$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: D9HCIMyxn/cIbaxjbi52h7ynWXCFVqQbN4p4v4fgdC4= Subject key identifier: 0B:AA:BC:B4:21:7C:B1:FF:F6:F3:2E:36:1E:B6:5D:27:37:72:CB:AA Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: 012C Signing time: Wed 25 Mar 2026 04:51:22 +0000 Manifest this update: Wed 25 Mar 2026 04:51:21 +0000 Manifest next update: Wed 01 Apr 2026 04:51:21 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: 8ZMB1z3ePdn4pGIpwHie0bHI6g40E+/+vzm8eTRxl8o=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: GoBUmsaixA+94AMiq1K0M2Do/VJgCC/YQV6fr/kdH1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Mar 25 04:51:21 2026 GMT Not After : Apr 1 04:51:21 2026 GMT Subject: CN=69c369ca-da27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:69:22:87:d4:f4:5b:86:79:ef:6d:0e:f2:c8: f9:a1:05:e4:39:a1:7c:0c:e1:5b:b6:d3:3c:d2:92: 56:bf:fd:ab:a4:2f:ab:8e:23:68:13:c3:f6:14:be: b7:50:d4:cf:bd:b5:71:85:c3:16:60:da:e6:be:31: 45:83:3c:35:b4:c3:dc:d8:62:fa:89:cf:c6:b1:fa: 4f:69:a5:6b:f7:6c:ab:37:49:4e:3f:ba:b3:a4:30: 52:78:07:3d:2e:29:d8:f7:bb:7d:49:55:34:8e:94: 7a:17:23:90:e2:5f:dd:c9:44:e4:86:85:a4:2a:aa: 84:83:81:8a:08:64:a4:61:e4:b7:ad:d6:2b:1c:8d: e4:6c:e3:27:15:ad:d5:e7:6b:38:8f:a6:2a:f0:9c: b3:ce:ab:2f:90:9e:36:6f:c0:32:dc:ae:3e:a5:e9: e0:b1:0d:b3:20:2d:ce:72:13:76:0c:ac:ab:3e:cd: 2a:14:aa:2b:10:19:1a:c0:03:3c:fa:13:36:82:a5: df:cb:a3:7b:19:e7:5a:48:d9:29:22:5e:91:ce:2a: 64:68:05:9e:8a:43:9e:e8:f5:70:fd:24:b4:34:8b: 10:0b:c8:cb:31:8c:1d:46:5c:36:41:1c:75:cb:2a: 3d:90:64:e1:ed:45:bd:24:8b:c2:0f:90:96:7c:f7: b5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AA:BC:B4:21:7C:B1:FF:F6:F3:2E:36:1E:B6:5D:27:37:72:CB:AA X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:89:1e:3e:92:69:70:70:2d:54:f1:b8:9b:e4:b0:5f:d3:a3: 9e:1b:2c:12:19:73:09:67:52:65:36:b0:12:f1:2f:80:ec:44: 6d:a3:e1:ab:0a:e7:e4:c9:e8:50:45:3d:d1:c8:b3:33:6a:24: d5:0b:14:7b:d0:2c:b9:63:10:50:c1:13:fb:99:bd:54:a4:53: c9:09:89:f0:ef:12:69:7f:48:7b:30:31:cb:32:13:ba:72:10: c1:e9:be:2c:5a:7c:43:6e:7d:63:23:83:78:7a:2e:a1:92:f8: 1e:18:4b:6f:84:ba:a9:c0:07:88:65:a5:42:0a:ad:54:59:41: e5:aa:4f:f6:75:d3:8c:d6:e1:79:03:8f:b6:72:9e:da:53:e8: 0a:30:41:c8:2c:fe:1b:4c:63:cb:4d:93:51:8e:c0:0b:de:9f: 89:d5:62:35:23:6b:64:9d:f1:fb:d9:0d:ce:47:2e:27:48:83: ef:e9:7b:dd:bf:4d:be:30:00:dd:66:4d:ad:77:31:cc:8a:81: 51:0f:cf:18:57:48:ff:53:34:f2:42:94:d6:6b:92:d4:2c:c3: d9:e1:47:93:37:77:0b:9b:2b:72:d9:c4:ea:93:e6:72:aa:6e: d3:eb:9c:30:a1:15:be:c3:05:4c:80:9d:44:29:53:a3:a1:17: 35:2a:14:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjYwMzI1MDQ1MTIxWhcNMjYwNDAxMDQ1MTIxWjAYMRYwFAYD VQQDEw02OWMzNjljYS1kYTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiWkih9T0W4Z5720O8sj5oQXkOaF8DOFbttM80pJWv/2rpC+rjiNoE8P2FL63 UNTPvbVxhcMWYNrmvjFFgzw1tMPc2GL6ic/GsfpPaaVr92yrN0lOP7qzpDBSeAc9 LinY97t9SVU0jpR6FyOQ4l/dyUTkhoWkKqqEg4GKCGSkYeS3rdYrHI3kbOMnFa3V 52s4j6Yq8JyzzqsvkJ42b8Ay3K4+pengsQ2zIC3OchN2DKyrPs0qFKorEBkawAM8 +hM2gqXfy6N7GedaSNkpIl6RzipkaAWeikOe6PVw/SS0NIsQC8jLMYwdRlw2QRx1 yyo9kGTh7UW9JIvCD5CWfPe1UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAuqvLQh fLH/9vMuNh62XSc3csuqMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZokePpJpcHAtVPG4m+SwX9OjnhssEhlzCWdSZTawEvEvgOxEbaPhqwrn5Mno UEU90cizM2ok1QsUe9AsuWMQUMET+5m9VKRTyQmJ8O8SaX9IezAxyzITunIQwem+ LFp8Q259YyODeHouoZL4HhhLb4S6qcAHiGWlQgqtVFlB5apP9nXTjNbheQOPtnKe 2lPoCjBByCz+G0xjy02TUY7AC96fidViNSNrZJ3x+9kNzkcuJ0iD7+l73b9NvjAA 3WZNrXcxzIqBUQ/PGFdI/1M08kKU1muS1CzD2eFHkzd3C5srctnE6pPmcqpu0+uc MKEVvsMFTICdRClTo6EXNSoUcw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:34:19 2026 by rpki-client