$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: BvyiH7/iPhSmMWDzi0lNdm9erBNUYef4Wq5L/CgPEnk= Subject key identifier: FB:11:CE:86:39:DF:63:F1:A7:0B:DB:5E:62:5C:21:86:41:A2:B4:71 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2BD5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B85 Signing time: Thu 26 Mar 2026 15:34:59 +0000 Manifest this update: Thu 26 Mar 2026 15:34:59 +0000 Manifest next update: Thu 02 Apr 2026 15:34:59 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: 0id5HF7L6fX5U2CGIWwOSClCsoChNCBNLwMUuyeQEn8=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: Eo31vAFnAsF5u9q6EjT+7W+u7j0+BA8u4cDp5rL/syM=) 3: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: 80yPdyzDWGKZGoqPlrkXe6z7oxzuh7a6qYo6nHURbRI=) 4: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: lwhgxQ+LgrJn47zyUAnLsM4ouCqlk1HX6qTOZMFb/HM=) 5: E8573BE8F1C111F098487417396F56BC.roa (hash: F0Fv187N1RGFhEEbx/oMjZ1udUPLSoWgSQeuKM9bGms=) 6: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: e0sKc/3PzukaFrJycUXB6K4Zrj8DGKsFURALFcSQcVU=) 7: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: KdnM+2nBmwCpA+MGMHO0Bl1xzd46blXEMYh3gkA7MWA=) 8: A2842DA6E07D11F0A337A81D3B6F56BC.roa (hash: BXRFGNYuity9lTYV79AbAsykkMdd6+n6EZ7PrTkQhsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11221 (0x2bd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Mar 26 15:34:59 2026 GMT Not After : Apr 2 15:34:59 2026 GMT Subject: CN=69c55223-13ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:d3:43:b0:6f:02:20:06:d5:7a:fe:1c:bb: 6c:d8:27:42:4b:1d:ae:b3:88:a4:b7:d7:5b:b0:d7: d4:7f:e4:dd:1a:81:e8:85:a4:90:75:49:f9:e9:ca: 35:e6:77:12:21:19:9e:b3:84:e7:50:1c:9a:52:73: 9a:79:f7:91:d7:21:94:af:49:e0:b0:ac:97:78:f0: 4f:a6:ec:9b:e2:43:05:83:47:6b:59:bf:37:87:91: d9:35:17:70:1a:a6:19:9f:a5:7d:fc:35:b0:b3:db: cc:b3:ad:1e:4e:70:a8:67:bf:8b:21:75:8f:c7:e5: 19:7f:e2:7e:5d:23:f7:e7:4a:57:8c:99:9a:b2:68: f4:9d:10:63:7a:d7:fa:b4:9c:2b:32:cf:eb:0e:1e: 2e:b8:92:9c:5a:dd:11:0a:89:2b:04:77:9c:0e:29: 3d:ef:8d:bf:c9:a6:5c:2c:8f:fb:f0:55:27:00:00: 92:9f:43:09:72:60:b5:16:47:e2:4c:ec:68:3a:ea: e2:63:84:4a:3c:74:2c:18:06:03:23:71:45:4c:25: 3c:20:86:1c:7c:3d:f6:71:6f:ee:0a:a0:c5:31:f6: f4:56:b3:3a:8e:e4:1d:43:b4:ba:e4:8a:ab:6d:16: 4d:56:bd:78:6a:cb:24:a3:2e:cf:79:f9:6f:22:37: cf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:11:CE:86:39:DF:63:F1:A7:0B:DB:5E:62:5C:21:86:41:A2:B4:71 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1f:90:fb:0a:63:9b:ef:32:4d:30:40:e4:25:95:05:b9:de: c1:75:df:14:ba:5f:cc:65:5b:72:a0:0b:e1:d5:ca:82:37:b9: a9:9e:35:97:2f:a0:7c:6a:a7:8c:f7:e6:6d:62:21:5a:e8:56: 53:ca:c1:84:7b:5a:16:d3:d9:cf:52:3a:1d:17:bd:69:a3:4f: 1c:cc:39:f3:91:15:c6:8f:75:89:7f:59:91:6a:e0:63:d4:d2: 0b:9d:b1:e4:30:3f:d1:b9:09:49:32:af:06:3c:34:17:81:8f: f4:b7:44:ba:f8:f8:e7:38:0f:11:be:4c:39:b2:b5:b6:13:f2: 75:16:38:18:b3:fc:83:f6:4c:fa:ca:e1:d2:5c:6f:f7:cf:33: 59:67:06:3b:84:83:69:bb:9d:dc:ce:a5:38:3c:1f:4e:13:6b: 6d:8d:7c:67:65:11:d0:0e:08:e8:ba:f0:06:7f:5e:5c:dd:79: 0c:54:30:13:08:3f:34:d1:5c:05:3c:6b:49:cd:46:72:85:32: 5e:9b:95:7c:19:8e:40:23:71:a8:27:21:31:f9:ac:16:86:d5: 8a:b0:70:75:dd:ce:8d:64:f4:6f:f1:8d:1a:2b:b5:9c:07:3c: 0d:5a:82:15:18:25:70:b3:c5:f9:0f:12:94:58:57:f2:d4:f5: cb:86:0f:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICK9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjYwMzI2MTUzNDU5WhcNMjYwNDAyMTUzNDU5WjAYMRYwFAYD VQQDEw02OWM1NTIyMy0xM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KbTQ7BvAiAG1Xr+HLts2CdCSx2us4ikt9dbsNfUf+TdGoHohaSQdUn56co1 5ncSIRmes4TnUByaUnOaefeR1yGUr0ngsKyXePBPpuyb4kMFg0drWb83h5HZNRdw GqYZn6V9/DWws9vMs60eTnCoZ7+LIXWPx+UZf+J+XSP350pXjJmasmj0nRBjetf6 tJwrMs/rDh4uuJKcWt0RCokrBHecDik9742/yaZcLI/78FUnAACSn0MJcmC1Fkfi TOxoOuriY4RKPHQsGAYDI3FFTCU8IIYcfD32cW/uCqDFMfb0VrM6juQdQ7S65Iqr bRZNVr14asskoy7PeflvIjfPOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPsRzoY5 32PxpwvbXmJcIYZBorRxMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhR+Q+wpjm+8yTTBA5CWVBbnewXXfFLpfzGVbcqAL4dXKgje5qZ41ly+gfGqn jPfmbWIhWuhWU8rBhHtaFtPZz1I6HRe9aaNPHMw585EVxo91iX9ZkWrgY9TSC52x 5DA/0bkJSTKvBjw0F4GP9LdEuvj45zgPEb5MObK1thPydRY4GLP8g/ZM+srh0lxv 988zWWcGO4SDabud3M6lODwfThNrbY18Z2UR0A4I6LrwBn9eXN15DFQwEwg/NNFc BTxrSc1GcoUyXpuVfBmOQCNxqCchMfmsFobVirBwdd3OjWT0b/GNGiu1nAc8DVqC FRglcLPF+Q8SlFhX8tT1y4YPEg== -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:43 2026 by rpki-client