6:14:cf:50:43:14:85:df: 63:d3:6f:d6:cd:82:7b:64:f6:05:63:59:56:88:be: 9f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:86:95:74:39:83:E4:FB:BF:3F:E6:09:65:52:40:23:0A:00:B0:90 X509v3 Authority Key Identifier: keyid:3E:C7:B1:A6:DA:21:A1:A7:75:81:5D:1C:BF:E7:23:14:B8:A9:5D:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Psexptohoad1gV0cv-cjFLipXdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/CE0EDA26571A11F0B8507341C4F9AE02/Psexptohoad1gV0cv-cjFLipXdk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:df:74:43:74:c7:38:48:5c:02:b8:c3:18:4d:f4:b5:98:3e: cd:35:13:89:bf:f1:16:e3:d4:f2:80:53:fb:c2:e4:e4:f8:10: b6:58:5a:d4:56:18:50:ba:67:dc:e7:d6:04:b0:d2:5c:1b:8c: 85:df:5d:24:51:bd:72:77:b0:80:e5:c0:e1:38:48:7c:48:7f: ed:dc:a6:d9:86:ee:cb:a4:26:a6:27:e1:46:4b:ee:a5:0c:e4: c6:71:fd:d4:e0:48:9e:5e:07:de:e6:3e:41:05:3b:1b:25:ae: eb:ea:1d:95:28:f4:fc:20:b1:38:2f:07:ed:eb:0d:1b:4a:bf: e5:63:e1:5b:7b:fd:d0:3f:fa:2a:f7:a1:51:94:88:56:5f:5e: b2:98:79:b6:46:2f:27:51:6c:f5:5f:00:5b:89:26:b5:2c:0f: b2:2b:bc:80:6f:fb:05:fc:f9:0a:6b:6e:5e:4d:ba:c6:f4:7d: 0e:39:d9:be:19:d5:e3:38:a9:6d:95:11:ea:3e:6c:6a:65:81: 19:d0:07:02:1f:52:10:f1:f7:5c:c7:38:c9:df:8a:0f:48:32: 94:4a:f7:09:f9:c4:3b:a3:9e:7b:2f:88:1b:ec:de:ef:ee:ff: f8:9a:11:3a:8d:df:f1:30:83:95:5b:ac:5b:a3:f8:13:57:40: 38:00:ef:63 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBEQTUxMTAvBgNVBAUTKDNFQzdCMUE2REEyMUExQTc3NTgxNUQxQ0JGRTcyMzE0 QjhBOTVERDkwHhcNMjYwMzI3MDcwNTMyWhcNMjYwNDAzMDcwNTMyWjAYMRYwFAYD VQQDEw02OWM2MmMzYy1jMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXlJ+4gs2hWlqYZoZa5x6PGx3xGAMphxdakXBgfyTjLue0K60SeoFGwvH15U AtwPgZ3IrWsZ1x/fiOFyKJHTOwtFTdW/cof7BhIKPdvwEF6uINfZQqPbLklSrztn iv7Aeq7ZUkB9iYzwka6hOkPLuNbYKfJbc0bUxnQRbGn6cjymnCKARPXlPZpVmWiu LZkmfMvLVtMfPihESXn3JNEB/Cj66Gq/rtrGDcEuy7LpcgCwZrNqpnfqcytKBJO9 GoX5i8ZV2a43hQo5MbXu9Yk4CKdr4IqqSQ5eeSHeLpiTNpW+wYh13e+7xhTPUEMU hd9j02/WzYJ7ZPYFY1lWiL6fTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF2GlXQ5 g+T7vz/mCWVSQCMKALCQMB8GA1UdIwQYMBaAFD7HsabaIaGndYFdHL/nIxS4qV3Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERBNS9DRTBFREEyNjU3 MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9hZDFnVjBjdi1jakZMaXBY ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzZXhwdG9ob2FkMWdWMGN2LWNqRkxpcFhkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERBNS9DRTBFREEyNjU3MUExMUYwQjg1MDczNDFDNEY5QUUwMi9Qc2V4cHRvaG9h ZDFnVjBjdi1jakZMaXBYZGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU990Q3THOEhcArjDGE30tZg+zTUTib/xFuPU8oBT+8Lk5PgQtlha1FYYULpn 3OfWBLDSXBuMhd9dJFG9cnewgOXA4ThIfEh/7dym2Ybuy6QmpifhRkvupQzkxnH9 1OBInl4H3uY+QQU7GyWu6+odlSj0/CCxOC8H7esNG0q/5WPhW3v90D/6KvehUZSI Vl9esph5tkYvJ1Fs9V8AW4kmtSwPsiu8gG/7Bfz5CmtuXk26xvR9DjnZvhnV4zip bZUR6j5samWBGdAHAh9SEPH3XMc4yd+KD0gylEr3CfnEO6Oeey+IG+ze7+7/+JoR Oo3f8TCDlVusW6P4E1dAOADvYw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:09:38 2026 by rpki-client