$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: CyX+H7ENp1S/b0bp0O+GTrKYx85Umv+9U/gU4h9wfLQ= Subject key identifier: 02:4A:6D:BB:9C:E0:7F:6E:C6:C3:F9:36:AA:20:4D:77:6B:86:1F:1D Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0CCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0CA5 Signing time: Tue 24 Mar 2026 18:22:24 +0000 Manifest this update: Tue 24 Mar 2026 18:22:24 +0000 Manifest next update: Tue 31 Mar 2026 18:22:24 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: YO55FFK3UZ9OF9CaCdFeQ+Ij6y8DyiQd8vVY+13TIe4=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: 4GtPeohLS8OTUPDc8RgozS35ewcE3lUXQAukx2eqQRw=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: pUo1M6Sm4lp9c2XrgF+LDSj3mLXP2pG6wm3MhRuMa6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Mar 24 18:22:24 2026 GMT Not After : Mar 31 18:22:24 2026 GMT Subject: CN=69c2d660-e485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:3d:af:3c:02:1b:66:e4:ba:30:1d:22:a0: d1:7c:1e:38:5f:d6:4a:58:cd:ac:bb:29:0f:e9:47: e0:13:44:3c:72:35:4e:03:6c:b2:06:3d:73:4c:36: aa:b0:d6:16:7e:3c:2c:67:bd:4c:7e:ff:ae:c2:bb: cc:a6:de:e2:86:79:93:d4:23:6f:6f:81:d3:c6:8e: 6f:7b:bf:be:6e:0e:f4:92:c1:ee:4d:da:dd:f8:b5: 95:bf:16:03:9c:41:ec:50:14:7d:f0:7c:1a:ef:af: 69:74:b6:67:17:46:e6:e6:0d:b8:c4:4e:c5:08:49: 41:de:41:c8:1d:a3:d8:dd:83:9f:0c:b1:4e:0a:7c: 45:86:1e:09:ae:19:44:b3:59:3b:40:9e:be:10:72: ab:93:49:0f:e5:49:1c:8a:03:59:11:51:d6:23:cd: 45:b6:69:ba:da:a7:bd:76:33:9f:b5:62:cc:75:1e: e5:11:ff:9c:d0:fb:a1:31:f4:17:57:3b:02:17:87: cd:56:45:7e:0d:19:a2:97:15:be:72:94:7f:64:40: 30:eb:13:37:97:dd:12:e8:a8:c6:7f:fb:9b:2a:45: 0f:b4:38:e0:a1:88:a3:a7:fc:63:3b:d6:67:4a:8c: 36:70:dc:3d:de:40:ae:06:74:8d:db:79:5d:77:37: b5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4A:6D:BB:9C:E0:7F:6E:C6:C3:F9:36:AA:20:4D:77:6B:86:1F:1D X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ed:bf:c6:3f:75:4b:81:53:5e:5d:6f:1d:aa:2c:e6:65:40: 12:b9:ff:8a:87:1d:f4:a0:f3:1c:a0:13:1e:20:71:a5:22:0a: 93:9a:0d:22:0c:50:81:6e:d9:35:82:e9:e3:33:e7:72:73:17: b8:07:90:3b:55:fd:ca:a9:f4:1c:6c:76:4d:14:63:6e:10:00: 51:49:bf:b9:25:0a:b8:d5:4e:a2:2f:b1:84:fd:a3:bc:d5:0a: 57:ee:e9:08:12:f8:6e:f5:ce:26:a8:40:4f:12:fa:71:84:7c: 41:5c:16:e4:c4:a3:e6:e4:9a:8d:63:01:29:90:72:be:28:0e: 33:19:eb:0f:cc:0f:1f:c3:ad:2a:4a:d7:3f:9c:75:4d:9b:45: f3:f3:56:e2:43:1b:55:d1:9f:55:a9:17:e6:35:06:b8:a2:02: 1a:31:2b:01:1e:23:bc:8b:dc:9e:9d:7c:86:0d:c7:9f:fc:04: bf:63:bb:05:79:a6:0a:12:43:e9:69:36:87:06:76:24:9f:60: 4f:06:0a:d3:5f:fa:9a:f0:a2:92:e1:4b:db:c9:e7:12:6e:b3: 95:d5:02:64:8c:22:05:c5:a7:e1:da:31:77:53:f3:fc:85:ca: a4:3d:f4:1c:a7:3a:7b:f2:eb:ba:6d:33:49:0f:21:a5:ba:83: 23:f6:a1:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjYwMzI0MTgyMjI0WhcNMjYwMzMxMTgyMjI0WjAYMRYwFAYD VQQDEw02OWMyZDY2MC1lNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhI9rzwCG2bkujAdIqDRfB44X9ZKWM2suykP6UfgE0Q8cjVOA2yyBj1zTDaq sNYWfjwsZ71Mfv+uwrvMpt7ihnmT1CNvb4HTxo5ve7++bg70ksHuTdrd+LWVvxYD nEHsUBR98Hwa769pdLZnF0bm5g24xE7FCElB3kHIHaPY3YOfDLFOCnxFhh4JrhlE s1k7QJ6+EHKrk0kP5UkcigNZEVHWI81Ftmm62qe9djOftWLMdR7lEf+c0PuhMfQX VzsCF4fNVkV+DRmilxW+cpR/ZEAw6xM3l90S6KjGf/ubKkUPtDjgoYijp/xjO9Zn Sow2cNw93kCuBnSN23lddze1HQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAJKbbuc 4H9uxsP5NqogTXdrhh8dMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdu2/xj91S4FTXl1vHaos5mVAErn/iocd9KDzHKATHiBxpSIKk5oNIgxQgW7Z NYLp4zPncnMXuAeQO1X9yqn0HGx2TRRjbhAAUUm/uSUKuNVOoi+xhP2jvNUKV+7p CBL4bvXOJqhATxL6cYR8QVwW5MSj5uSajWMBKZByvigOMxnrD8wPH8OtKkrXP5x1 TZtF8/NW4kMbVdGfVakX5jUGuKICGjErAR4jvIvcnp18hg3Hn/wEv2O7BXmmChJD 6Wk2hwZ2JJ9gTwYK01/6mvCikuFL28nnEm6zldUCZIwiBcWn4doxd1Pz/IXKpD30 HKc6e/Lrum0zSQ8hpbqDI/ahmA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:55:52 2026 by rpki-client