$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: knYvoXPSN8LcS48+zDvUzWP1jTrlAkqUoCrksmPNi+A= Subject key identifier: 75:E9:61:3F:6A:36:34:E5:0F:17:06:71:61:8F:FB:62:03:D1:5F:E4 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01ED Signing time: Wed 25 Mar 2026 02:38:38 +0000 Manifest this update: Wed 25 Mar 2026 02:38:38 +0000 Manifest next update: Wed 01 Apr 2026 02:38:38 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: NN1Hlncxc7E6LpPKc8Ljly0UjaS9s37YH65I4FpI0JY=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: usH+mk51VBx4IO/Jnd24Cx5sUXY3pfqSRJBol6HvMcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Mar 25 02:38:38 2026 GMT Not After : Apr 1 02:38:38 2026 GMT Subject: CN=69c34aae-5bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:16:3f:23:be:ea:79:0a:18:af:94:2e:5e:b9: 6d:75:ed:77:17:bb:d5:f9:f1:3c:b8:05:7d:02:9a: ab:8f:b1:5a:bd:17:b4:73:cb:e9:af:5d:c4:03:2a: 19:68:f2:2b:9c:91:63:71:71:e7:7d:aa:49:81:a6: 16:29:39:8e:38:62:ee:82:10:03:ba:16:84:65:e6: aa:9e:6f:72:6c:7b:05:76:ec:99:2c:fb:6c:78:79: e3:e7:f0:6a:41:39:36:b7:22:c2:74:89:74:17:80: 41:73:57:43:24:ad:35:4f:c7:aa:2a:84:63:14:b4: 73:bd:32:42:71:86:1a:63:a4:38:a9:e3:b3:5a:a9: c0:d7:6f:de:a9:21:f7:3c:99:d3:fe:43:cc:59:a2: 16:2c:e5:c3:03:a3:10:e0:09:28:ce:76:12:b3:17: ba:3f:de:dc:2d:5a:52:68:0f:5e:d3:57:e1:45:56: dc:b3:87:8a:de:06:29:9a:cd:bc:60:8f:74:bc:46: 4d:97:b1:ba:f7:b3:10:cf:14:de:ca:69:70:4e:0b: c7:08:7a:c9:a6:a0:45:39:5f:e8:be:8b:c3:80:de: ea:22:97:ab:23:b4:2c:44:80:16:fb:0a:40:aa:af: e1:1b:3e:ff:c2:37:a2:0c:0a:f1:21:dd:b9:03:cb: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E9:61:3F:6A:36:34:E5:0F:17:06:71:61:8F:FB:62:03:D1:5F:E4 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:88:15:37:22:37:da:36:35:2d:2b:e6:35:eb:b2:e1:c6:84: 54:6d:34:66:1b:83:4a:6e:bd:71:96:30:fa:7b:c6:b0:a4:77: 21:50:53:85:75:df:ec:73:5f:36:5a:a6:58:16:c6:37:fe:35: d6:95:fe:cd:e4:2a:6f:5a:7f:03:4f:15:e3:d4:e7:eb:24:e1: f0:94:15:75:c7:07:88:c3:c4:b2:07:ef:24:22:a4:f6:16:29: 6a:b3:54:e8:bc:12:93:8a:67:0a:af:58:d1:8a:41:a5:47:45: b8:db:52:ed:96:50:63:cd:f3:d5:4f:ec:e6:60:cc:33:26:90: bd:8b:c4:98:50:79:6e:d1:9b:4a:0e:6a:6a:31:10:c9:15:12: c9:cd:bd:63:68:5a:c7:71:10:4c:b7:75:09:ba:d5:82:d0:e3: ce:f6:be:94:48:4e:3b:04:aa:5b:6c:58:81:36:7a:17:94:81: c3:ab:80:a4:47:84:9d:02:32:d4:e6:94:0b:50:18:76:60:66: 26:18:97:e1:7e:cd:1e:8b:84:22:35:96:a0:33:5e:49:4d:62: 75:bf:70:08:ca:39:c7:a9:00:10:ce:df:c4:ec:d9:17:6d:5e: 9a:ef:42:55:6f:0a:17:10:28:bf:13:97:f3:c4:82:a2:d5:8d: 83:f8:39:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjYwMzI1MDIzODM4WhcNMjYwNDAxMDIzODM4WjAYMRYwFAYD VQQDEw02OWMzNGFhZS01YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BY/I77qeQoYr5QuXrltde13F7vV+fE8uAV9Apqrj7FavRe0c8vpr13EAyoZ aPIrnJFjcXHnfapJgaYWKTmOOGLughADuhaEZeaqnm9ybHsFduyZLPtseHnj5/Bq QTk2tyLCdIl0F4BBc1dDJK01T8eqKoRjFLRzvTJCcYYaY6Q4qeOzWqnA12/eqSH3 PJnT/kPMWaIWLOXDA6MQ4AkoznYSsxe6P97cLVpSaA9e01fhRVbcs4eK3gYpms28 YI90vEZNl7G697MQzxTeymlwTgvHCHrJpqBFOV/ovovDgN7qIperI7QsRIAW+wpA qq/hGz7/wjeiDArxId25A8sYiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHXpYT9q NjTlDxcGcWGP+2ID0V/kMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAIgVNyI32jY1LSvmNeuy4caEVG00ZhuDSm69cZYw+nvGsKR3IVBThXXf7HNf NlqmWBbGN/411pX+zeQqb1p/A08V49Tn6yTh8JQVdccHiMPEsgfvJCKk9hYparNU 6LwSk4pnCq9Y0YpBpUdFuNtS7ZZQY83z1U/s5mDMMyaQvYvEmFB5btGbSg5qajEQ yRUSyc29Y2hax3EQTLd1CbrVgtDjzva+lEhOOwSqW2xYgTZ6F5SBw6uApEeEnQIy 1OaUC1AYdmBmJhiX4X7NHouEIjWWoDNeSU1idb9wCMo5x6kAEM7fxOzZF21emu9C VW8KFxAovxOX88SCotWNg/g5cQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:46:36 2026 by rpki-client