$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: nbSOX5RvGIy5hrA816R4fDBHVj9AK+7zuTVCYguAfcU= Subject key identifier: 8A:C6:AC:EA:5C:3E:AE:94:D1:78:D5:EA:24:A2:5E:92:DD:D2:33:80 Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 0844 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 083C Signing time: Tue 24 Mar 2026 20:37:28 +0000 Manifest this update: Tue 24 Mar 2026 20:37:27 +0000 Manifest next update: Tue 31 Mar 2026 20:37:27 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: Ig3Jv5upojM+K/9FR2PgQxR5nJKj+JpBNYM9MCaTvj0=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 7pu3YPOy/Iyi+5lsIR5w0HcGr9ERc7QOQEXQx+NBL5Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2116 (0x844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: Mar 24 20:37:27 2026 GMT Not After : Mar 31 20:37:27 2026 GMT Subject: CN=69c2f608-e265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ad:76:51:79:66:94:aa:19:47:91:0a:f7:5c: 3d:37:ed:ff:21:9a:af:fd:42:b8:23:c2:42:59:bd: 61:de:29:61:ad:98:90:5b:d0:07:71:f7:3b:0e:ed: 18:9b:6f:20:45:6a:1e:d8:23:7f:35:75:41:3b:e8: 23:d3:79:c9:7b:85:9e:4d:01:8b:a1:a7:52:3e:da: 19:88:a6:cf:a5:1f:50:11:58:59:9b:d2:b7:12:86: 81:02:73:c5:40:48:da:56:df:1e:4f:a7:2c:c0:f8: 95:f3:8f:aa:83:a7:f7:35:c0:c5:1f:77:56:b0:06: 41:67:9a:95:bb:22:ac:22:e8:40:49:89:00:90:4c: f0:bb:4f:74:7d:78:a2:06:ee:df:eb:f7:8f:80:2b: c7:5c:c1:01:4f:f6:bc:d8:c8:3d:37:cd:e5:74:54: 5f:87:e0:2d:2e:e8:52:bd:df:da:8d:04:80:d8:24: 8f:01:45:db:c2:e3:fe:46:ad:fb:5b:99:4e:d9:6c: 8b:d2:6f:45:30:fb:90:31:13:3e:f3:4d:da:42:ab: 0e:f3:cf:f1:5e:fc:4b:87:b4:c3:22:d3:57:4b:50: 47:b3:76:8f:12:94:cd:d7:ea:0a:9a:b0:00:cf:72: b5:3b:33:3e:6e:d2:56:fc:02:b5:17:ec:c2:28:f5: 24:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C6:AC:EA:5C:3E:AE:94:D1:78:D5:EA:24:A2:5E:92:DD:D2:33:80 X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8e:8f:e9:7e:0d:8d:1e:6a:51:0d:2d:ed:e1:d3:af:40:7b: 2d:3a:0c:ff:c4:2d:ac:e3:7b:7b:7d:a6:6e:da:05:4d:90:27: 5a:81:cf:0f:9c:3f:17:eb:aa:93:c4:38:ed:d1:87:fc:06:8a: d5:c1:92:73:87:19:61:69:90:58:95:f1:68:4f:e8:3d:2c:fb: 06:06:28:1c:94:18:db:4e:48:4b:85:34:19:56:74:2b:0e:ee: f5:fb:16:e2:fe:ef:c9:66:a5:b1:b7:c9:b8:a8:14:1b:d5:c6: 27:90:21:49:e4:f8:fc:40:89:51:5f:29:e5:e4:89:8c:ed:12: 63:5d:13:8e:88:4b:bb:4e:f5:f1:4f:5d:b2:d3:f1:43:dc:98: 7a:ae:d2:36:c9:e3:97:46:45:04:71:41:50:fe:e6:41:48:68: 63:02:4b:28:a1:e2:cb:08:6d:3f:f6:00:33:33:21:eb:42:cc: 72:cb:01:be:bd:a9:c0:2c:bf:97:ae:50:fa:b4:c6:17:5a:a0: a1:97:10:2a:d8:e3:4a:18:e9:64:0b:94:f6:ef:ed:79:83:dd: 75:4a:53:e8:2d:6e:92:d9:b2:4d:6e:f2:7d:92:e5:bc:19:97: a9:18:a8:5d:98:fe:96:f1:f8:47:e0:f0:ae:a4:a7:37:7a:00: 01:a8:d3:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjYwMzI0MjAzNzI3WhcNMjYwMzMxMjAzNzI3WjAYMRYwFAYD VQQDEw02OWMyZjYwOC1lMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K12UXlmlKoZR5EK91w9N+3/IZqv/UK4I8JCWb1h3ilhrZiQW9AHcfc7Du0Y m28gRWoe2CN/NXVBO+gj03nJe4WeTQGLoadSPtoZiKbPpR9QEVhZm9K3EoaBAnPF QEjaVt8eT6cswPiV84+qg6f3NcDFH3dWsAZBZ5qVuyKsIuhASYkAkEzwu090fXii Bu7f6/ePgCvHXMEBT/a82Mg9N83ldFRfh+AtLuhSvd/ajQSA2CSPAUXbwuP+Rq37 W5lO2WyL0m9FMPuQMRM+803aQqsO88/xXvxLh7TDItNXS1BHs3aPEpTN1+oKmrAA z3K1OzM+btJW/AK1F+zCKPUk1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIrGrOpc Pq6U0XjV6iSiXpLd0jOAMB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAo6P6X4NjR5qUQ0t7eHTr0B7LToM/8QtrON7e32mbtoFTZAnWoHPD5w/F+uq k8Q47dGH/AaK1cGSc4cZYWmQWJXxaE/oPSz7BgYoHJQY205IS4U0GVZ0Kw7u9fsW 4v7vyWalsbfJuKgUG9XGJ5AhSeT4/ECJUV8p5eSJjO0SY10TjohLu0718U9dstPx Q9yYeq7SNsnjl0ZFBHFBUP7mQUhoYwJLKKHiywhtP/YAMzMh60LMcssBvr2pwCy/ l65Q+rTGF1qgoZcQKtjjShjpZAuU9u/teYPddUpT6C1uktmyTW7yfZLlvBmXqRio XZj+lvH4R+DwrqSnN3oAAajTag== -----END CERTIFICATE-----Generated at Thu Mar 26 15:47:42 2026 by rpki-client