$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: jerNo+YiJkoV3Oq5QXkmYxbKtu+GAWNcgQYPT7uXPUQ= Subject key identifier: A2:5C:C3:CD:E6:D1:FB:7A:8A:19:97:34:5E:E2:4E:F7:6F:AE:C6:55 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0D09 Signing time: Tue 24 Mar 2026 18:08:05 +0000 Manifest this update: Tue 24 Mar 2026 18:08:05 +0000 Manifest next update: Tue 31 Mar 2026 18:08:05 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: Rq6tpV/hNRvwdLa3nqpOouJKnjk8e40vw35zdvKXX58=) 2: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 0K2FVxGUCok0THMVBJfOUwq75tBpXjABY8rj5QwPc6w=) 3: 430342A4C02B11EA85244830C4F9AE02.roa (hash: YAO0UnDpIZbyVXdmfYYOuYA82NNvp7ggEwgpiP6F4Bk=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: 0sjZzbtNPaRKIT8BWTNvX39eUNvRnj582Bf5dTCbgrM=) 5: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: rJLxdr4XZ4oqpkH7S/LP6Q9L0HTP8eSINSv/SKNt+vc=) 6: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: mRpEBKmKyN90J4ooDi4lVCO6RHEBTfUlYtWenKg0wlw=) 7: E0848D606F7611EDB491621FC4F9AE02.roa (hash: xiW1z5MnYSbZsJleNKbRUxhfgx/8JzW+eccLEQ4prS4=) 8: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: qfOd2NsPmW/dThRfgUKaZ/2OAjQ7wZ+VSVJWExUQjSo=) 9: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: 3Nv/ZHqsawJ0Jp2g16W+htBijpcWto8dbP6tcgAmIIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:08:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3426 (0xd62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Mar 24 18:08:05 2026 GMT Not After : Mar 31 18:08:05 2026 GMT Subject: CN=69c2d305-417c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d2:8a:a7:ae:72:df:e6:ea:96:f3:86:9e:5c: b9:f4:09:07:1d:20:52:f5:47:02:4e:20:7e:97:ad: 15:6c:68:37:7c:03:6c:d8:ef:9d:e0:02:dc:e3:d8: db:4e:76:91:58:56:01:6a:68:33:f8:7e:6c:48:f7: bf:f2:83:5b:bd:ba:c1:cf:f4:fa:18:a2:0b:b4:fa: 7e:e9:9e:3d:55:20:53:d5:69:6f:69:6b:d7:23:e2: 97:d7:7c:f8:d7:a9:c4:09:60:1e:de:71:47:ed:bf: 64:6c:35:02:d5:a4:f3:ee:4e:4b:a3:a9:f4:c7:a8: 02:d1:da:4a:44:aa:3f:eb:39:e9:0d:fc:19:32:95: f2:49:44:ea:27:4d:6a:a4:29:f6:ca:b3:e4:40:d2: 7f:22:e6:4c:37:cd:95:89:b8:ff:44:16:09:32:ce: 02:79:de:57:82:3f:d0:84:39:82:5a:8e:e0:2d:65: a3:d3:85:01:90:54:25:be:c7:cf:43:9d:a4:82:59: 33:83:fe:34:1d:e1:83:7c:83:73:d2:47:6c:df:1a: 9d:f4:0f:0a:3e:49:60:36:32:3c:a4:5a:d4:51:b0: 2b:ac:2d:55:e2:51:8c:22:44:f1:70:8e:05:55:fb: b8:a6:48:ac:8d:1b:ff:1e:9e:05:8e:81:49:66:92: 48:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:5C:C3:CD:E6:D1:FB:7A:8A:19:97:34:5E:E2:4E:F7:6F:AE:C6:55 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:5d:de:ca:39:99:fc:15:41:ec:af:8b:05:c0:84:fe:81:7c: d8:0f:48:f6:cb:00:26:71:3b:83:35:ab:b7:e5:47:ce:71:6b: 6f:21:f2:f7:71:0d:64:04:bc:88:14:dd:ad:03:cb:0a:2d:76: fa:f5:52:24:65:1f:ff:ec:b0:24:6b:81:89:b9:1f:d2:41:6c: 90:42:00:3b:71:52:04:2e:b7:71:68:25:f3:38:7d:54:24:70: 7b:b6:a0:f2:0a:6d:7a:cb:bb:6f:d2:db:94:8f:c3:a3:0f:49: b5:72:4a:7c:4f:04:e6:67:22:26:38:00:01:34:ea:b8:4f:23: 74:e4:47:b9:4b:7c:59:f2:55:4b:98:53:4d:8b:7f:4d:9c:e9: 4f:af:88:9d:d5:2a:93:70:ff:fd:2c:78:0b:65:82:77:1c:a6: f1:38:8a:06:a1:fa:c3:7e:35:73:bb:78:e4:52:46:78:12:d5: de:15:d0:6e:5a:e0:75:ac:69:1c:51:e2:67:05:62:5a:7f:ea: 45:3a:4f:fa:e4:8d:08:6c:83:5a:36:b8:f0:1c:7a:e3:e6:d1: f2:a3:6f:05:c5:33:a2:25:7c:d4:84:5b:b0:1e:29:f9:d0:d8: e1:3e:ff:dc:83:05:47:1a:c9:95:f4:71:89:ab:73:c0:b2:bc: ce:cf:97:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjYwMzI0MTgwODA1WhcNMjYwMzMxMTgwODA1WjAYMRYwFAYD VQQDEw02OWMyZDMwNS00MTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9KKp65y3+bqlvOGnly59AkHHSBS9UcCTiB+l60VbGg3fANs2O+d4ALc49jb TnaRWFYBamgz+H5sSPe/8oNbvbrBz/T6GKILtPp+6Z49VSBT1WlvaWvXI+KX13z4 16nECWAe3nFH7b9kbDUC1aTz7k5Lo6n0x6gC0dpKRKo/6znpDfwZMpXySUTqJ01q pCn2yrPkQNJ/IuZMN82Vibj/RBYJMs4Ced5Xgj/QhDmCWo7gLWWj04UBkFQlvsfP Q52kglkzg/40HeGDfINz0kds3xqd9A8KPklgNjI8pFrUUbArrC1V4lGMIkTxcI4F Vfu4pkisjRv/Hp4FjoFJZpJIiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJcw83m 0ft6ihmXNF7iTvdvrsZVMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV13eyjmZ/BVB7K+LBcCE/oF82A9I9ssAJnE7gzWrt+VHznFrbyHy93ENZAS8 iBTdrQPLCi12+vVSJGUf/+ywJGuBibkf0kFskEIAO3FSBC63cWgl8zh9VCRwe7ag 8gptesu7b9LblI/Dow9JtXJKfE8E5mciJjgAATTquE8jdORHuUt8WfJVS5hTTYt/ TZzpT6+IndUqk3D//Sx4C2WCdxym8TiKBqH6w341c7t45FJGeBLV3hXQblrgdaxp HFHiZwViWn/qRTpP+uSNCGyDWja48Bx64+bR8qNvBcUzoiV81IRbsB4p+dDY4T7/ 3IMFRxrJlfRxiatzwLK8zs+XmQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:01:15 2026 by rpki-client