$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: +NJ7aGI1IQcpA7bqxOZkIO9CKj/OeclUwvbYtyDBqUg= Subject key identifier: 67:E6:EC:E8:AA:1C:54:7D:34:8B:D9:EE:2E:DB:BC:3C:A4:39:1B:7F Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 0691 Signing time: Tue 24 Mar 2026 22:10:08 +0000 Manifest this update: Tue 24 Mar 2026 22:10:07 +0000 Manifest next update: Tue 31 Mar 2026 22:10:07 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: S8wf9pYJ6CNoPdvaK5t8R8egEm74f6DruW1mvgt+0q0=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: 2Lk4CmVFEj2uOR0iFzgVtffOiiM041R6QTALbm/THG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Mar 24 22:10:07 2026 GMT Not After : Mar 31 22:10:07 2026 GMT Subject: CN=69c30bbf-2b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1f:22:15:68:fb:85:28:a9:7f:12:e8:6e:24: fb:8a:d4:e8:84:ce:9b:c2:89:cb:f3:2b:0d:fe:90: 10:96:aa:ab:9c:fe:74:91:ca:38:49:64:4b:9a:30: 1b:fe:76:00:b7:ac:c8:92:df:c5:19:f8:4f:4e:26: 6d:40:67:fa:b6:3c:d8:38:5b:b4:b7:d5:78:ed:ca: 9c:12:25:b6:5a:51:8e:4b:2b:de:e1:21:09:9f:9a: c6:7d:e4:1d:f8:dc:a9:fc:d5:ff:a3:ef:f6:81:8b: b3:59:09:1f:e3:f0:c2:7f:2a:f9:e2:a8:39:d5:b0: d7:06:d1:6b:a5:5a:a8:8b:ca:d8:78:a6:35:55:02: 54:d0:02:6b:35:d0:33:97:ed:be:35:d4:81:6c:eb: 34:72:da:b0:fe:c9:77:bb:70:b7:30:7b:bc:75:51: c9:a2:25:a7:b1:df:67:c8:3d:f3:90:6f:6f:ef:cf: 7a:51:b6:b9:b1:0d:e0:e1:8d:a5:63:61:92:8c:61: a6:e3:69:83:8c:03:e0:59:35:db:a3:c6:fc:10:6c: c3:e7:59:80:c3:b3:d0:ff:c2:52:49:d0:ca:a3:63: d9:04:17:16:01:1a:4d:a7:53:09:20:41:46:cd:cc: 18:42:e4:5d:dc:8d:07:3c:9c:61:ec:98:6f:cd:45: 59:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E6:EC:E8:AA:1C:54:7D:34:8B:D9:EE:2E:DB:BC:3C:A4:39:1B:7F X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:57:25:27:88:32:53:b2:24:47:5c:ae:89:c0:6c:9d:b0:da: 8e:ea:97:f4:b4:51:43:b1:e3:88:99:33:ad:2c:ec:29:89:2f: f7:14:af:e2:7e:37:99:f1:8c:57:0b:46:05:e8:eb:82:54:b3: 93:18:a0:3d:12:c6:78:db:ef:cc:5b:90:c1:d0:9a:20:c2:8a: 3a:d5:73:9a:d0:d8:f9:d2:58:e6:e4:ba:85:2e:2b:72:60:5a: 93:ea:6a:b1:1c:c7:10:af:26:c1:20:ca:81:02:29:5f:aa:93: 53:25:1c:bd:66:12:c9:27:23:7c:f9:49:98:bf:12:ee:23:f7: 97:34:d4:44:65:99:1e:19:a0:99:c4:40:dd:3e:54:e5:de:bc: 8e:4b:8f:e2:98:b3:85:38:a0:e3:a4:9d:b0:45:4c:68:68:1c: b8:30:72:75:55:b3:d1:22:22:5b:64:55:82:ed:0c:46:38:71: 16:b6:9a:3f:dc:01:63:3d:f2:49:56:61:e0:c5:ac:bb:eb:7a: c2:7a:54:b9:ac:9c:f5:b0:dc:49:4c:d3:e3:3d:52:fe:02:24: ea:de:4d:16:a4:84:5e:92:3c:ea:0a:dd:b9:76:00:de:14:4b: 4b:ad:a8:42:dc:ea:9d:4f:7f:c0:b5:24:fe:e4:a1:c7:78:32: 2f:f5:83:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjYwMzI0MjIxMDA3WhcNMjYwMzMxMjIxMDA3WjAYMRYwFAYD VQQDEw02OWMzMGJiZi0yYjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h8iFWj7hSipfxLobiT7itTohM6bwonL8ysN/pAQlqqrnP50kco4SWRLmjAb /nYAt6zIkt/FGfhPTiZtQGf6tjzYOFu0t9V47cqcEiW2WlGOSyve4SEJn5rGfeQd +Nyp/NX/o+/2gYuzWQkf4/DCfyr54qg51bDXBtFrpVqoi8rYeKY1VQJU0AJrNdAz l+2+NdSBbOs0ctqw/sl3u3C3MHu8dVHJoiWnsd9nyD3zkG9v7896Uba5sQ3g4Y2l Y2GSjGGm42mDjAPgWTXbo8b8EGzD51mAw7PQ/8JSSdDKo2PZBBcWARpNp1MJIEFG zcwYQuRd3I0HPJxh7JhvzUVZmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGfm7Oiq HFR9NIvZ7i7bvDykORt/MB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANVclJ4gyU7IkR1yuicBsnbDajuqX9LRRQ7HjiJkzrSzsKYkv9xSv4n43mfGM VwtGBejrglSzkxigPRLGeNvvzFuQwdCaIMKKOtVzmtDY+dJY5uS6hS4rcmBak+pq sRzHEK8mwSDKgQIpX6qTUyUcvWYSyScjfPlJmL8S7iP3lzTURGWZHhmgmcRA3T5U 5d68jkuP4pizhTig46SdsEVMaGgcuDBydVWz0SIiW2RVgu0MRjhxFraaP9wBYz3y SVZh4MWsu+t6wnpUuayc9bDcSUzT4z1S/gIk6t5NFqSEXpI86grduXYA3hRLS62o QtzqnU9/wLUk/uShx3gyL/WDtQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:14:19 2026 by rpki-client