$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft File: vmOANw9kBuY_dG-vUrxQHsTQvVI.mft (raw, json) Hash identifier: 1uF/S8zRFmrzBP7lO43cHLA3Ysy7oR/oPMmnwanA450= Subject key identifier: EB:EA:43:B8:33:98:16:01:B2:D6:14:87:F3:2E:30:AE:5E:28:0E:93 Authority key identifier: BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 Certificate issuer: /CN=A9171B8D/serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft Manifest number: C2 Signing time: Wed 25 Mar 2026 06:09:26 +0000 Manifest this update: Wed 25 Mar 2026 06:09:25 +0000 Manifest next update: Wed 01 Apr 2026 06:09:25 +0000 Files and hashes: 1: vmOANw9kBuY_dG-vUrxQHsTQvVI.crl (hash: hFLmRY+VrWJ8fpYPogI3pDN5dB5TcmWId9uMzc3k+BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B8D, serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Validity Not Before: Mar 25 06:09:25 2026 GMT Not After : Apr 1 06:09:25 2026 GMT Subject: CN=69c37c15-8f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:64:30:b1:44:4f:78:89:7e:7e:b8:43:c1: 83:b2:98:4a:1f:48:0a:1e:e1:55:49:7a:cb:d5:67: 88:86:4c:59:9a:12:9f:fc:94:e4:90:fa:75:18:ad: 4b:d4:2c:cf:f1:1c:a4:30:a7:95:bc:bd:94:88:46: f8:89:df:0f:08:9a:91:83:05:fe:87:5d:72:bf:b7: fb:e5:bd:e9:5f:92:2d:ef:fb:d3:cc:b3:fb:f2:e5: 3f:99:fd:80:65:98:13:64:84:41:25:36:51:ff:7f: 4e:65:ab:2b:aa:68:5f:fa:8f:55:50:2a:15:3a:2e: eb:4d:b3:55:76:2b:42:8a:ac:bc:2f:c2:5f:75:81: 61:f1:56:22:eb:e0:bd:2d:2a:5c:af:c8:d3:38:de: 21:06:c2:06:02:72:76:3d:54:f4:a0:89:13:91:ee: 64:0a:0b:32:64:95:53:0f:f1:79:2a:1e:d0:6b:67: 16:c7:42:af:3f:f1:b3:cd:13:e6:23:a5:a6:03:28: 1e:d1:b7:83:5c:b2:4e:62:74:db:ad:16:0c:68:74: 41:6f:c4:99:a8:91:8c:5a:49:df:f8:9a:d7:31:19: bf:22:7f:ef:ef:3f:d4:de:6b:aa:b1:15:43:17:4a: d3:e8:91:2a:f0:47:f9:ce:2f:53:02:2c:2b:d5:3a: 12:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EA:43:B8:33:98:16:01:B2:D6:14:87:F3:2E:30:AE:5E:28:0E:93 X509v3 Authority Key Identifier: keyid:BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:55:9b:77:be:7d:7f:cf:eb:65:87:46:28:1e:f6:ad:92:92: fe:ff:c3:ef:cf:0e:78:96:c2:55:f6:59:76:4a:d5:c5:ed:43: 99:69:11:f1:31:a9:36:ee:13:ef:3a:e2:0d:86:4a:79:e1:c4: 65:29:4f:8f:29:e7:65:03:d8:49:ab:46:7a:ed:83:1d:0e:c7: 53:09:51:e3:b5:39:36:ff:ae:2f:b2:94:99:91:dd:a5:16:67: 0f:61:f9:5d:18:36:6f:31:c8:3c:0f:cc:a1:22:44:b8:ad:8e: ca:c9:19:9a:9f:84:ea:d3:72:a1:c3:96:ea:ec:df:34:4f:43: 40:26:60:47:25:db:5d:48:45:ac:42:c0:66:c3:ef:7c:30:3b: 4b:99:66:f4:5a:b4:c2:fa:89:c0:dc:20:c9:1a:b6:2d:1f:7d: cc:45:40:a9:78:9f:a0:16:04:30:47:f9:40:80:ea:35:d8:e4: 3c:a5:66:86:1a:c7:91:c9:55:79:8e:db:9d:ad:4f:f8:f7:c3: ed:35:48:66:e9:50:ff:94:a9:35:a4:52:c4:1c:36:60:a3:1c: bd:b5:68:51:ea:3c:47:b9:92:c9:87:49:a3:c8:86:5a:5e:3d: 5c:2f:a8:d9:ae:48:66:56:f4:6f:c8:f2:b1:bd:7b:24:c6:dd: 5b:fa:16:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCOEQxMTAvBgNVBAUTKEJFNjM4MDM3MEY2NDA2RTYzRjc0NkZBRjUyQkM1MDFF QzREMEJENTIwHhcNMjYwMzI1MDYwOTI1WhcNMjYwNDAxMDYwOTI1WjAYMRYwFAYD VQQDEw02OWMzN2MxNS04ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9lkMLFET3iJfn64Q8GDsphKH0gKHuFVSXrL1WeIhkxZmhKf/JTkkPp1GK1L 1CzP8RykMKeVvL2UiEb4id8PCJqRgwX+h11yv7f75b3pX5It7/vTzLP78uU/mf2A ZZgTZIRBJTZR/39OZasrqmhf+o9VUCoVOi7rTbNVditCiqy8L8JfdYFh8VYi6+C9 LSpcr8jTON4hBsIGAnJ2PVT0oIkTke5kCgsyZJVTD/F5Kh7Qa2cWx0KvP/GzzRPm I6WmAyge0beDXLJOYnTbrRYMaHRBb8SZqJGMWknf+JrXMRm/In/v7z/U3muqsRVD F0rT6JEq8Ef5zi9TAiwr1ToS3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvqQ7gz mBYBstYUh/MuMK5eKA6TMB8GA1UdIwQYMBaAFL5jgDcPZAbmP3Rvr1K8UB7E0L1S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUI4RC8xQ0Y5QTg3QTAz RDExMUYwQjIzNEJDMTVDNEY5QUUwMi92bU9BTnc5a0J1WV9kRy12VXJ4UUhzVFF2 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZtT0FOdzlrQnVZX2RHLXZVcnhRSHNUUXZWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUI4RC8xQ0Y5QTg3QTAzRDExMUYwQjIzNEJDMTVDNEY5QUUwMi92bU9BTnc5a0J1 WV9kRy12VXJ4UUhzVFF2VkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANFWbd759f8/rZYdGKB72rZKS/v/D788OeJbCVfZZdkrVxe1DmWkR8TGpNu4T 7zriDYZKeeHEZSlPjynnZQPYSatGeu2DHQ7HUwlR47U5Nv+uL7KUmZHdpRZnD2H5 XRg2bzHIPA/MoSJEuK2OyskZmp+E6tNyocOW6uzfNE9DQCZgRyXbXUhFrELAZsPv fDA7S5lm9Fq0wvqJwNwgyRq2LR99zEVAqXifoBYEMEf5QIDqNdjkPKVmhhrHkclV eY7bna1P+PfD7TVIZulQ/5SpNaRSxBw2YKMcvbVoUeo8R7mSyYdJo8iGWl49XC+o 2a5IZlb0b8jysb17JMbdW/oWyA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:24:56 2026 by rpki-client