$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft File: tYgfusqd6_Rspghj0pd8U_3WwZA.mft (raw, json) Hash identifier: +yf1J6fpUyTKvuk8c80hJxIbNJ9VvhXL6ir04XihHAo= Subject key identifier: 9B:FE:98:61:50:F7:6E:44:FD:27:0E:93:ED:7D:E5:A8:0D:68:63:68 Authority key identifier: B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 Certificate issuer: /CN=A9188D2D/serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Certificate serial: 025D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft Manifest number: 0256 Signing time: Wed 25 Mar 2026 01:39:10 +0000 Manifest this update: Wed 25 Mar 2026 01:39:09 +0000 Manifest next update: Wed 01 Apr 2026 01:39:09 +0000 Files and hashes: 1: tYgfusqd6_Rspghj0pd8U_3WwZA.crl (hash: hkywPHEnLf4ET9vlGOH9EPKLXDmhUeA4TJM6yg4Zm0Y=) 2: D9D943568FFC11ED9776CB38C4F9AE02.roa (hash: rS73wDlRVwn5DJgE8WmW3uKXkEx8a9vepjddqT6ugZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D2D, serialNumber=B5881FBACA9DEBF46CA60863D2977C53FDD6C190 Validity Not Before: Mar 25 01:39:09 2026 GMT Not After : Apr 1 01:39:09 2026 GMT Subject: CN=69c33cbe-842f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:18:ed:7c:23:d6:b9:5b:6a:0e:9c:24:20: 03:30:f3:4f:0e:fc:6d:dd:53:42:da:ea:56:c5:2d: b2:44:17:1c:5b:66:2a:08:7f:83:a8:87:da:a6:3f: 87:00:3b:e8:f1:d0:fa:ca:b5:3c:6c:0b:ee:14:03: f9:92:38:81:4f:49:c3:3f:45:f4:ad:b0:a6:5f:34: 96:0e:a0:6c:04:ee:4c:8d:a5:0a:ec:00:65:36:56: be:21:91:ab:a8:a8:94:d6:79:b7:8d:b4:50:ee:29: 30:f8:79:76:5c:2a:4c:0f:fe:0f:20:ac:70:b6:b6: 14:d1:3c:6c:42:4b:58:e6:26:cf:7d:96:65:e2:c6: 6b:c7:85:89:84:45:09:8b:2b:58:7e:ea:69:08:68: 0d:3e:b6:4c:d8:63:c3:60:57:3d:90:37:4b:2b:77: 3c:7b:3b:40:1e:77:b8:d2:99:c5:9f:9b:04:33:80: 05:93:98:03:56:90:a4:f8:dd:b3:6a:fb:4d:82:f9: 3e:dd:25:01:98:d9:bb:2c:c3:f1:00:da:4d:e4:83: 8f:16:87:8b:ab:aa:d1:d8:1f:18:36:73:1b:5b:83: 80:92:35:96:d2:a4:8c:54:a3:16:f1:c2:4c:ba:83: f2:a6:06:52:52:d0:0b:1d:de:79:45:74:a4:dd:6c: 45:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FE:98:61:50:F7:6E:44:FD:27:0E:93:ED:7D:E5:A8:0D:68:63:68 X509v3 Authority Key Identifier: keyid:B5:88:1F:BA:CA:9D:EB:F4:6C:A6:08:63:D2:97:7C:53:FD:D6:C1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tYgfusqd6_Rspghj0pd8U_3WwZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D2D/A0682A048FF911EDABEC2537C4F9AE02/tYgfusqd6_Rspghj0pd8U_3WwZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:fd:5d:22:0f:0d:a9:85:b0:d0:fc:0c:1c:57:38:44:dc:45: 