$ rpki-client -vvf rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft File: 8D39OxYGRUyhuoaQPnmtpwULoWo.mft (raw, json) Hash identifier: /E+fI0E8x9FPQxCqXX/MoKfOYb6Xbt5FIe+kQMCMDGI= Subject key identifier: F3:BF:43:8D:7E:86:22:B7:82:55:DF:35:AC:14:67:AB:85:61:05:E1 Authority key identifier: F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A Certificate issuer: /CN=A9172C46/serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft Manifest number: 7F Signing time: Wed 25 Mar 2026 06:59:20 +0000 Manifest this update: Wed 25 Mar 2026 06:59:19 +0000 Manifest next update: Wed 01 Apr 2026 06:59:19 +0000 Files and hashes: 1: 8D39OxYGRUyhuoaQPnmtpwULoWo.crl (hash: ccdUu9X1X/biuzdJdEHj7uCR9lRC4g9m/3YRjR2e8Cc=) 2: 2E834C9C719311F08B21BD17C4F9AE02.roa (hash: xEZaltAHs6xaDqIw8s6QyjFcPbvBRTphdFeEPXv0CYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172C46, serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Validity Not Before: Mar 25 06:59:19 2026 GMT Not After : Apr 1 06:59:19 2026 GMT Subject: CN=69c387c8-c25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f1:ba:77:b2:1e:61:00:2c:c8:b0:6a:1d:f3: 80:55:59:3c:5a:e2:d6:45:b2:6a:41:8b:44:c1:d5: ef:da:d0:79:45:c1:e1:26:e9:95:b5:9b:46:df:a6: c8:47:83:ac:aa:d1:0e:1a:54:81:96:38:5a:20:88: f5:c5:57:5b:78:ba:1f:3e:95:54:00:5f:ed:e7:3a: 54:f5:e7:51:27:04:ee:7d:10:1f:2e:01:3a:e9:d4: b5:1b:38:2b:b7:39:6a:07:70:9e:5e:67:c7:0e:d3: 9b:e6:a3:df:49:ab:4a:1d:23:b2:02:d8:50:b2:4d: 30:fa:42:10:1d:21:80:5c:ef:a2:54:4d:46:0c:a5: 61:54:42:75:51:25:84:8a:14:de:fa:1e:3d:dc:de: ad:53:5b:bf:59:bc:0e:85:65:2b:80:63:a6:05:03: f8:db:2f:72:03:3a:23:12:82:ca:e6:89:fa:6c:cd: 9a:fd:7b:6f:a1:fd:a6:22:bc:81:68:0c:d6:72:da: 2a:cf:86:ed:5d:bc:a3:de:0d:8a:b8:ad:b5:21:95: 42:26:53:53:1b:1e:9e:5d:1a:39:22:c2:1c:7c:ef: 3f:44:a7:d5:26:7c:db:c6:42:71:c4:b7:6b:49:b8: 08:17:90:d3:14:39:8e:92:7b:64:4e:a0:43:16:15: a9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BF:43:8D:7E:86:22:B7:82:55:DF:35:AC:14:67:AB:85:61:05:E1 X509v3 Authority Key Identifier: keyid:F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:f2:b9:81:c1:20:1c:5f:a4:a7:67:ce:c8:29:96:81:96:97: 45:19:d7:ec:30:e8:a3:4c:28:72:4d:52:7a:9a:f8:01:68:c6: 45:32:da:c2:99:bc:2e:0f:2d:3b:b1:1e:18:ef:3f:10:78:4c: 61:0d:2a:93:52:28:0e:82:49:2a:0d:b3:6c:4d:d7:94:7d:80: 81:ba:6d:19:ca:9a:8b:d0:83:e9:13:92:42:5b:51:c1:2d:40: eb:08:8e:98:35:47:b8:fe:68:a7:71:2e:e5:b5:9a:2a:fc:45: b7:a4:f4:a2:e7:36:cc:5a:e2:20:aa:2b:fb:fe:d1:33:ac:38: 43:82:d8:8d:9b:90:08:88:89:3d:59:94:73:36:fa:30:5c:1d: e0:e9:9d:81:f1:be:dc:4a:3d:75:97:6f:6a:e1:db:aa:10:00: e5:ae:43:dd:23:6d:19:c2:2b:dd:d3:34:9b:f8:7f:f5:70:23: 79:0e:a9:c2:7e:55:46:72:4a:25:09:96:eb:94:81:9a:51:b8: 24:a1:fe:6e:38:93:91:4c:3f:ce:2f:2a:5a:a8:84:a8:48:7e: 48:a0:a2:47:14:22:72:cb:8b:c2:00:30:42:66:f0:11:08:c2: 4c:7a:4c:47:7a:6a:93:f6:3f:64:b1:06:59:e8:9b:a1:fa:ce: 0d:46:e4:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDNDYxMTAvBgNVBAUTKEYwM0RGRDNCMTYwNjQ1NENBMUJBODY5MDNFNzlBREE3 MDUwQkExNkEwHhcNMjYwMzI1MDY1OTE5WhcNMjYwNDAxMDY1OTE5WjAYMRYwFAYD VQQDEw02OWMzODdjOC1jMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlfG6d7IeYQAsyLBqHfOAVVk8WuLWRbJqQYtEwdXv2tB5RcHhJumVtZtG36bI R4OsqtEOGlSBljhaIIj1xVdbeLofPpVUAF/t5zpU9edRJwTufRAfLgE66dS1Gzgr tzlqB3CeXmfHDtOb5qPfSatKHSOyAthQsk0w+kIQHSGAXO+iVE1GDKVhVEJ1USWE ihTe+h493N6tU1u/WbwOhWUrgGOmBQP42y9yAzojEoLK5on6bM2a/Xtvof2mIryB aAzWctoqz4btXbyj3g2KuK21IZVCJlNTGx6eXRo5IsIcfO8/RKfVJnzbxkJxxLdr SbgIF5DTFDmOkntkTqBDFhWp/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPO/Q41+ hiK3glXfNawUZ6uFYQXhMB8GA1UdIwQYMBaAFPA9/TsWBkVMobqGkD55racFC6Fq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkM0Ni85MDAzODlGRTcx MEQxMUYwODA4MzQ1MkZDNEY5QUUwMi84RDM5T3hZR1JVeWh1b2FRUG5tdHB3VUxv V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhEMzlPeFlHUlV5aHVvYVFQbm10cHdVTG9Xby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkM0Ni85MDAzODlGRTcxMEQxMUYwODA4MzQ1MkZDNEY5QUUwMi84RDM5T3hZR1JV eWh1b2FRUG5tdHB3VUxvV28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp/K5gcEgHF+kp2fOyCmWgZaXRRnX7DDoo0wock1Sepr4AWjGRTLawpm8Lg8t O7EeGO8/EHhMYQ0qk1IoDoJJKg2zbE3XlH2AgbptGcqai9CD6ROSQltRwS1A6wiO mDVHuP5op3Eu5bWaKvxFt6T0ouc2zFriIKor+/7RM6w4Q4LYjZuQCIiJPVmUczb6 MFwd4OmdgfG+3Eo9dZdvauHbqhAA5a5D3SNtGcIr3dM0m/h/9XAjeQ6pwn5VRnJK JQmW65SBmlG4JKH+bjiTkUw/zi8qWqiEqEh+SKCiRxQicsuLwgAwQmbwEQjCTHpM R3pqk/Y/ZLEGWeibofrODUbkAQ== -----END CERTIFICATE-----Generated at Thu Mar 26 23:44:43 2026 by rpki-client