$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: h7BGpcX9b7MIUazp5PFaKiDWr9LJKrq1tjfmZ4a7H4Q= Subject key identifier: 30:80:16:AB:15:CD:F1:D8:3C:BD:50:A7:73:88:73:A7:7D:A0:6A:CE Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 195D Signing time: Tue 24 Mar 2026 16:20:13 +0000 Manifest this update: Tue 24 Mar 2026 16:20:12 +0000 Manifest next update: Tue 31 Mar 2026 16:20:12 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: w3WIKzNwPqSxpWDSbOgGW39/GV0xNR3ErC0SrXHATjs=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: FF3AIYHnenSUuGagUXAW6Yxw88+RVwJAWvdOH/bQVLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6513 (0x1971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Mar 24 16:20:12 2026 GMT Not After : Mar 31 16:20:12 2026 GMT Subject: CN=69c2b9bd-2529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f4:6e:05:54:52:2d:1a:ff:fd:85:ba:9e:3c: 44:cc:32:66:b9:ed:06:bc:97:2a:77:45:f0:1e:53: bc:a2:f9:fe:c5:f4:60:24:54:c0:05:ba:1c:76:54: 28:a1:0b:38:19:d0:2f:30:a7:01:a2:87:77:08:11: 47:57:3f:dd:d2:96:aa:1a:bd:e8:31:8f:63:6d:fd: f4:2e:89:d1:30:1e:54:99:04:f1:16:2e:6f:2e:1a: 34:b2:08:8f:35:88:82:41:41:f5:df:5c:69:b0:61: 33:e3:a4:b9:65:6d:6d:04:cf:3b:ae:be:67:2d:c4: 63:94:ac:25:3d:aa:ed:d9:5e:9c:29:bf:d1:33:84: fc:d6:0e:c6:04:c8:48:96:f1:4c:1f:1c:f3:1d:83: 05:03:7c:cf:77:e0:ba:b0:14:68:0c:43:14:a0:ce: d0:ea:ea:14:6f:d2:29:c4:a6:e4:9c:8c:d9:93:78: 32:3c:5f:32:5f:62:3d:6c:12:71:05:95:dd:36:07: bf:0f:15:5c:77:29:14:1f:ba:41:af:ab:ca:c3:ee: 7e:18:7d:a9:84:4a:0f:a2:e4:59:d9:90:99:b5:44: d7:07:20:82:46:16:e7:c0:30:20:58:dd:39:80:e8: 09:6b:44:1b:8f:43:af:f7:9d:22:15:53:f1:8f:80: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:80:16:AB:15:CD:F1:D8:3C:BD:50:A7:73:88:73:A7:7D:A0:6A:CE X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:cf:ad:d9:69:eb:96:04:74:0d:f0:aa:d6:ae:15:87:20:77: 24:49:6e:03:5c:d3:8b:32:c0:ee:00:97:68:37:a2:ff:a8:0c: 57:2b:49:d1:e0:6a:96:48:48:a2:bf:87:2e:64:62:e3:5b:c2: e0:c7:f7:62:e2:f1:a2:c2:40:4d:04:f7:96:f5:a1:d3:75:c3: 04:25:ee:fb:70:1f:ae:c9:3e:79:dd:58:d9:b5:16:58:16:04: ba:f8:4c:a0:f9:e3:1b:1f:3a:22:1b:9c:8a:ca:57:81:3c:bb: ee:28:f1:34:1b:32:50:33:b6:6f:4f:b1:18:f4:78:d2:65:88: 57:0f:30:d5:4f:05:4f:b1:c0:7e:b4:04:d2:37:da:29:59:47: 0a:ab:6b:dd:0e:da:80:f5:26:d9:88:1b:c0:16:f0:b7:14:64: ca:72:3f:89:c2:2b:da:58:50:76:fe:66:b5:99:9f:b4:87:d9: 78:ca:e6:b5:78:c6:26:61:b2:cd:ce:77:92:fa:6e:92:37:ec: d5:b7:60:ea:dc:8f:20:c5:8c:6e:17:80:02:03:c2:cd:11:15: c1:8b:88:13:3a:82:54:1c:76:8f:56:52:72:b8:2d:c6:c2:a4: f8:e6:97:5e:e1:a1:91:81:a6:28:5e:d7:d8:90:cd:b4:b1:1e: 89:08:cc:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjYwMzI0MTYyMDEyWhcNMjYwMzMxMTYyMDEyWjAYMRYwFAYD VQQDEw02OWMyYjliZC0yNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fRuBVRSLRr//YW6njxEzDJmue0GvJcqd0XwHlO8ovn+xfRgJFTABbocdlQo oQs4GdAvMKcBood3CBFHVz/d0paqGr3oMY9jbf30LonRMB5UmQTxFi5vLho0sgiP NYiCQUH131xpsGEz46S5ZW1tBM87rr5nLcRjlKwlPart2V6cKb/RM4T81g7GBMhI lvFMHxzzHYMFA3zPd+C6sBRoDEMUoM7Q6uoUb9IpxKbknIzZk3gyPF8yX2I9bBJx BZXdNge/DxVcdykUH7pBr6vKw+5+GH2phEoPouRZ2ZCZtUTXByCCRhbnwDAgWN05 gOgJa0Qbj0Ov950iFVPxj4DMCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDCAFqsV zfHYPL1Qp3OIc6d9oGrOMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcs+t2WnrlgR0DfCq1q4VhyB3JEluA1zTizLA7gCXaDei/6gMVytJ0eBqlkhI or+HLmRi41vC4Mf3YuLxosJATQT3lvWh03XDBCXu+3Afrsk+ed1Y2bUWWBYEuvhM oPnjGx86IhucispXgTy77ijxNBsyUDO2b0+xGPR40mWIVw8w1U8FT7HAfrQE0jfa KVlHCqtr3Q7agPUm2YgbwBbwtxRkynI/icIr2lhQdv5mtZmftIfZeMrmtXjGJmGy zc53kvpukjfs1bdg6tyPIMWMbheAAgPCzREVwYuIEzqCVBx2j1ZScrgtxsKk+OaX XuGhkYGmKF7X2JDNtLEeiQjMXQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:16 2026 by rpki-client