$ rpki-client -vvf rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft File: Ps7q_orHtLE44oRfeGEtk9XFMMY.mft (raw, json) Hash identifier: LJ2rUQaL5TxzlyVQ7nkr7wJ7nQjV2TIhGpfJKQgUh/Y= Subject key identifier: D9:D1:87:0B:16:20:87:13:32:F1:41:62:22:78:41:B7:A6:18:C4:F7 Authority key identifier: 3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 Certificate issuer: /CN=A9186537/serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Certificate serial: 0AE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft Manifest number: 0AD1 Signing time: Tue 24 Mar 2026 19:14:59 +0000 Manifest this update: Tue 24 Mar 2026 19:14:58 +0000 Manifest next update: Tue 31 Mar 2026 19:14:58 +0000 Files and hashes: 1: Ps7q_orHtLE44oRfeGEtk9XFMMY.crl (hash: /tkHYczmBvV6QBIk5ouHmsKxkLSsU+cWMxWwFbm616U=) 2: C50E0D60B31F11EF9044054FC4F9AE02.roa (hash: dcrlUq/LfqIpPMteaZR03KFsAdJIOdisOuX79mITHI0=) 3: 74637BD8AB5911F0A8E57D4AC4F9AE02.roa (hash: th+/tvMvg+ad5+YQ/zoIufkXoQMlFYiSs+rYqVFCmXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2785 (0xae1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186537, serialNumber=3ECEEAFE8AC7B4B138E2845F78612D93D5C530C6 Validity Not Before: Mar 24 19:14:58 2026 GMT Not After : Mar 31 19:14:58 2026 GMT Subject: CN=69c2e2b2-8f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:43:2c:b6:ed:22:2e:d4:70:81:c3:61:7a:f3: 61:8d:5f:4d:5a:82:c5:2c:f2:46:0f:88:48:b7:8c: 23:02:29:43:8d:a3:ba:22:e7:f2:e5:3c:b9:5f:f7: 24:5d:b9:4b:30:e3:00:bf:c5:62:3d:74:9a:b5:58: 67:67:9b:15:b9:e8:32:05:54:a6:39:69:6e:5d:2b: bf:24:32:3e:3e:cd:36:8c:5b:88:03:15:84:a2:6d: 23:00:4c:81:09:b4:8b:ca:d1:20:3c:d0:4e:04:39: b1:f4:49:9e:88:63:77:ae:fe:f5:81:85:9b:b1:77: f4:17:8f:06:a2:e5:2d:89:70:97:5e:be:50:b8:d9: 27:2c:35:be:6f:5e:fc:33:82:1c:c2:4a:f8:ba:fd: 47:77:bf:71:03:0b:a2:be:41:a6:77:12:43:31:12: f7:82:30:cc:28:12:fa:8a:95:47:91:c9:2b:1b:fe: 88:07:16:0f:e9:e1:ff:1b:2a:69:81:d2:8e:95:4b: c2:fb:84:a2:ac:8f:5c:42:20:ad:f8:9d:df:2a:db: ae:ca:f7:c6:d0:74:54:ac:18:61:04:77:cb:1d:a8: 25:6a:6b:68:00:ac:e0:03:65:78:6c:b3:c9:e5:00: f1:55:7e:9f:bf:0e:40:1e:e0:33:62:1e:c5:ee:c7: 2d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D1:87:0B:16:20:87:13:32:F1:41:62:22:78:41:B7:A6:18:C4:F7 X509v3 Authority Key Identifier: keyid:3E:CE:EA:FE:8A:C7:B4:B1:38:E2:84:5F:78:61:2D:93:D5:C5:30:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ps7q_orHtLE44oRfeGEtk9XFMMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186537/BEB0D91A6D9D11EA9A5F2809C4F9AE02/Ps7q_orHtLE44oRfeGEtk9XFMMY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:a0:59:80:6c:41:c7:ca:76:54:66:82:77:d8:90:4d:e9:52: 