$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft File: CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft (raw, json) Hash identifier: rI3FGmhDQVQYCsqWf2b0gN2zTRqJ2t8TZwny9B6dD1I= Subject key identifier: 48:78:35:0D:E6:8A:32:97:06:14:B5:CC:AD:BA:06:DB:76:52:8A:6F Authority key identifier: 0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 Certificate issuer: /CN=A9176E1D/serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft Manifest number: CE Signing time: Wed 25 Mar 2026 06:03:55 +0000 Manifest this update: Wed 25 Mar 2026 06:03:54 +0000 Manifest next update: Wed 01 Apr 2026 06:03:54 +0000 Files and hashes: 1: CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl (hash: IjMM82xkQ2pfqYY5Vyi+IHzUKP9ddgn2Q2aHAyfV9RE=) 2: 4C9617646D0611F0BBBF9039C4F9AE02.roa (hash: 6iagXbwelFTv+z13CzlJVVdQEfq1ejqOSRUBaH/dx/U=) 3: 8A5CF8F0FB7411EF83C11685C4F9AE02.roa (hash: BXF5GaN7BN9OMdHAEE/H/k4SW8586+AXOrre41n6sT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E1D, serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Validity Not Before: Mar 25 06:03:54 2026 GMT Not After : Apr 1 06:03:54 2026 GMT Subject: CN=69c37acb-6ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:42:6d:d6:0a:86:05:69:e8:f9:5f:53:f9:18: 33:87:ab:d0:3b:5e:94:a9:e4:a0:39:25:42:12:a5: 95:85:fe:4e:ed:ac:e2:85:67:84:84:c1:8f:6e:58: b7:69:30:8c:d3:7b:eb:27:0d:8e:2e:ac:2b:83:a7: 5d:d9:df:6b:8a:fa:bd:cd:d3:3a:9e:a4:df:16:c0: a7:27:b3:39:9a:66:4f:20:f8:f2:57:c6:ee:ec:2a: b7:79:76:22:4e:9c:93:f2:6a:a8:3e:e0:93:9c:b5: c6:16:ec:44:f4:f3:7d:b4:12:f1:0a:56:cd:67:21: d0:be:7b:2a:a5:3c:b9:79:e9:28:22:73:3b:44:aa: be:ae:85:79:47:70:34:62:ab:dc:22:86:f8:ac:c6: 21:51:99:0c:04:76:4b:2f:fc:fa:53:51:62:51:0f: 4a:3c:e8:da:89:73:26:e5:d5:24:0f:df:5f:71:ca: 74:7a:37:8f:14:96:af:fb:7f:81:06:c8:a5:29:27: f4:cd:0d:98:e8:72:46:00:59:68:6f:c8:60:91:a1: fa:31:b2:a5:3c:a0:6f:99:4d:87:2b:58:ae:9e:15: 0c:33:0d:aa:5e:0b:a4:e5:ed:8d:dd:a6:8a:81:b5: 4f:22:f8:21:73:d9:0e:22:da:53:98:a3:1f:8f:54: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:78:35:0D:E6:8A:32:97:06:14:B5:CC:AD:BA:06:DB:76:52:8A:6F X509v3 Authority Key Identifier: keyid:0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:73:f6:c9:a0:4a:30:fb:36:e5:a5:0b:33:66:93:a7:30:1a: b9:97:a7:c6:40:94:30:45:6d:ad:b9:de:1a:0b:80:d9:50:c6: 1d:56:1e:3b:4d:a2:f1:a2:52:2c:bf:4f:68:d5:1e:f3:e1:a6: ac:39:c9:f3:ee:f2:4f:96:38:3d:b6:05:9d:ad:1f:c6:cc:78: c3:21:60:84:3e:6b:76:4a:be:59:31:9e:84:76:4f:ef:b0:1c: d6:63:47:e2:d0:1b:37:18:5e:e2:db:85:b5:a4:f0:bd:38:8a: d3:5f:1b:5e:13:52:91:91:f3:35:a0:04:2a:27:83:de:26:05: 92:5f:62:c2:07:f9:f6:16:ce:73:82:65:ea:ec:fa:a4:d1:51: b9:c1:82:3b:7d:fd:eb:c2:d8:9e:6d:9f:14:15:10:01:8b:6f: 0a:4b:af:a0:1b:a9:8b:f5:89:c8:ac:37:ab:4d:4d:c4:3f:50: 26:61:2c:34:07:b0:fd:4c:70:20:6a:ee:0e:3a:da:d4:fc:78: ad:60:62:ba:0b:05:4a:81:5c:10:bb:46:58:9e:8c:e3:c2:39: 01:72:b6:8c:3b:7d:6f:5c:5e:db:03:e0:0b:7f:54:9c:99:9c: e9:67:19:65:49:d0:8e:ad:e8:d2:c9:75:ce:f9:15:cc:02:ca: 81:6c:d5:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZFMUQxMTAvBgNVBAUTKDBBQTZFNDgzMjg0MjVFMTI0QzU2MUMyQUMxODdDOEEx OTYyNDcxMTAwHhcNMjYwMzI1MDYwMzU0WhcNMjYwNDAxMDYwMzU0WjAYMRYwFAYD VQQDEw02OWMzN2FjYi02ZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUJt1gqGBWno+V9T+Rgzh6vQO16UqeSgOSVCEqWVhf5O7azihWeEhMGPbli3 aTCM03vrJw2OLqwrg6dd2d9rivq9zdM6nqTfFsCnJ7M5mmZPIPjyV8bu7Cq3eXYi TpyT8mqoPuCTnLXGFuxE9PN9tBLxClbNZyHQvnsqpTy5eekoInM7RKq+roV5R3A0 YqvcIob4rMYhUZkMBHZLL/z6U1FiUQ9KPOjaiXMm5dUkD99fccp0ejePFJav+3+B BsilKSf0zQ2Y6HJGAFlob8hgkaH6MbKlPKBvmU2HK1iunhUMMw2qXguk5e2N3aaK gbVPIvghc9kOItpTmKMfj1QOFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEh4NQ3m ijKXBhS1zK26Btt2UopvMB8GA1UdIwQYMBaAFAqm5IMoQl4STFYcKsGHyKGWJHEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkUxRC9GRTg4MzVCQ0Y5 RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1hoSk1WaHdxd1lmSW9aWWtj UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxYmtneWhDWGhKTVZod3F3WWZJb1pZa2NSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkUxRC9GRTg4MzVCQ0Y5RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1ho Sk1WaHdxd1lmSW9aWWtjUkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAnP2yaBKMPs25aULM2aTpzAauZenxkCUMEVtrbneGguA2VDGHVYeO02i8aJS LL9PaNUe8+GmrDnJ8+7yT5Y4PbYFna0fxsx4wyFghD5rdkq+WTGehHZP77Ac1mNH 4tAbNxhe4tuFtaTwvTiK018bXhNSkZHzNaAEKieD3iYFkl9iwgf59hbOc4Jl6uz6 pNFRucGCO33968LYnm2fFBUQAYtvCkuvoBupi/WJyKw3q01NxD9QJmEsNAew/Uxw IGruDjra1Px4rWBiugsFSoFcELtGWJ6M48I5AXK2jDt9b1xe2wPgC39UnJmc6WcZ ZUnQjq3o0sl1zvkVzALKgWzVIQ== -----END CERTIFICATE-----Generated at Thu Mar 26 23:46:44 2026 by rpki-client