$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: Qo8WK+QqKj1ySPtsr2V8nTVKcWRGqAZuEZCAFD6QSdU= Subject key identifier: 74:FD:B2:4E:B7:46:68:11:4E:94:C9:5A:03:F6:2C:11:FC:49:EF:20 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 0508 Signing time: Tue 24 Mar 2026 23:20:41 +0000 Manifest this update: Tue 24 Mar 2026 23:20:41 +0000 Manifest next update: Tue 31 Mar 2026 23:20:41 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: a5bfjHFQRzeCFndP2+uqGkyR7fNFFWbut8lhUVH3NL4=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: qt4s9HBAeJcBPk0Llq0F/Y+xml+HCsgruEcd0L0uDYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Mar 24 23:20:41 2026 GMT Not After : Mar 31 23:20:41 2026 GMT Subject: CN=69c31c49-6e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4c:28:a8:bf:4f:0e:c7:37:3a:a0:3b:ed:f2: 18:43:82:32:31:d6:86:95:a3:3e:3e:e7:3f:1c:f4: 10:d9:a8:ee:19:f1:b4:38:ba:5d:0d:ce:b3:8e:7a: ee:3d:41:78:1d:45:16:26:7a:2d:95:75:62:be:d9: 42:1c:a4:77:28:b6:a4:d1:e6:6f:f7:d9:15:10:10: bf:bc:08:ac:9b:2e:d3:bc:6a:47:0e:f0:bb:96:08: f2:44:40:12:18:92:a7:fe:37:47:c6:b9:b4:54:7e: ba:92:0d:40:bd:c0:34:9e:69:9c:16:30:54:e5:db: ee:26:2c:7f:82:a6:ab:d4:3a:5b:73:ba:d4:f7:43: 48:38:6b:b7:da:ea:46:27:86:03:bf:57:86:09:ba: 74:74:65:3a:00:fa:1f:d4:33:96:78:d3:d3:08:5c: 86:ec:34:a7:25:a2:3e:93:6d:51:fc:6a:2e:e3:0a: d7:f8:ee:f2:31:ce:72:c5:93:c8:3c:49:46:aa:7d: 15:c6:0e:e1:50:3c:87:43:be:4a:90:fa:21:76:6c: 20:fa:56:8e:97:a1:35:72:ec:18:50:cc:16:78:cd: 83:fb:23:54:d7:57:02:da:47:1d:c7:7c:15:28:11: 38:3c:35:c4:18:06:76:be:92:46:1a:23:cf:93:72: 9f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FD:B2:4E:B7:46:68:11:4E:94:C9:5A:03:F6:2C:11:FC:49:EF:20 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:0d:12:52:65:f8:3a:19:3f:88:60:09:e5:e6:fb:b7:f5:46: 6a:2d:37:eb:ef:ad:ac:5a:69:5f:8a:1f:b2:22:07:6e:ce:d0: 22:62:b9:dd:7c:6d:38:89:d9:8b:84:11:27:c1:a4:c8:19:63: 8d:5a:99:ff:0b:5d:ef:74:a5:5d:7b:4d:8a:f1:29:dd:4d:34: 7f:24:90:25:a9:0b:59:33:0f:78:03:9f:04:e1:c7:fa:76:5a: 38:59:17:cb:de:4c:b6:10:ff:8f:a8:b4:8a:10:b4:2c:e6:9f: 19:5b:13:a8:07:22:d5:ee:73:66:c0:01:65:cc:17:b4:7a:7d: cf:97:01:7e:d6:72:3f:7e:cc:d7:a8:39:f3:92:6f:76:cc:22: 86:c6:80:36:13:25:f0:cc:f7:79:86:48:e2:74:17:27:d3:d2: b5:4c:7b:99:b8:5a:80:75:f1:d5:76:55:fe:d0:1d:0c:24:00: 5c:8b:80:5e:61:06:6d:80:8c:63:72:39:de:d4:cd:8c:b1:33: 88:25:51:f2:4b:1b:14:39:b9:05:94:f5:e6:2e:f9:72:46:99: fc:62:f1:ea:50:c1:d5:07:c0:9f:d4:9d:45:f4:b1:bb:5d:02: e9:02:a8:93:9c:e9:0e:0d:a9:43:8a:7c:11:86:39:66:61:0e: 92:68:0e:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjYwMzI0MjMyMDQxWhcNMjYwMzMxMjMyMDQxWjAYMRYwFAYD VQQDEw02OWMzMWM0OS02ZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0woqL9PDsc3OqA77fIYQ4IyMdaGlaM+Puc/HPQQ2ajuGfG0OLpdDc6zjnru PUF4HUUWJnotlXVivtlCHKR3KLak0eZv99kVEBC/vAismy7TvGpHDvC7lgjyREAS GJKn/jdHxrm0VH66kg1AvcA0nmmcFjBU5dvuJix/gqar1Dpbc7rU90NIOGu32upG J4YDv1eGCbp0dGU6APof1DOWeNPTCFyG7DSnJaI+k21R/Gou4wrX+O7yMc5yxZPI PElGqn0Vxg7hUDyHQ75KkPohdmwg+laOl6E1cuwYUMwWeM2D+yNU11cC2kcdx3wV KBE4PDXEGAZ2vpJGGiPPk3KfKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHT9sk63 RmgRTpTJWgP2LBH8Se8gMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhQ0SUmX4Ohk/iGAJ5eb7t/VGai036++trFppX4ofsiIHbs7QImK53XxtOInZ i4QRJ8GkyBljjVqZ/wtd73SlXXtNivEp3U00fySQJakLWTMPeAOfBOHH+nZaOFkX y95MthD/j6i0ihC0LOafGVsTqAci1e5zZsABZcwXtHp9z5cBftZyP37M16g585Jv dswihsaANhMl8Mz3eYZI4nQXJ9PStUx7mbhagHXx1XZV/tAdDCQAXIuAXmEGbYCM Y3I53tTNjLEziCVR8ksbFDm5BZT15i75ckaZ/GLx6lDB1QfAn9SdRfSxu10C6QKo k5zpDg2pQ4p8EYY5ZmEOkmgO6Q== -----END CERTIFICATE-----Generated at Thu Mar 26 05:17:33 2026 by rpki-client