64:a3:13:e6:23:05:0d:4f:db:5a:82:f3:49:bd:ce:98:6e:f6: ff:35:a4:85:31:77:a2:aa:27:20:15:b0:db:e5:c6:97:80:4a: 58:fd:84:77:b6:b5:4b:74:1b:92:7a:18:53:7b:81:3b:b5:05: 68:57:e2:fd:5b:c8:1c:34:b8:b9:3a:77:4a:0e:b8:e3:7a:8d: 5f:2d:31:25:44:02:5a:cf:78:53:7f:50:47:44:3c:b2:33:7e: e3:2b:1a:08:ea:e4:ee:3e:2b:f1:37:89:30:0a:4a:47:c7:e6: 6e:bb:87:b0:50:b5:5d:61:46:73:4a:97:a0:68:75:1e:02:3a: 49:b8:0b:d3:ec:d2:0c:9e:e4:7a:76:86:2c:72:4b:24:3a:a8: 3f:c1:a2:6d:86:b7:13:3a:17:1d:3e:77:2a:e2:bf:b1:91:9e: 48:33:72:c4:64:7c:3b:ee:3d:5b:0f:71:ee:ae:80:89:22:ed: 8c:b3:5d:d7:50:9c:3e:c4:d6:5c:2f:51:af:b5:d1:6d:4e:d8: a2:23:2d:3a:01:c2:61:8b:83:be:4d:84:f7:b6:2c:7b:8a:77: 99:19:71:2c:39:73:2b:34:66:46:e0:7f:4a:85:1b:64:d0:a2: d5:18:2d:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY1MzcxMTAvBgNVBAUTKDNFQ0VFQUZFOEFDN0I0QjEzOEUyODQ1Rjc4NjEyRDkz RDVDNTMwQzYwHhcNMjYwMzI0MTkxNDU4WhcNMjYwMzMxMTkxNDU4WjAYMRYwFAYD VQQDEw02OWMyZTJiMi04ZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUMstu0iLtRwgcNhevNhjV9NWoLFLPJGD4hIt4wjAilDjaO6Iufy5Ty5X/ck XblLMOMAv8ViPXSatVhnZ5sVuegyBVSmOWluXSu/JDI+Ps02jFuIAxWEom0jAEyB CbSLytEgPNBOBDmx9EmeiGN3rv71gYWbsXf0F48GouUtiXCXXr5QuNknLDW+b178 M4Icwkr4uv1Hd79xAwuivkGmdxJDMRL3gjDMKBL6ipVHkckrG/6IBxYP6eH/Gypp gdKOlUvC+4SirI9cQiCt+J3fKtuuyvfG0HRUrBhhBHfLHaglamtoAKzgA2V4bLPJ 5QDxVX6fvw5AHuAzYh7F7sct0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNnRhwsW IIcTMvFBYiJ4QbemGMT3MB8GA1UdIwQYMBaAFD7O6v6Kx7SxOOKEX3hhLZPVxTDG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjUzNy9CRUIwRDkxQTZE OUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRMRTQ0b1JmZUdFdGs5WEZN TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BzN3Ffb3JIdExFNDRvUmZlR0V0azlYRk1NWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjUzNy9CRUIwRDkxQTZEOUQxMUVBOUE1RjI4MDlDNEY5QUUwMi9QczdxX29ySHRM RTQ0b1JmZUdFdGs5WEZNTVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw6BZgGxBx8p2VGaCd9iQTelSZKMT5iMFDU/bWoLzSb3OmG72/zWkhTF3oqon IBWw2+XGl4BKWP2Ed7a1S3QbknoYU3uBO7UFaFfi/VvIHDS4uTp3Sg6443qNXy0x JUQCWs94U39QR0Q8sjN+4ysaCOrk7j4r8TeJMApKR8fmbruHsFC1XWFGc0qXoGh1 HgI6SbgL0+zSDJ7kenaGLHJLJDqoP8GibYa3EzoXHT53KuK/sZGeSDNyxGR8O+49 Ww9x7q6AiSLtjLNd11CcPsTWXC9Rr7XRbU7YoiMtOgHCYYuDvk2E97Yse4p3mRlx LDlzKzRmRuB/SoUbZNCi1Rgtcg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:11 2026 by rpki-client