$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: uryYbHTM5IZgXu5nWy1UmMN8jOYgVhKkIfSALUp+Jbs= Subject key identifier: 18:C5:4D:14:DB:08:97:3F:E9:34:17:C0:C6:3C:DC:54:0D:87:73:4F Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 0526 Signing time: Tue 24 Mar 2026 23:15:08 +0000 Manifest this update: Tue 24 Mar 2026 23:15:08 +0000 Manifest next update: Tue 31 Mar 2026 23:15:08 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: lOropFtkWA2FPLDAMI9NRePj5oJem8fU+0vSpS8x1kk=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: KHvp9huWR6D7V1yi6kkJocjAT/BK4ewK1tFBURi132k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Mar 24 23:15:08 2026 GMT Not After : Mar 31 23:15:08 2026 GMT Subject: CN=69c31afc-b563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:e4:5d:a7:73:06:ea:5a:4a:6a:38:12:6b: fa:49:55:d7:4b:bd:a6:d5:05:e0:94:09:c7:16:3a: 32:12:11:e6:bd:ea:46:6f:ab:82:02:ce:24:0c:22: 30:44:53:11:b8:dd:a0:8c:ad:20:f6:01:a8:9f:58: 4c:9c:41:1e:d4:b6:e5:88:89:12:67:22:90:01:4e: 2e:ae:43:cc:91:25:26:6c:83:a7:a3:ca:8e:9c:ab: ee:4f:97:78:92:44:cd:34:a4:85:c4:23:a7:57:70: 8f:88:08:44:3d:64:99:03:40:d6:af:14:3e:40:6d: ef:e3:c1:45:26:76:82:89:60:dc:62:ab:a1:e5:e8: 17:35:77:1d:a3:ab:f8:c8:12:d9:b6:dd:7b:da:48: ad:98:4b:0e:db:7c:a1:40:90:f7:55:56:72:94:cf: 8c:ee:e4:1f:c9:74:ba:77:28:7b:2a:5d:6e:0b:3a: 38:2c:a8:05:6c:61:5c:87:bb:f0:7a:25:3f:25:4c: 56:14:7b:ff:7e:09:12:dc:30:4a:3b:1d:4d:0e:f5: 2e:0e:4d:be:63:ca:88:ae:f6:41:a8:e2:81:dc:09: fa:ce:5a:8d:d7:55:fd:0e:44:70:48:93:95:10:e5: 33:cb:f7:70:fd:f8:3b:35:76:1f:3c:34:04:28:80: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C5:4D:14:DB:08:97:3F:E9:34:17:C0:C6:3C:DC:54:0D:87:73:4F X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:dd:a2:07:25:ff:dc:8f:60:21:a1:3d:1b:b9:2a:b7:72:bc: b6:65:fb:53:82:60:8c:98:f8:7e:34:3e:2f:d3:1d:bf:10:e5: 0f:17:ce:89:30:ca:3c:26:4c:fd:f7:fa:3d:7b:30:52:c6:cc: d2:28:05:50:c8:85:14:a1:48:ee:e6:95:a2:d8:b2:9d:41:ca: 5b:dc:68:ab:9b:22:9a:7e:1d:6c:7b:e9:98:4e:da:b8:cd:da: 7d:95:1d:ac:27:6a:dc:e9:ba:55:1f:2a:97:a1:6a:09:a2:3c: fe:86:2b:49:6d:db:3b:f6:71:08:1f:56:09:84:26:5a:b0:f5: c0:54:e2:9c:02:4e:c8:49:18:e3:c2:5f:34:52:ee:8d:f8:e1: 9b:5e:91:22:af:ab:6a:06:cf:d2:3a:c4:72:ea:31:18:7b:4c: 6b:c8:48:3b:05:ff:28:92:6e:69:2c:f3:59:32:1a:31:18:84: b3:ee:cf:11:f9:e3:3a:ba:71:99:26:58:8d:bf:d5:e1:e3:15: 0d:cf:60:3a:b3:c7:ea:13:aa:0f:fd:6e:ef:f3:80:1d:a6:fd: a6:a3:d6:8b:e5:21:ad:1b:f5:0a:55:2a:e4:1b:1d:1b:49:2c: f2:8e:99:c3:85:f7:35:78:d3:fa:a2:0e:93:81:28:3a:8e:19: 31:f7:4d:ad -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjYwMzI0MjMxNTA4WhcNMjYwMzMxMjMxNTA4WjAYMRYwFAYD VQQDEw02OWMzMWFmYy1iNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGfkXadzBupaSmo4Emv6SVXXS72m1QXglAnHFjoyEhHmvepGb6uCAs4kDCIw RFMRuN2gjK0g9gGon1hMnEEe1LbliIkSZyKQAU4urkPMkSUmbIOno8qOnKvuT5d4 kkTNNKSFxCOnV3CPiAhEPWSZA0DWrxQ+QG3v48FFJnaCiWDcYquh5egXNXcdo6v4 yBLZtt172kitmEsO23yhQJD3VVZylM+M7uQfyXS6dyh7Kl1uCzo4LKgFbGFch7vw eiU/JUxWFHv/fgkS3DBKOx1NDvUuDk2+Y8qIrvZBqOKB3An6zlqN11X9DkRwSJOV EOUzy/dw/fg7NXYfPDQEKICtJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBjFTRTb CJc/6TQXwMY83FQNh3NPMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQd2iByX/3I9gIaE9G7kqt3K8tmX7U4JgjJj4fjQ+L9MdvxDlDxfOiTDKPCZM /ff6PXswUsbM0igFUMiFFKFI7uaVotiynUHKW9xoq5simn4dbHvpmE7auM3afZUd rCdq3Om6VR8ql6FqCaI8/oYrSW3bO/ZxCB9WCYQmWrD1wFTinAJOyEkY48JfNFLu jfjhm16RIq+ragbP0jrEcuoxGHtMa8hIOwX/KJJuaSzzWTIaMRiEs+7PEfnjOrpx mSZYjb/V4eMVDc9gOrPH6hOqD/1u7/OAHab9pqPWi+UhrRv1ClUq5BsdG0ks8o6Z w4X3NXjT+qIOk4EoOo4ZMfdNrQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:19:53 2026 by rpki-client