$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: 6EPWSD1PyBQApSUsg21muWeSIXQxOJJJfd92KRkOupQ= Subject key identifier: 77:F9:BF:60:13:54:20:CD:E2:09:A6:D8:27:6E:43:13:E0:DC:51:B9 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2BD4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2B84 Signing time: Tue 24 Mar 2026 15:31:10 +0000 Manifest this update: Tue 24 Mar 2026 15:31:10 +0000 Manifest next update: Tue 31 Mar 2026 15:31:10 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: kMJhaj5WqFZ6N27RkQKZzxJPE0PIQDSyv0VLYXOVBwY=) 2: E8573BE8F1C111F098487417396F56BC.roa (hash: F0Fv187N1RGFhEEbx/oMjZ1udUPLSoWgSQeuKM9bGms=) 3: A2842DA6E07D11F0A337A81D3B6F56BC.roa (hash: BXRFGNYuity9lTYV79AbAsykkMdd6+n6EZ7PrTkQhsk=) 4: 5DE5F5603D2311F0BC3F7332C4F9AE02.roa (hash: KdnM+2nBmwCpA+MGMHO0Bl1xzd46blXEMYh3gkA7MWA=) 5: BE9BADE02B4011F0BA1FF282C4F9AE02.roa (hash: e0sKc/3PzukaFrJycUXB6K4Zrj8DGKsFURALFcSQcVU=) 6: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: Eo31vAFnAsF5u9q6EjT+7W+u7j0+BA8u4cDp5rL/syM=) 7: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: lwhgxQ+LgrJn47zyUAnLsM4ouCqlk1HX6qTOZMFb/HM=) 8: 7523EB28671811F0B26A8C1AC4F9AE02.roa (hash: 80yPdyzDWGKZGoqPlrkXe6z7oxzuh7a6qYo6nHURbRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11220 (0x2bd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Mar 24 15:31:10 2026 GMT Not After : Mar 31 15:31:10 2026 GMT Subject: CN=69c2ae3e-9063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:97:cb:d4:89:d3:2f:9f:57:7c:dc:2e:fe:05: 2d:a3:19:75:24:54:5c:30:f5:55:dc:df:90:c6:06: d7:fd:08:f8:d6:67:1f:d1:93:9c:51:f7:17:53:60: 9c:d1:10:85:bd:35:4c:09:27:d9:15:52:56:cc:13: fe:9e:20:a6:49:ea:33:15:38:3d:cb:aa:83:d7:b5: 54:f9:c6:6a:76:cf:eb:fa:2f:5d:58:e6:e5:c8:e0: fe:7c:49:ce:79:62:e4:57:2a:c0:bd:56:9d:fe:fa: b2:8e:ab:2e:6a:40:ce:a0:19:37:64:b5:e6:49:25: ca:db:8b:36:43:ca:ee:57:a0:c0:85:2e:78:f3:3a: b0:28:40:85:29:80:e0:ac:31:0c:e7:ba:f3:60:54: 9a:9c:01:ad:18:76:5a:85:89:3f:dc:c1:d3:00:52: ef:47:69:30:73:6d:19:01:f3:f6:ac:8c:5f:2b:9d: 80:85:06:57:ff:bb:5a:cf:0f:39:a2:46:28:77:7c: 01:be:8c:e2:cd:48:17:47:75:3d:09:e5:94:4a:aa: d6:bc:18:6f:56:d3:cf:73:bc:8b:03:44:e0:41:22: e2:89:4e:4f:c9:67:3a:ec:28:16:bb:52:d4:a7:28: aa:d9:d8:5f:ed:51:72:47:83:5d:ce:50:9f:40:13: a0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F9:BF:60:13:54:20:CD:E2:09:A6:D8:27:6E:43:13:E0:DC:51:B9 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f3:4e:9f:d7:9e:dd:5e:b2:2b:4d:c1:b5:ca:0e:43:d5:35: e2:05:87:22:53:50:95:b2:b4:76:e1:24:a8:f1:12:7f:b2:6c: 1b:97:d9:ce:c5:a3:38:d2:88:f2:76:9f:db:43:25:e2:32:a8: 05:b9:1f:d0:84:a2:a0:72:84:4a:1e:2c:19:0f:91:7c:24:f8: df:23:8b:9a:f7:c8:bb:1c:a2:c5:23:5d:9a:00:a8:18:b9:47: 8f:30:31:28:48:81:94:f0:10:a3:81:0c:6f:95:2d:12:06:c5: 0e:0d:87:e0:80:55:f8:b0:3c:db:f0:e9:90:cc:5f:c7:f8:24: c7:ba:3d:74:8d:6a:d3:2f:18:e9:c9:a3:42:97:9a:a9:76:0f: 24:7c:82:e1:9e:46:e3:02:12:62:ba:d1:48:b4:97:ce:63:27: 13:6c:87:8d:8e:f8:97:fb:12:74:6a:ef:ab:53:33:88:ea:f6: 40:a5:49:30:d7:03:01:7c:a4:0e:12:9d:c7:44:8d:8b:36:aa: 4a:95:3b:ec:f5:e0:71:33:80:5c:0c:50:eb:87:14:59:4d:cb: 1e:00:c7:a1:e8:71:53:ad:11:d4:8d:fa:8d:65:1f:ed:ef:ef: 4f:df:9b:8a:74:21:b9:14:5f:44:c7:b6:83:16:e7:45:2a:f9: 6d:89:be:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICK9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjYwMzI0MTUzMTEwWhcNMjYwMzMxMTUzMTEwWjAYMRYwFAYD VQQDEw02OWMyYWUzZS05MDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pfL1InTL59XfNwu/gUtoxl1JFRcMPVV3N+QxgbX/Qj41mcf0ZOcUfcXU2Cc 0RCFvTVMCSfZFVJWzBP+niCmSeozFTg9y6qD17VU+cZqds/r+i9dWOblyOD+fEnO eWLkVyrAvVad/vqyjqsuakDOoBk3ZLXmSSXK24s2Q8ruV6DAhS548zqwKECFKYDg rDEM57rzYFSanAGtGHZahYk/3MHTAFLvR2kwc20ZAfP2rIxfK52AhQZX/7tazw85 okYod3wBvozizUgXR3U9CeWUSqrWvBhvVtPPc7yLA0TgQSLiiU5PyWc67CgWu1LU pyiq2dhf7VFyR4NdzlCfQBOghQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHf5v2AT VCDN4gmm2CduQxPg3FG5MB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJfNOn9ee3V6yK03BtcoOQ9U14gWHIlNQlbK0duEkqPESf7JsG5fZzsWjONKI 8naf20Ml4jKoBbkf0ISioHKESh4sGQ+RfCT43yOLmvfIuxyixSNdmgCoGLlHjzAx KEiBlPAQo4EMb5UtEgbFDg2H4IBV+LA82/DpkMxfx/gkx7o9dI1q0y8Y6cmjQpea qXYPJHyC4Z5G4wISYrrRSLSXzmMnE2yHjY74l/sSdGrvq1MziOr2QKVJMNcDAXyk DhKdx0SNizaqSpU77PXgcTOAXAxQ64cUWU3LHgDHoehxU60R1I36jWUf7e/vT9+b inQhuRRfRMe2gxbnRSr5bYm+kQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:59:14 2026 by rpki-client