$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: lG5z57LdHMdMTVIQifdbeaDRykoWWn1KiK31lFC8diA= Subject key identifier: 41:9C:AA:1B:39:67:78:9A:B3:E0:5E:09:EF:19:C9:CB:70:76:C2:4E Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 094A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 0939 Signing time: Tue 24 Mar 2026 19:57:54 +0000 Manifest this update: Tue 24 Mar 2026 19:57:53 +0000 Manifest next update: Tue 31 Mar 2026 19:57:53 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: cqh2Ku2CnTj8BGq+oMiyw9GdbVP51DbMaEO9wNjLuf8=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: +2GMR/V9mZr0Ife9tGdydPkVcoSqLY2zhQZIUiI3Hq0=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: bPFO6I2wWIPENqB/X87e5uIatc/LQckX7tfxgiWc7ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2378 (0x94a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Mar 24 19:57:53 2026 GMT Not After : Mar 31 19:57:53 2026 GMT Subject: CN=69c2ecc2-3f97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:52:21:7f:9b:3f:01:fb:63:4b:3c:26:a5:22: fd:ba:62:7b:a7:94:42:85:32:5e:5a:af:c7:23:5d: 63:28:5b:4e:a5:32:45:e5:3d:4a:fd:e1:f5:9d:e2: c1:9b:75:2a:d2:d2:6e:d0:4e:a5:bf:3e:8d:0c:67: 7b:3d:19:46:a6:c7:da:db:4b:14:28:2c:83:f4:d8: 2f:f9:ee:cf:c7:8a:19:23:24:63:4a:0f:b3:4c:72: 11:96:a4:aa:85:ef:1c:ae:1e:33:04:16:45:1d:12: d3:42:b2:7d:d1:27:16:b4:4d:0c:f2:66:d1:62:47: 94:42:e5:9c:da:c5:46:0e:03:22:00:55:f5:30:65: fd:1b:0e:9a:eb:a0:6b:86:65:d3:d7:c9:7f:55:63: 4a:03:b2:97:4e:b8:a0:01:2f:de:c6:d1:a2:fe:6a: 1f:37:6e:f4:9b:37:a9:09:53:00:f0:cf:04:42:80: a2:c5:3b:28:fc:c6:e3:ef:34:53:4d:ec:5f:91:98: 7e:96:d0:74:e5:9e:55:34:c4:94:3e:39:f9:40:9b: 98:cf:65:f0:0f:5c:86:38:70:67:49:b8:fc:46:29: b4:5b:77:96:a8:dc:48:83:8f:08:cc:24:b8:97:88: c8:cf:54:06:98:c9:68:4b:67:f4:0b:de:8f:55:cb: ed:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9C:AA:1B:39:67:78:9A:B3:E0:5E:09:EF:19:C9:CB:70:76:C2:4E X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:77:2c:7d:2f:0d:04:d3:35:18:7a:8c:3f:56:6b:34:6a:2b: 12:53:39:45:83:b9:2e:59:8d:f5:81:cf:84:d0:f0:c8:bf:7f: ff:33:9c:5e:e6:92:14:6f:f5:fe:9e:86:57:93:a8:d0:cb:5f: b9:4f:db:b4:34:68:45:e7:a6:e9:46:0f:4b:4d:e7:17:2c:1b: 94:d8:13:24:22:a2:b7:d4:2f:f9:45:6e:85:fb:a6:86:83:ff: 24:86:13:a9:90:1d:06:74:8e:38:08:22:f9:be:4a:49:54:9b: ba:3b:23:02:f7:4a:75:6c:c1:41:ff:ff:72:37:0d:05:6a:b5: 0b:dc:b5:18:f2:e3:e5:da:7c:67:27:74:fb:9e:c4:c0:4a:1d: a9:8a:2a:ba:4d:37:b1:fd:e2:d5:c7:70:26:92:da:d8:e3:94: 90:75:08:e8:7a:fc:fb:2e:41:c7:50:3c:c9:dd:ae:2b:6b:b3: f6:c9:f3:4e:76:20:8b:b5:67:1d:82:05:bf:2f:db:3b:63:28: 97:f7:6c:70:e1:9f:cc:65:7b:f1:90:7e:50:fc:d8:28:4f:5b: 47:df:db:c2:1d:75:0a:00:88:79:be:d8:6e:a6:5e:87:97:e0: ad:86:c2:b5:95:89:30:e9:a0:82:2b:be:ea:33:35:e8:75:f9: 09:d5:f7:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjYwMzI0MTk1NzUzWhcNMjYwMzMxMTk1NzUzWjAYMRYwFAYD VQQDEw02OWMyZWNjMi0zZjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1Ihf5s/AftjSzwmpSL9umJ7p5RChTJeWq/HI11jKFtOpTJF5T1K/eH1neLB m3Uq0tJu0E6lvz6NDGd7PRlGpsfa20sUKCyD9Ngv+e7Px4oZIyRjSg+zTHIRlqSq he8crh4zBBZFHRLTQrJ90ScWtE0M8mbRYkeUQuWc2sVGDgMiAFX1MGX9Gw6a66Br hmXT18l/VWNKA7KXTrigAS/extGi/mofN270mzepCVMA8M8EQoCixTso/Mbj7zRT TexfkZh+ltB05Z5VNMSUPjn5QJuYz2XwD1yGOHBnSbj8Rim0W3eWqNxIg48IzCS4 l4jIz1QGmMloS2f0C96PVcvt+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEGcqhs5 Z3ias+BeCe8ZyctwdsJOMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHncsfS8NBNM1GHqMP1ZrNGorElM5RYO5LlmN9YHPhNDwyL9//zOcXuaSFG/1 /p6GV5Oo0MtfuU/btDRoReem6UYPS03nFywblNgTJCKit9Qv+UVuhfumhoP/JIYT qZAdBnSOOAgi+b5KSVSbujsjAvdKdWzBQf//cjcNBWq1C9y1GPLj5dp8Zyd0+57E wEodqYoquk03sf3i1cdwJpLa2OOUkHUI6Hr8+y5Bx1A8yd2uK2uz9snzTnYgi7Vn HYIFvy/bO2Mol/dscOGfzGV78ZB+UPzYKE9bR9/bwh11CgCIeb7YbqZeh5fgrYbC tZWJMOmggiu+6jM16HX5CdX3ig== -----END CERTIFICATE-----Generated at Thu Mar 26 06:04:31 2026 by rpki-client