21:7e:e9:55:f7:01:42:9d:85:b7:f1:25:a6:ab:a3:c4:43:94: b0:df:8d:8d:a3:d9:8d:b9:90:e1:10:f0:de:f2:17:02:34:61: b0:9b:b2:80:23:dd:59:75:f6:93:a2:7a:b7:91:34:ce:21:40: 44:d3:34:ce:f7:17:b2:e0:be:ae:22:b2:02:62:73:a2:b6:22: 39:f0:ea:93:09:03:46:81:9d:7a:db:8a:03:cb:b3:30:63:2b: ed:40:1a:6b:9b:6e:5f:2d:d5:9e:ef:d8:17:5d:9a:24:3b:61: 8f:11:43:30:1a:fb:ae:3f:d6:e7:ad:13:89:95:cd:5b:63:32: 4e:7e:e7:21:f2:7e:bf:eb:70:da:03:79:2a:d8:8a:6a:8c:79: ef:0a:6f:82:68:bc:b4:85:fa:f4:06:b7:39:3e:dc:a0:cb:20: 05:b4:8c:8e:c0:ca:15:7c:b4:3e:07:b4:9e:86:f8:d7:69:9d: 35:85:8e:0e:bd:c8:a1:6e:c1:db:d2:d3:d6:e2:41:30:14:b7: 67:7a:bd:37:c4:37:66:1e:7b:9f:83:c1:62:78:7b:1a:13:f8: b5:77:11:68:44:c4:54:91:17:be:df:a0:67:89:12:d9:ae:49: d7:8c:4d:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEMkQxMTAvBgNVBAUTKEI1ODgxRkJBQ0E5REVCRjQ2Q0E2MDg2M0QyOTc3QzUz RkRENkMxOTAwHhcNMjYwMzI1MDEzOTA5WhcNMjYwNDAxMDEzOTA5WjAYMRYwFAYD VQQDEw02OWMzM2NiZS04NDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrcY7Xwj1rlbag6cJCADMPNPDvxt3VNC2upWxS2yRBccW2YqCH+DqIfapj+H ADvo8dD6yrU8bAvuFAP5kjiBT0nDP0X0rbCmXzSWDqBsBO5MjaUK7ABlNla+IZGr qKiU1nm3jbRQ7ikw+Hl2XCpMD/4PIKxwtrYU0TxsQktY5ibPfZZl4sZrx4WJhEUJ iytYfuppCGgNPrZM2GPDYFc9kDdLK3c8eztAHne40pnFn5sEM4AFk5gDVpCk+N2z avtNgvk+3SUBmNm7LMPxANpN5IOPFoeLq6rR2B8YNnMbW4OAkjWW0qSMVKMW8cJM uoPypgZSUtALHd55RXSk3WxFbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJv+mGFQ 925E/ScOk+195agNaGNoMB8GA1UdIwQYMBaAFLWIH7rKnev0bKYIY9KXfFP91sGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQyRC9BMDY4MkEwNDhG RjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZfUnNwZ2hqMHBkOFVfM1d3 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZZ2Z1c3FkNl9Sc3BnaGowcGQ4VV8zV3daQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQyRC9BMDY4MkEwNDhGRjkxMUVEQUJFQzI1MzdDNEY5QUUwMi90WWdmdXNxZDZf UnNwZ2hqMHBkOFVfM1d3WkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi/1dIg8NqYWw0PwMHFc4RNxFIX7pVfcBQp2Ft/ElpqujxEOUsN+NjaPZjbmQ 4RDw3vIXAjRhsJuygCPdWXX2k6J6t5E0ziFARNM0zvcXsuC+riKyAmJzorYiOfDq kwkDRoGdetuKA8uzMGMr7UAaa5tuXy3Vnu/YF12aJDthjxFDMBr7rj/W560TiZXN W2MyTn7nIfJ+v+tw2gN5KtiKaox57wpvgmi8tIX69Aa3OT7coMsgBbSMjsDKFXy0 Pge0nob412mdNYWODr3IoW7B29LT1uJBMBS3Z3q9N8Q3Zh57n4PBYnh7GhP4tXcR aETEVJEXvt+gZ4kS2a5J14xNYA== -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:53 2026 by rpki-client