$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: JqCJqZLBajnyUihtJkeMAHWK65hFCH/piGEX7YJvffM= Subject key identifier: 20:2D:CB:45:E0:F9:67:38:98:E0:15:8C:F6:33:41:1C:BF:A4:3E:EF Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 0617 Signing time: Tue 24 Mar 2026 22:34:23 +0000 Manifest this update: Tue 24 Mar 2026 22:34:23 +0000 Manifest next update: Tue 31 Mar 2026 22:34:23 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: z5cAb6FGhEwh3Ha2xGe/ujT2pDLYX1OegyRBAokb/bI=) 2: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: 7N+kBhMTPa/IDmaHS5j88uMau/dBXAyZziXt2IYR/Jg=) 3: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: uvL2gNEthqGV41KwTfLQpnni0nIuRN7IKI+1/XnuE+o=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: 8A4Wb2KJcDqzfgpVuNBZcnB+OO/NHwZAcOnGRk55RA8=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: KBf8JxajMdMMi2+GI03db8VLySuC8cD1rgByqAKzBds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Mar 24 22:34:23 2026 GMT Not After : Mar 31 22:34:23 2026 GMT Subject: CN=69c3116f-40e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bc:84:96:2f:a8:ec:5c:68:47:dd:a4:04:3c: 2c:7f:bc:11:ce:b4:5f:fe:39:52:4c:9a:e8:d2:d3: 04:f2:4f:62:e2:08:d4:a5:a1:2b:f9:30:a7:f1:36: d1:c5:56:86:7c:81:d1:0c:4a:1e:c2:51:c7:fa:af: aa:4c:0a:2f:63:fa:5e:8f:d3:25:4b:0e:a8:84:5b: 1c:ec:48:0f:63:93:8e:e9:05:5a:51:91:44:f2:d3: 6f:56:b9:4f:75:7c:92:ce:97:68:a9:96:84:37:dd: 08:9d:b6:91:a8:d9:29:22:1d:31:0c:76:10:60:a9: 76:4b:4b:ff:e9:14:74:dc:a9:63:ae:2b:5e:e8:32: 5c:0d:29:36:fb:38:c5:e1:9f:3d:87:61:b1:ad:08: a0:39:3f:19:de:3e:73:a2:78:69:fb:ab:b7:33:32: b8:d2:c2:b2:dc:88:10:a9:83:df:9b:6b:81:1b:bf: f8:d4:da:52:b7:62:f7:3f:a6:b8:cc:d5:68:20:07: 6f:c7:a2:6e:da:cb:25:4b:f7:57:6c:70:fc:1a:e8: 97:02:df:f4:08:98:63:1b:f4:00:dd:31:6e:fd:e3: 41:39:f3:20:c6:04:f5:3e:f7:83:ee:2f:a0:7c:43: bc:53:53:7a:00:99:09:01:96:53:5f:fc:3a:7a:78: 71:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2D:CB:45:E0:F9:67:38:98:E0:15:8C:F6:33:41:1C:BF:A4:3E:EF X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1f:2f:6d:25:ff:00:85:72:e0:c7:1a:a7:04:17:ca:10:d9: 30:b8:e2:36:65:1e:5d:65:b9:cb:27:ef:fc:80:b8:73:66:b9: a0:49:4f:ba:c2:d1:47:fd:7a:26:d2:90:10:87:73:12:df:54: 24:b3:4f:72:97:98:85:50:6c:66:45:a9:d3:63:66:cd:76:14: 61:95:7c:54:6e:93:26:ef:4b:9e:19:64:ac:2d:6d:c7:42:f9: a2:ef:c5:2c:a6:c6:c7:88:9a:17:d1:68:de:d9:13:a1:e3:17: b4:19:a0:3d:07:18:a3:0a:b0:49:e1:2f:62:67:d5:ab:ba:68: 1e:28:52:95:9d:d8:48:19:96:5f:b8:7a:ff:2a:bc:e6:2d:e0: 42:11:82:ce:fa:d2:61:b1:12:4e:31:90:74:74:23:95:df:04: 60:18:65:10:db:19:8d:12:5a:4c:56:03:1c:ce:80:5b:7d:b0: 69:18:56:e7:df:50:fd:95:31:ab:ff:ff:c5:19:b5:fa:27:4f: f7:24:46:83:5c:b1:02:e8:4a:44:0a:1e:5e:db:8d:38:e9:d2: 59:85:ab:52:de:3b:1e:69:33:f1:da:a2:20:51:3d:f2:a1:c9: f7:7e:92:60:f7:b9:5b:c1:d7:cb:e6:4d:0b:5e:90:31:62:aa: 0a:6e:7a:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjYwMzI0MjIzNDIzWhcNMjYwMzMxMjIzNDIzWjAYMRYwFAYD VQQDEw02OWMzMTE2Zi00MGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqryEli+o7FxoR92kBDwsf7wRzrRf/jlSTJro0tME8k9i4gjUpaEr+TCn8TbR xVaGfIHRDEoewlHH+q+qTAovY/pej9MlSw6ohFsc7EgPY5OO6QVaUZFE8tNvVrlP dXySzpdoqZaEN90InbaRqNkpIh0xDHYQYKl2S0v/6RR03Kljrite6DJcDSk2+zjF 4Z89h2GxrQigOT8Z3j5zonhp+6u3MzK40sKy3IgQqYPfm2uBG7/41NpSt2L3P6a4 zNVoIAdvx6Ju2sslS/dXbHD8GuiXAt/0CJhjG/QA3TFu/eNBOfMgxgT1PveD7i+g fEO8U1N6AJkJAZZTX/w6enhxawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCAty0Xg +Wc4mOAVjPYzQRy/pD7vMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEB8vbSX/AIVy4McapwQXyhDZMLjiNmUeXWW5yyfv/IC4c2a5oElPusLRR/16 JtKQEIdzEt9UJLNPcpeYhVBsZkWp02NmzXYUYZV8VG6TJu9LnhlkrC1tx0L5ou/F LKbGx4iaF9Fo3tkToeMXtBmgPQcYowqwSeEvYmfVq7poHihSlZ3YSBmWX7h6/yq8 5i3gQhGCzvrSYbESTjGQdHQjld8EYBhlENsZjRJaTFYDHM6AW32waRhW599Q/ZUx q///xRm1+idP9yRGg1yxAuhKRAoeXtuNOOnSWYWrUt47Hmkz8dqiIFE98qHJ936S YPe5W8HXy+ZNC16QMWKqCm56fA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:13:31 2026 by rpki-client