$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: DMgBeXaVThsu9m7mJ9qTTdneb4QvYvcJYHUEdwbHxI0= Subject key identifier: 3C:E3:E2:8B:7C:59:E8:F7:3B:44:56:83:F5:FE:FE:78:6F:8E:2D:13 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: 0141 Signing time: Wed 25 Mar 2026 04:49:38 +0000 Manifest this update: Wed 25 Mar 2026 04:49:37 +0000 Manifest next update: Wed 01 Apr 2026 04:49:37 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: OlCd2ZqmuGg8yzNv3LdgFpdCjwiFV8EMSJVdRvy9d38=) 2: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 9HNmZVsE8qMY9qG/jp14H0D4amK1SUgdtWzVlZ7OP6Q=) 3: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: zSJXhjcxuRoRMZAMSvVxgLmiPMxSJBBZzT41UMv2hwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Mar 25 04:49:37 2026 GMT Not After : Apr 1 04:49:37 2026 GMT Subject: CN=69c36962-2fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e6:a1:78:da:ff:12:4d:e7:c0:4c:84:60:41: 41:2c:a7:9d:e9:d3:1f:2a:1e:ad:dc:c3:27:1c:db: 3f:1a:9e:de:a4:e0:14:b1:92:9f:0c:8a:b4:08:aa: 43:17:ac:04:6d:cf:09:be:80:0b:20:e8:53:b1:74: e1:2f:91:1f:69:f7:fe:b5:c5:99:b4:c5:a2:0e:84: 6c:0d:41:d2:cc:9a:02:d9:33:86:f3:64:be:6e:ed: 3a:5f:06:43:f6:60:58:e3:41:2c:e1:7f:23:ef:5a: b9:32:ba:51:c4:49:60:2a:b4:2a:9a:51:ef:de:fd: 36:df:c4:13:d2:72:72:ed:53:c7:03:07:8b:90:a7: c0:60:0a:2b:cb:cd:e4:43:45:44:6b:e3:08:82:d3: 6d:53:ed:dc:bf:13:8c:d9:60:6f:b9:91:c9:6e:f0: 20:0f:cf:1b:70:1a:de:08:8c:49:0b:ea:60:89:e1: 6c:3f:3d:d6:25:29:25:fb:5f:bf:d2:23:15:db:86: 96:4f:58:44:c1:de:9b:75:e5:be:11:34:51:3e:ab: 9e:4f:ba:24:2b:cd:4e:41:35:60:47:cc:f8:fb:00: 32:67:4d:e5:89:02:38:4f:fa:4d:1c:c2:1d:00:1d: e3:76:c6:d9:c4:cd:01:7d:ef:30:3c:3c:cd:72:8c: 8d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E3:E2:8B:7C:59:E8:F7:3B:44:56:83:F5:FE:FE:78:6F:8E:2D:13 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:17:ab:9c:3e:18:fa:f9:28:03:77:24:c7:21:8c:22:f5:53: 57:63:01:14:cb:83:a7:b9:69:b4:65:5f:8e:0e:e4:09:5f:0a: 98:60:63:c3:f5:20:07:ee:43:86:f6:94:a5:d7:6d:83:04:c5: d6:35:57:24:80:90:1f:04:7c:a1:13:d3:71:d6:e2:8b:de:ee: e5:ff:6a:81:15:31:34:c9:cb:b7:58:5f:f2:d4:d1:5a:7e:5c: 34:de:2e:7f:3d:76:71:69:d2:07:34:ec:12:03:91:6d:4b:8c: c8:71:b5:87:3f:dd:fc:7f:69:64:33:d8:3b:a4:7a:af:11:66: f7:3d:dd:c8:54:47:ea:c9:49:36:1d:eb:96:97:ff:92:2b:ba: 91:d2:bd:60:1d:b4:d2:2c:a6:34:2c:f8:0b:29:34:9d:24:f7: c8:76:3a:50:e5:16:84:e6:5d:0c:7b:5e:67:ad:a7:24:97:f9: 92:94:cf:d0:17:b2:01:81:2d:f5:64:5f:bf:08:5e:46:b0:66: f7:05:8e:8a:25:20:84:ad:8a:2c:b7:74:72:f1:91:7b:65:5a: 34:7f:4e:32:58:81:e0:87:c3:dc:28:9c:71:60:94:f8:e5:50: c9:18:41:e1:ee:79:06:55:f1:68:91:29:ce:a5:13:29:70:fb: a3:1f:ea:c1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjYwMzI1MDQ0OTM3WhcNMjYwNDAxMDQ0OTM3WjAYMRYwFAYD VQQDEw02OWMzNjk2Mi0yZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eaheNr/Ek3nwEyEYEFBLKed6dMfKh6t3MMnHNs/Gp7epOAUsZKfDIq0CKpD F6wEbc8JvoALIOhTsXThL5Efaff+tcWZtMWiDoRsDUHSzJoC2TOG82S+bu06XwZD 9mBY40Es4X8j71q5MrpRxElgKrQqmlHv3v0238QT0nJy7VPHAweLkKfAYAory83k Q0VEa+MIgtNtU+3cvxOM2WBvuZHJbvAgD88bcBreCIxJC+pgieFsPz3WJSkl+1+/ 0iMV24aWT1hEwd6bdeW+ETRRPqueT7okK81OQTVgR8z4+wAyZ03liQI4T/pNHMId AB3jdsbZxM0Bfe8wPDzNcoyNLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDzj4ot8 Wej3O0RWg/X+/nhvji0TMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIxernD4Y+vkoA3ckxyGMIvVTV2MBFMuDp7lptGVfjg7kCV8KmGBjw/UgB+5D hvaUpddtgwTF1jVXJICQHwR8oRPTcdbii97u5f9qgRUxNMnLt1hf8tTRWn5cNN4u fz12cWnSBzTsEgORbUuMyHG1hz/d/H9pZDPYO6R6rxFm9z3dyFRH6slJNh3rlpf/ kiu6kdK9YB200iymNCz4Cyk0nST3yHY6UOUWhOZdDHteZ62nJJf5kpTP0BeyAYEt 9WRfvwheRrBm9wWOiiUghK2KLLd0cvGRe2VaNH9OMliB4IfD3CiccWCU+OVQyRhB 4e55BlXxaJEpzqUTKXD7ox/qwQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:27:23 2026 by rpki-client