$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: XSP7er75WXQMRuaeOOnEKm4FSPPRamrGNXZ7uR8LAFk= Subject key identifier: B4:BC:46:FA:B4:B7:AB:8F:35:C3:7D:71:FF:CF:9B:E6:0A:D6:F7:4D Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0CDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0CCC Signing time: Thu 26 Mar 2026 18:19:18 +0000 Manifest this update: Thu 26 Mar 2026 18:19:17 +0000 Manifest next update: Thu 02 Apr 2026 18:19:17 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: NxuR6BTF6/B95GsVveTc3lKeL6t4Fv1sPWOF7kRMu/8=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: 4IWb1AIWezAKoYALmO7zIehYCtFAdvZjNhim+DfuwqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3292 (0xcdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Mar 26 18:19:17 2026 GMT Not After : Apr 2 18:19:17 2026 GMT Subject: CN=69c578a6-12ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1d:78:69:53:58:3b:15:17:d6:20:a4:58:d8: 9e:f1:e4:9a:a0:ab:3b:62:43:e4:19:18:d6:b6:3c: 46:f7:fc:40:4d:49:73:46:bd:16:8c:11:c3:db:44: fa:3d:07:6f:4e:b0:8f:ce:61:54:d4:44:37:f7:7c: fb:14:f7:6e:31:cd:97:7d:f6:68:d0:0f:91:ec:67: 41:26:67:57:14:16:33:ab:4a:b6:ee:63:16:67:a4: c2:b6:2b:bd:ca:f9:5a:0b:51:cb:60:da:df:0b:85: 0e:4d:4c:9c:31:25:be:78:2a:35:71:f7:61:d7:50: de:62:29:85:98:8e:42:da:b2:c0:c0:1b:0b:97:b6: 33:de:ee:09:2f:6f:03:88:7d:d9:3e:c3:51:91:00: 84:fc:9a:d4:fc:4e:e3:15:f5:e7:b5:5f:58:38:89: 4c:7a:e3:a9:3b:e3:44:4e:73:16:06:b4:2e:fb:7d: 73:62:15:83:5a:e9:16:f6:a2:16:4e:88:62:79:2d: 79:4d:e5:12:c9:5d:21:a0:d0:02:6a:8f:fd:51:94: a9:66:76:ab:fd:af:3c:d4:5a:c6:90:96:f1:c7:a7: ee:7e:38:df:ed:5a:6e:97:a7:f2:de:a0:02:19:50: 8e:84:33:56:f7:5f:d9:07:2e:d6:ab:b5:27:ae:cf: f2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BC:46:FA:B4:B7:AB:8F:35:C3:7D:71:FF:CF:9B:E6:0A:D6:F7:4D X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9c:ae:27:aa:96:b7:f9:b3:51:50:fa:61:5d:d1:f5:6a:9e: e5:f1:e3:7d:7d:4a:15:1e:7d:32:af:ea:d8:0d:30:60:8e:dc: 53:86:4a:8c:8b:6b:5e:a0:cb:ae:ec:2f:24:b8:34:73:a4:28: d3:c7:57:b5:d6:39:a2:ba:ae:12:f9:ce:22:5d:ab:c4:9a:b7: 77:1b:16:d3:0c:2b:94:2e:d7:d3:c8:33:29:bb:73:98:a5:27: be:e3:9d:69:be:4a:f5:62:fd:f0:8e:85:12:0d:57:aa:96:df: 4e:da:65:2a:99:3a:a5:c2:8f:40:4b:60:ce:9c:a9:04:37:8c: d6:13:28:37:65:a3:f5:5a:40:2b:a4:9d:dd:25:e0:d4:07:b0: cb:3f:1a:01:54:b1:1e:85:eb:a7:40:15:5b:c7:61:f0:31:c9: 93:bb:49:90:9f:00:41:0f:0c:6f:ff:aa:35:84:18:ac:ff:b8: a9:19:20:42:d3:3c:1e:c7:21:27:ed:cb:af:a3:a7:8f:e6:72: 2d:d5:c9:24:46:fe:d3:1d:5f:57:a9:87:5f:39:83:cb:17:f9: b8:43:68:d4:b9:05:8d:82:b4:0d:58:aa:ef:8b:3f:77:51:d6: 3e:2f:e7:2c:f5:74:d1:06:3a:ef:6a:2b:ac:ed:f8:da:49:cd: 39:37:f1:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjYwMzI2MTgxOTE3WhcNMjYwNDAyMTgxOTE3WjAYMRYwFAYD VQQDEw02OWM1NzhhNi0xMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB14aVNYOxUX1iCkWNie8eSaoKs7YkPkGRjWtjxG9/xATUlzRr0WjBHD20T6 PQdvTrCPzmFU1EQ393z7FPduMc2XffZo0A+R7GdBJmdXFBYzq0q27mMWZ6TCtiu9 yvlaC1HLYNrfC4UOTUycMSW+eCo1cfdh11DeYimFmI5C2rLAwBsLl7Yz3u4JL28D iH3ZPsNRkQCE/JrU/E7jFfXntV9YOIlMeuOpO+NETnMWBrQu+31zYhWDWukW9qIW TohieS15TeUSyV0hoNACao/9UZSpZnar/a881FrGkJbxx6fufjjf7Vpul6fy3qAC GVCOhDNW91/ZBy7Wq7Unrs/ysQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLS8Rvq0 t6uPNcN9cf/Pm+YK1vdNMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR5yuJ6qWt/mzUVD6YV3R9Wqe5fHjfX1KFR59Mq/q2A0wYI7cU4ZKjItrXqDL ruwvJLg0c6Qo08dXtdY5orquEvnOIl2rxJq3dxsW0wwrlC7X08gzKbtzmKUnvuOd ab5K9WL98I6FEg1XqpbfTtplKpk6pcKPQEtgzpypBDeM1hMoN2Wj9VpAK6Sd3SXg 1Aewyz8aAVSxHoXrp0AVW8dh8DHJk7tJkJ8AQQ8Mb/+qNYQYrP+4qRkgQtM8Hsch J+3Lr6Onj+ZyLdXJJEb+0x1fV6mHXzmDyxf5uENo1LkFjYK0DViq74s/d1HWPi/n LPV00QY672orrO342knNOTfxHA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:12:50 2026 by rpki-client