$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: grzZrRaTvm0gt90bTSXp/umvc9pNP5FUFsaTumC32Y0= Subject key identifier: 49:06:E2:59:F0:3B:C4:77:0E:2A:93:25:4E:67:8F:0F:76:C1:24:2B Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0171 Signing time: Wed 25 Mar 2026 03:58:29 +0000 Manifest this update: Wed 25 Mar 2026 03:58:28 +0000 Manifest next update: Wed 01 Apr 2026 03:58:28 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: D9mypyWug9o5cHkOmnKJqTmp8dR9vvYTQ4jmIfK4YT8=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 3zorNKE/Za5VvMkZZVN1UraEZu7wavI4AN86TSPunrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Mar 25 03:58:28 2026 GMT Not After : Apr 1 03:58:28 2026 GMT Subject: CN=69c35d65-8acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7a:b3:df:49:dd:b7:77:a6:48:c1:db:f7:37: 33:20:de:d0:9b:e1:07:84:45:3e:5c:c1:8a:58:eb: 54:65:58:08:92:6f:5e:eb:18:9b:d7:97:7f:c7:5c: fc:6f:73:4f:ab:91:26:07:fb:c5:92:40:ce:da:89: 21:0f:c3:aa:ce:26:ea:67:13:25:fb:3e:28:dd:d9: b7:be:cf:0d:6a:5f:89:53:b1:3a:52:f6:11:49:69: fb:c1:64:93:c2:e5:90:06:31:d0:27:09:bd:ec:ff: 4d:fa:77:c3:a4:71:7e:0f:bb:6c:04:a5:bc:ca:7b: 8b:72:42:18:0d:f3:59:49:6c:8d:91:df:3e:14:f7: 3a:bc:05:ed:43:7e:f6:8e:54:49:75:0f:de:b2:91: 39:9c:df:e8:99:65:39:ac:04:c4:90:d8:79:fe:8d: ce:70:69:87:2f:fb:5f:b8:b1:35:d5:09:8d:bb:dc: 4e:cb:81:8b:5e:58:57:77:0b:88:c7:5e:2c:62:da: c9:9d:eb:90:76:46:7b:e4:de:41:10:4f:38:93:d0: 8b:b7:23:7a:5a:46:4e:be:d2:4a:47:44:9c:24:c5: 00:45:ea:c5:57:ed:2e:70:37:4c:25:03:88:d9:43: 73:37:91:59:17:a7:98:f7:08:e6:c6:be:32:a7:2f: 87:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:06:E2:59:F0:3B:C4:77:0E:2A:93:25:4E:67:8F:0F:76:C1:24:2B X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:b4:ea:3c:08:4e:54:8d:2b:c4:21:e5:65:da:f4:45:b1:62: 57:9b:ac:3f:4f:99:ff:bd:de:75:9f:7a:84:53:0a:21:94:4a: 19:5a:fe:92:2c:19:33:a9:1d:fe:8e:f1:bc:2d:e5:fd:c8:1d: 46:60:10:55:59:d0:ef:a2:b3:69:89:6d:61:57:58:c7:e5:6d: 6f:71:a5:d8:f9:a7:2b:c3:04:db:85:99:63:c6:30:fa:1d:90: 69:c8:8f:73:e0:94:20:da:24:1a:b3:03:bf:ad:37:f2:4a:c5: 21:78:c6:00:b1:c7:f5:0a:c9:60:e6:7b:c8:cb:31:bf:d9:16: 93:0e:b1:dd:6b:d1:0c:e9:cb:2d:05:cb:38:da:cb:6e:50:8d: c6:3e:f6:11:13:ff:08:b7:55:1f:0c:bf:9a:4b:7d:0f:75:ea: 7e:d7:fc:e3:f0:18:7d:b9:72:77:c1:7c:5c:25:07:35:b2:92: bb:a5:be:9c:43:7b:21:50:15:d6:c4:45:69:d0:3e:68:d6:34: c2:55:0a:28:39:a6:47:4e:ff:e8:16:cf:46:d9:20:14:20:d1: 7b:cb:bd:3c:15:df:08:f7:0d:a2:45:eb:d8:c8:09:38:ea:05: b5:7f:4d:0c:0b:43:2a:5d:1b:17:e6:de:0b:c3:6b:8a:22:5b: ce:31:f1:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjYwMzI1MDM1ODI4WhcNMjYwNDAxMDM1ODI4WjAYMRYwFAYD VQQDEw02OWMzNWQ2NS04YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHqz30ndt3emSMHb9zczIN7Qm+EHhEU+XMGKWOtUZVgIkm9e6xib15d/x1z8 b3NPq5EmB/vFkkDO2okhD8OqzibqZxMl+z4o3dm3vs8Nal+JU7E6UvYRSWn7wWST wuWQBjHQJwm97P9N+nfDpHF+D7tsBKW8ynuLckIYDfNZSWyNkd8+FPc6vAXtQ372 jlRJdQ/espE5nN/omWU5rATEkNh5/o3OcGmHL/tfuLE11QmNu9xOy4GLXlhXdwuI x14sYtrJneuQdkZ75N5BEE84k9CLtyN6WkZOvtJKR0ScJMUARerFV+0ucDdMJQOI 2UNzN5FZF6eY9wjmxr4ypy+HTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEkG4lnw O8R3DiqTJU5njw92wSQrMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfbTqPAhOVI0rxCHlZdr0RbFiV5usP0+Z/73edZ96hFMKIZRKGVr+kiwZM6kd /o7xvC3l/cgdRmAQVVnQ76KzaYltYVdYx+Vtb3Gl2PmnK8ME24WZY8Yw+h2QaciP c+CUINokGrMDv6038krFIXjGALHH9QrJYOZ7yMsxv9kWkw6x3WvRDOnLLQXLONrL blCNxj72ERP/CLdVHwy/mkt9D3Xqftf84/AYfblyd8F8XCUHNbKSu6W+nEN7IVAV 1sRFadA+aNY0wlUKKDmmR07/6BbPRtkgFCDRe8u9PBXfCPcNokXr2MgJOOoFtX9N DAtDKl0bF+beC8NriiJbzjHxng== -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:05 2026 by rpki-client