$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: 9aMGHsgxwfEgSAnIaYTAldPNwExAj8Q0VF/w6bFWDug= Subject key identifier: B3:1A:96:3D:2E:B6:86:6F:D7:9A:46:17:90:9E:56:E7:6F:0C:62:86 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 011C Signing time: Wed 25 Mar 2026 05:05:14 +0000 Manifest this update: Wed 25 Mar 2026 05:05:14 +0000 Manifest next update: Wed 01 Apr 2026 05:05:14 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: 21L/uy0v9ZJrusI9RyYjpMHzp8pftsxTTvcaxuTqNQA=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: /vNUIQMQmo/+bpr7T8qr5NTsbD+Gg65QmwR+l9u79do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Mar 25 05:05:14 2026 GMT Not After : Apr 1 05:05:14 2026 GMT Subject: CN=69c36d0a-f3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:e0:0c:71:df:7f:d5:d5:7b:29:d2:5d:fd:91: 77:63:e6:66:32:e8:e5:5d:83:af:35:25:b6:81:59: 59:f6:99:ab:be:e8:fd:15:be:7d:22:8a:d1:ac:98: 7e:77:78:9e:52:ca:f0:0f:ab:e4:e1:6f:f0:26:1a: 14:d3:aa:49:31:6f:0f:5d:9c:1f:1a:ce:3f:f3:83: ed:0a:88:55:bd:da:78:a4:dd:8b:a2:d0:9b:6c:c2: 1b:38:1c:75:d4:ff:63:cd:41:d3:2f:9b:0b:b8:c1: 2e:fe:cf:db:8a:f1:3d:71:d4:95:9b:3c:18:9e:1b: 4e:21:98:d8:14:55:e3:ef:bd:1d:0e:6d:c4:3e:39: 92:31:55:36:bf:56:35:ed:2d:c3:73:9c:3e:10:3f: bf:8b:ea:c6:40:bf:6e:e0:55:dd:11:89:99:7d:ee: a0:5f:50:08:21:0a:58:13:61:d1:49:f1:a8:74:24: 4a:ed:fa:b5:83:39:7e:b9:48:0c:43:95:ab:f7:51: 8e:ed:63:9a:b6:f9:11:6c:83:80:14:78:4b:ff:d3: 0f:ad:fc:e9:5b:07:92:2b:d2:44:50:2c:11:25:de: 92:0c:9a:a8:a8:db:76:08:9a:4b:b4:f1:fb:44:3b: 7b:57:af:ca:e0:14:bb:a1:d2:ec:fc:d5:ca:52:96: 12:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1A:96:3D:2E:B6:86:6F:D7:9A:46:17:90:9E:56:E7:6F:0C:62:86 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:34:27:53:d4:35:b4:3c:52:82:98:39:e0:ba:06:d9:6a:2a: e3:6c:75:be:f1:39:38:75:44:fd:5b:54:c1:45:36:32:d1:8e: f4:e5:ab:8a:ca:e4:47:8c:ba:4e:b7:26:17:da:2f:cf:af:00: 7e:e9:4e:ee:03:d5:52:c4:1f:46:18:0c:85:12:62:18:9c:7f: 2c:a6:82:72:7e:db:61:2e:61:ba:91:22:74:5a:5f:c4:5e:e7: 09:18:87:29:a2:1c:9e:9f:78:6d:0f:76:cd:7f:fb:01:e5:ce: af:04:d9:d3:13:d9:9b:87:4a:82:1d:9b:8d:3f:56:c3:61:fd: ff:49:96:c3:63:97:d3:8d:dc:43:59:5a:82:7d:c8:a2:a8:df: 88:3d:1b:1c:db:0b:99:1c:62:cf:21:aa:0d:2c:db:54:93:28: e4:68:b7:ac:30:e3:25:37:f8:21:66:c7:e8:81:b2:86:f2:75: ec:aa:63:2d:e7:f3:99:06:49:be:69:08:b8:02:ad:47:70:35: 3d:0f:2c:1d:aa:fa:ba:7c:93:bd:bb:d5:34:fe:ae:85:7a:25: 79:e8:2f:31:07:95:4d:ba:a8:00:99:6c:b7:2f:8e:2c:e8:0c: 4a:85:38:d2:0a:d1:b3:70:4e:81:b2:d7:47:be:86:19:45:40: f4:27:1c:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjYwMzI1MDUwNTE0WhcNMjYwNDAxMDUwNTE0WjAYMRYwFAYD VQQDEw02OWMzNmQwYS1mM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAheAMcd9/1dV7KdJd/ZF3Y+ZmMujlXYOvNSW2gVlZ9pmrvuj9Fb59IorRrJh+ d3ieUsrwD6vk4W/wJhoU06pJMW8PXZwfGs4/84PtCohVvdp4pN2LotCbbMIbOBx1 1P9jzUHTL5sLuMEu/s/bivE9cdSVmzwYnhtOIZjYFFXj770dDm3EPjmSMVU2v1Y1 7S3Dc5w+ED+/i+rGQL9u4FXdEYmZfe6gX1AIIQpYE2HRSfGodCRK7fq1gzl+uUgM Q5Wr91GO7WOatvkRbIOAFHhL/9MPrfzpWweSK9JEUCwRJd6SDJqoqNt2CJpLtPH7 RDt7V6/K4BS7odLs/NXKUpYSoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMalj0u toZv15pGF5CeVudvDGKGMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdDQnU9Q1tDxSgpg54LoG2Woq42x1vvE5OHVE/VtUwUU2MtGO9OWrisrkR4y6 TrcmF9ovz68AfulO7gPVUsQfRhgMhRJiGJx/LKaCcn7bYS5hupEidFpfxF7nCRiH KaIcnp94bQ92zX/7AeXOrwTZ0xPZm4dKgh2bjT9Ww2H9/0mWw2OX043cQ1lagn3I oqjfiD0bHNsLmRxizyGqDSzbVJMo5Gi3rDDjJTf4IWbH6IGyhvJ17KpjLefzmQZJ vmkIuAKtR3A1PQ8sHar6unyTvbvVNP6uhXoleegvMQeVTbqoAJlsty+OLOgMSoU4 0grRs3BOgbLXR76GGUVA9CccTA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:04:58 2026 by rpki-client