$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: B3dBA5vWRc+6pazVaXTH783JoERE8qTccYGEyL8qzO0= Subject key identifier: 62:4C:19:F7:31:72:B4:59:DB:0F:4E:82:61:E7:5C:9D:C0:FB:B0:72 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 01A6 Signing time: Wed 25 Mar 2026 03:28:40 +0000 Manifest this update: Wed 25 Mar 2026 03:28:39 +0000 Manifest next update: Wed 01 Apr 2026 03:28:39 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: 8klv47t0O2qjRhzYSMFxGrtyx6jix603bB1AVCaBxys=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: kzX0teoGqCYcrXmXpjad2Lv+QKDn7uXbylM76fvPiSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Mar 25 03:28:39 2026 GMT Not After : Apr 1 03:28:39 2026 GMT Subject: CN=69c35668-8378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6a:90:3c:ea:96:62:09:ff:e1:5f:11:15:02: 86:88:b7:cb:43:00:a5:fb:ab:7b:ea:28:42:02:bc: 02:44:1a:eb:c8:17:66:0f:cd:91:79:90:f0:8f:3b: 7a:af:77:a2:96:d5:9b:0e:de:a0:28:19:50:25:65: 7d:ae:55:a8:34:5c:20:94:6c:10:38:6a:3c:4b:88: 8a:b9:11:a2:b5:fb:d9:be:56:32:72:7c:da:6b:6c: 44:0f:fb:bc:cd:5a:47:c4:af:04:c7:29:ae:1f:a2: 7f:bb:03:37:9e:94:1c:09:59:26:5c:70:ae:c4:11: 75:4c:b0:3a:d2:69:0c:d9:8f:ed:39:60:62:4e:db: 90:5b:da:f2:8d:9f:0f:ac:a8:90:ae:79:a9:c2:d4: ae:d2:de:b4:96:a4:58:e1:51:7b:ae:ec:4b:1b:62: eb:97:92:dc:bd:2b:fe:13:a1:f6:e8:71:c5:34:5a: d7:67:9a:4d:65:67:01:80:63:b2:b3:a4:6a:90:23: 5e:da:d2:1e:a4:46:6e:77:0c:81:16:4f:c3:19:32: 05:8b:6b:98:92:31:ed:90:db:d1:de:c5:e7:2c:f8: 89:c1:fc:34:57:53:a8:61:14:9b:1c:ab:71:c0:aa: 57:41:b0:38:5a:9a:db:a0:e9:5d:da:44:bd:00:64: 85:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4C:19:F7:31:72:B4:59:DB:0F:4E:82:61:E7:5C:9D:C0:FB:B0:72 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:b2:37:d4:55:18:7a:94:e8:cd:d9:8e:7a:7f:0d:a6:6c:ad: 0e:c0:1b:a2:f2:3c:08:96:38:a1:04:fa:9d:a5:39:85:18:c8: 09:17:60:7c:16:df:2b:29:32:be:ee:68:4f:04:6a:49:27:db: 73:87:f5:59:fb:b3:ce:5e:0c:0d:93:75:c1:d4:da:38:01:b3: 63:7b:f6:9b:0f:3a:02:29:23:44:3e:80:71:e1:c0:f1:f2:95: 52:c0:d2:57:3b:36:56:09:a2:0d:15:12:6b:d4:d3:7f:4a:3d: 08:c0:3b:51:d0:ae:86:7b:c7:44:7f:8a:ad:1d:78:d6:1f:ab: a3:e0:11:26:d0:e0:fb:44:c8:94:a6:42:cc:bc:24:93:a1:38: 93:df:1f:92:c2:7f:5a:fa:42:8b:2c:5b:c8:bc:88:d3:a6:f9: 05:bd:b8:29:16:98:3b:17:62:e9:d0:96:30:d1:98:8d:29:ac: 7e:e1:22:87:dc:6a:2d:ec:12:ca:00:9e:ee:94:cb:83:e1:0f: b5:39:de:9a:0e:1d:a1:be:7b:c6:40:7b:c1:01:cc:2c:66:35: 0a:af:b5:68:52:8c:4b:e8:11:82:89:9a:ca:ee:ac:f0:da:c4: da:c5:90:eb:33:d7:ee:4d:a1:3b:98:d6:43:2e:df:1a:c5:b8: 90:f4:c9:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjYwMzI1MDMyODM5WhcNMjYwNDAxMDMyODM5WjAYMRYwFAYD VQQDEw02OWMzNTY2OC04Mzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmqQPOqWYgn/4V8RFQKGiLfLQwCl+6t76ihCArwCRBrryBdmD82ReZDwjzt6 r3eiltWbDt6gKBlQJWV9rlWoNFwglGwQOGo8S4iKuRGitfvZvlYycnzaa2xED/u8 zVpHxK8ExymuH6J/uwM3npQcCVkmXHCuxBF1TLA60mkM2Y/tOWBiTtuQW9ryjZ8P rKiQrnmpwtSu0t60lqRY4VF7ruxLG2Lrl5LcvSv+E6H26HHFNFrXZ5pNZWcBgGOy s6RqkCNe2tIepEZudwyBFk/DGTIFi2uYkjHtkNvR3sXnLPiJwfw0V1OoYRSbHKtx wKpXQbA4WprboOld2kS9AGSFmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGJMGfcx crRZ2w9OgmHnXJ3A+7ByMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAebI31FUYepTozdmOen8NpmytDsAbovI8CJY4oQT6naU5hRjICRdgfBbfKyky vu5oTwRqSSfbc4f1Wfuzzl4MDZN1wdTaOAGzY3v2mw86AikjRD6AceHA8fKVUsDS Vzs2VgmiDRUSa9TTf0o9CMA7UdCuhnvHRH+KrR141h+ro+ARJtDg+0TIlKZCzLwk k6E4k98fksJ/WvpCiyxbyLyI06b5Bb24KRaYOxdi6dCWMNGYjSmsfuEih9xqLewS ygCe7pTLg+EPtTnemg4dob57xkB7wQHMLGY1Cq+1aFKMS+gRgomayu6s8NrE2sWQ 6zPX7k2hO5jWQy7fGsW4kPTJ7Q== -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:40 2026 by rpki-client