$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: TlNjkUE7filZX54wc1PKuZX0ocaxDeq0e+sraTHwUtU= Subject key identifier: B3:75:72:5A:AC:6A:CF:CA:8B:04:AA:B2:FB:02:06:84:78:89:C3:A9 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B94 Signing time: Thu 26 Mar 2026 18:59:38 +0000 Manifest this update: Thu 26 Mar 2026 18:59:37 +0000 Manifest next update: Thu 02 Apr 2026 18:59:37 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: YWvaGeT8YDybC4msZo6GEGbKXKz7jup2GOuJK3/NO7U=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: Op/TZ3dOt8Yt2zdOFwj+mdajCZ3G7/THMBti/s9h/Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Mar 26 18:59:37 2026 GMT Not After : Apr 2 18:59:37 2026 GMT Subject: CN=69c5821a-295e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a2:b0:2c:de:27:08:fd:1a:06:a0:5e:71:08: 30:bd:ae:2f:98:a0:3e:7f:98:b2:eb:ee:8e:dc:b1: e3:98:ca:4f:fd:e3:49:f9:64:78:57:4f:37:d8:bd: 7a:76:5a:7c:b4:00:0d:da:49:4d:f2:f1:64:81:4d: 57:b1:15:a7:5f:85:2c:ec:34:59:c8:f2:39:c2:18: fe:84:fa:c9:ab:ef:30:19:b4:aa:7e:f9:a3:f9:48: 2d:db:14:d7:94:a6:03:b8:cd:0f:5d:fe:62:f1:0f: ee:8f:14:4a:70:91:04:7a:32:f3:35:0b:9e:0e:ed: a6:59:e4:6c:60:62:ea:b2:a8:11:8e:ce:ab:25:f4: 7e:00:da:b7:2b:d5:e7:86:2e:93:36:5a:2f:15:f0: 27:4d:0a:ec:7e:22:72:aa:a5:b0:da:cc:52:a1:4f: 97:ed:24:55:f3:ef:d6:07:00:c4:b4:f2:fd:7f:0f: 13:8c:c2:d0:85:9c:92:fd:ad:9d:13:35:44:1d:49: 14:25:9c:46:3d:05:19:54:01:2a:44:6c:a1:5f:0b: 95:87:15:05:7f:e4:5f:dc:ca:4f:7d:53:a4:f7:9f: d9:06:e0:c8:b8:44:90:33:08:05:b3:4d:63:b6:33: 64:78:48:45:7d:5b:4d:43:36:73:76:d6:18:bf:a6: d5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:75:72:5A:AC:6A:CF:CA:8B:04:AA:B2:FB:02:06:84:78:89:C3:A9 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:fb:22:98:d0:d4:f6:3f:8b:41:e1:09:7f:7f:e2:7b:c7:95: dc:b8:5e:25:e3:50:5c:99:1c:9b:36:7e:60:60:62:db:23:bc: ab:cf:46:70:8e:73:d3:67:1a:ca:1e:f1:4a:fe:42:b1:79:4a: 1a:17:63:67:73:d4:e9:e8:0f:62:18:7d:ec:82:09:c8:00:cf: 02:d0:4b:75:fb:11:eb:f1:97:2c:ef:9e:70:c0:ef:89:2f:25: 8e:a8:c7:cc:c3:87:54:be:ca:d5:7f:67:46:de:25:e0:49:db: 69:ed:12:db:9e:2f:5a:55:90:5d:45:92:b1:53:6a:2b:91:93: fb:93:2a:ab:ce:35:28:70:98:0f:2c:7c:65:af:b7:b4:d7:db: 4d:de:9c:2d:59:52:94:90:08:e1:1e:de:d5:ea:08:bb:72:2c: 90:f4:dd:56:64:9d:05:5c:d1:71:6a:04:39:34:31:9f:b0:08: 35:7d:0f:d3:72:09:51:90:43:f2:09:ff:b9:ef:4d:23:cf:b0: 6b:ce:fe:ce:6a:1d:f8:4f:9e:e3:56:3e:df:16:8f:37:4a:a9: 98:c1:b4:c9:ef:9f:1d:d2:29:6a:da:f7:90:95:cd:02:ec:02: bb:4e:bd:33:c4:c4:c1:de:0a:8b:db:d2:4c:a2:ac:6e:6c:10: 6a:78:93:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjYwMzI2MTg1OTM3WhcNMjYwNDAyMTg1OTM3WjAYMRYwFAYD VQQDEw02OWM1ODIxYS0yOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7aKwLN4nCP0aBqBecQgwva4vmKA+f5iy6+6O3LHjmMpP/eNJ+WR4V0832L16 dlp8tAAN2klN8vFkgU1XsRWnX4Us7DRZyPI5whj+hPrJq+8wGbSqfvmj+Ugt2xTX lKYDuM0PXf5i8Q/ujxRKcJEEejLzNQueDu2mWeRsYGLqsqgRjs6rJfR+ANq3K9Xn hi6TNlovFfAnTQrsfiJyqqWw2sxSoU+X7SRV8+/WBwDEtPL9fw8TjMLQhZyS/a2d EzVEHUkUJZxGPQUZVAEqRGyhXwuVhxUFf+Rf3MpPfVOk95/ZBuDIuESQMwgFs01j tjNkeEhFfVtNQzZzdtYYv6bVwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLN1clqs as/KiwSqsvsCBoR4icOpMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd/simNDU9j+LQeEJf3/ie8eV3LheJeNQXJkcmzZ+YGBi2yO8q89GcI5z02ca yh7xSv5CsXlKGhdjZ3PU6egPYhh97IIJyADPAtBLdfsR6/GXLO+ecMDviS8ljqjH zMOHVL7K1X9nRt4l4Enbae0S254vWlWQXUWSsVNqK5GT+5Mqq841KHCYDyx8Za+3 tNfbTd6cLVlSlJAI4R7e1eoIu3IskPTdVmSdBVzRcWoEOTQxn7AINX0P03IJUZBD 8gn/ue9NI8+wa87+zmod+E+e41Y+3xaPN0qpmMG0ye+fHdIpatr3kJXNAuwCu069 M8TEwd4Ki9vSTKKsbmwQaniT8A== -----END CERTIFICATE-----Generated at Sat Mar 28 12:17:56 2026 by rpki-client