$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: pCIgy9wq8PQ4LFVtrPJXBj4oE7sbwtOeVY6SFHYZfNw= Subject key identifier: F5:75:88:D5:3B:0F:F7:F0:34:71:5F:02:F0:76:36:69:A5:6E:91:CC Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0235 Signing time: Wed 25 Mar 2026 02:04:22 +0000 Manifest this update: Wed 25 Mar 2026 02:04:22 +0000 Manifest next update: Wed 01 Apr 2026 02:04:22 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: qfK0SU/JatTM3OIEHybPP9NOw9y+1J7bWjrskFYVUdI=) 2: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: TpOlOMkvGiREuIISjlFyTVVAuVCoOvxydJx/Up02XYA=) 3: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: +Q8so6nPeyC4+0wToagHFxd2QuGw1JN2hZ9q0eoOoGI=) 4: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: QT/TXvlvue3wQ8fY3ahassV2Ju9ScJLofOE2xUpi/GI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Mar 25 02:04:22 2026 GMT Not After : Apr 1 02:04:22 2026 GMT Subject: CN=69c342a6-4d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f4:7c:36:4b:d4:12:5a:34:32:ac:b8:8f:f3: 63:9d:92:9b:c1:07:0b:74:62:92:c2:76:a4:f0:91: bb:fc:a4:8a:25:07:ce:4a:89:46:43:4d:82:0f:4c: 04:5b:85:42:d1:71:e2:04:35:10:a8:ca:4e:fa:69: 84:5b:96:90:b4:d5:8a:7b:62:b5:f9:5c:46:b7:7b: af:40:c6:a2:86:a0:9a:37:19:e2:7e:83:a3:a3:6f: 6e:13:5d:30:07:34:d2:00:a9:9a:32:25:e6:23:61: 91:74:7a:5f:fa:00:d8:03:6d:4a:25:71:10:06:ae: f6:bd:f0:ab:93:9a:f2:40:5f:2a:98:2c:86:4b:9e: f2:07:89:d4:7e:9b:41:d0:54:18:6d:80:b5:e2:35: 7d:20:41:10:84:c9:b9:12:d2:3d:27:25:47:df:97: c1:dc:10:20:bf:cf:32:c0:8d:ac:5c:9e:31:fc:a8: 88:d4:e9:00:72:df:1b:2e:34:e0:62:b5:94:6d:6e: 0c:fe:42:ec:d0:a4:23:98:ce:a9:f2:f3:9a:98:47: 45:4b:b0:0a:89:69:36:94:72:55:d5:be:3a:28:ec: c0:8a:11:d4:e6:e5:03:b6:06:2f:bf:6e:90:18:b7: 2c:93:99:8c:62:29:7d:51:39:cc:ce:b3:c9:c7:d0: 06:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:75:88:D5:3B:0F:F7:F0:34:71:5F:02:F0:76:36:69:A5:6E:91:CC X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:f3:8d:72:bf:e9:9b:bc:50:51:23:16:7d:0d:11:c2:ac:9d: ad:f3:b9:2c:36:6c:5f:2b:ee:25:2c:82:af:f1:08:b6:63:39: 75:c8:6f:c1:7a:22:50:dd:b3:bd:75:eb:36:ba:a4:65:73:29: d4:73:ba:30:2a:61:68:41:b8:db:fd:9a:2b:ed:c2:9f:f5:33: 2a:e2:02:fc:1f:dd:37:16:f7:4c:81:17:da:f4:8a:8d:79:99: 3a:f9:a8:5a:39:0c:a0:b1:c5:d5:14:70:8f:d6:4e:d0:00:c0: 07:e5:50:0e:3c:19:37:6f:74:db:6a:17:88:af:c9:3e:b7:18: 0e:59:df:ef:43:68:95:5c:1a:9e:e8:e7:45:3e:7b:19:de:f7: 67:e9:51:42:2d:fb:2a:b3:06:eb:ad:d3:d3:c9:7c:47:60:44: 1b:69:56:cb:e9:b4:3a:5a:2c:cf:a6:0e:4a:d0:2d:3a:3b:7b: 43:46:e9:fd:55:c9:af:0a:7f:d8:d8:51:82:5b:dc:9f:94:66: b7:a7:36:4b:d3:49:ea:3d:98:00:dc:d2:0c:fe:dd:40:37:79: c6:17:7e:43:8f:a7:0d:7b:f2:40:6c:95:ec:a8:60:b0:4e:7e: e1:54:4f:59:48:b0:fb:23:f1:d9:19:a2:08:24:e5:b4:ae:86: 3c:0e:ef:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjYwMzI1MDIwNDIyWhcNMjYwNDAxMDIwNDIyWjAYMRYwFAYD VQQDEw02OWMzNDJhNi00ZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPR8NkvUElo0Mqy4j/NjnZKbwQcLdGKSwnak8JG7/KSKJQfOSolGQ02CD0wE W4VC0XHiBDUQqMpO+mmEW5aQtNWKe2K1+VxGt3uvQMaihqCaNxnifoOjo29uE10w BzTSAKmaMiXmI2GRdHpf+gDYA21KJXEQBq72vfCrk5ryQF8qmCyGS57yB4nUfptB 0FQYbYC14jV9IEEQhMm5EtI9JyVH35fB3BAgv88ywI2sXJ4x/KiI1OkAct8bLjTg YrWUbW4M/kLs0KQjmM6p8vOamEdFS7AKiWk2lHJV1b46KOzAihHU5uUDtgYvv26Q GLcsk5mMYil9UTnMzrPJx9AG/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPV1iNU7 D/fwNHFfAvB2NmmlbpHMMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA5vONcr/pm7xQUSMWfQ0RwqydrfO5LDZsXyvuJSyCr/EItmM5dchvwXoiUN2z vXXrNrqkZXMp1HO6MCphaEG42/2aK+3Cn/UzKuIC/B/dNxb3TIEX2vSKjXmZOvmo WjkMoLHF1RRwj9ZO0ADAB+VQDjwZN29022oXiK/JPrcYDlnf70NolVwanujnRT57 Gd73Z+lRQi37KrMG663T08l8R2BEG2lWy+m0Olosz6YOStAtOjt7Q0bp/VXJrwp/ 2NhRglvcn5Rmt6c2S9NJ6j2YANzSDP7dQDd5xhd+Q4+nDXvyQGyV7KhgsE5+4VRP WUiw+yPx2RmiCCTltK6GPA7v4Q== -----END CERTIFICATE-----Generated at Thu Mar 26 04:17:39 2026 by rpki-client