$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: uvWz9Eud8LLP1N2AxdwskPM8bpn2SeEuGKNvJc2op2Q= Subject key identifier: 00:C7:B2:BC:BE:F3:A6:39:47:D9:23:8E:81:C9:FF:5B:A2:C7:58:52 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0BF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0BBE Signing time: Tue 24 Mar 2026 18:48:29 +0000 Manifest this update: Tue 24 Mar 2026 18:48:29 +0000 Manifest next update: Tue 31 Mar 2026 18:48:29 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: kSdJNytEw1pk6lS/9RGLNjpsFHsplAyVnYgw4l6WrAg=) 2: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=) 3: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (hash: 2xZ7k/voMKzDAbPl0iSayXcIKNq/l+8uvtLON3JZksk=) 4: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=) 5: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (hash: naputKDT4YFCuDBkowHlF1Y5kTitkWFz9voR8iEVFrQ=) 6: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=) 7: 49E05638EA0B11F09069D0EA6F6F56BC.roa (hash: 5lCa0uM9qsyo4Ls9OwY1shMD+q998RLPGqM4GruFZ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3056 (0xbf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Mar 24 18:48:29 2026 GMT Not After : Mar 31 18:48:29 2026 GMT Subject: CN=69c2dc7d-f8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:48:e4:a6:31:73:e6:26:6e:00:1b:bc:9b:31: b5:2a:80:b2:64:61:c5:c8:f0:ac:ec:31:57:72:3d: 0d:f0:5d:11:a8:67:64:1a:14:67:25:7b:e8:3d:3f: 9e:b1:f2:8c:c9:25:cf:6f:7f:63:12:62:14:c7:d3: 89:b9:ef:12:5d:30:f9:7b:46:90:10:54:7c:31:dc: 8a:50:2c:15:24:7b:70:1e:b9:42:fc:06:5d:b7:1c: 3d:74:27:ab:05:0f:5d:8c:b9:9f:2b:65:0c:9b:f1: 85:f8:8a:d2:a7:57:b8:9c:f9:3f:f4:b0:d9:fb:b0: 39:4e:e3:2d:e6:60:c0:88:83:26:7f:de:30:de:22: b0:d6:ce:85:a5:05:e9:d5:2a:29:78:08:90:e5:ce: e6:bb:7a:f4:41:86:43:09:cd:54:a7:47:42:bf:d2: fe:01:80:ce:e0:38:95:8a:5c:10:76:69:80:3d:3b: b8:5f:10:90:da:0b:5a:00:10:c4:47:cc:6e:09:a6: 4f:ec:85:42:a1:ed:55:8e:a6:58:5b:90:6c:c8:80: 47:56:04:23:20:f5:fd:fc:3e:14:b6:85:b3:a8:51: 5d:66:7b:17:d3:6a:dd:ae:1a:f6:98:f3:70:8b:5c: 37:9f:38:e1:d3:22:fe:2f:44:21:06:0e:2a:cd:a5: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C7:B2:BC:BE:F3:A6:39:47:D9:23:8E:81:C9:FF:5B:A2:C7:58:52 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:16:dc:95:e0:20:5c:40:e8:cd:5f:fa:e0:1d:26:5d:72:47: f9:6f:70:27:45:d5:22:e8:5f:85:95:ca:49:98:4f:2c:83:51: 32:c6:49:df:60:ed:30:51:0f:02:13:d0:d4:8d:f5:33:1e:0f: 37:cc:6e:a8:8c:ab:71:7a:cd:40:74:24:c6:11:31:eb:fa:a0: 55:d5:60:79:dc:e7:0a:52:95:1c:97:d4:e4:01:4e:13:a7:38: 9f:ba:d0:ad:f5:e1:07:c6:b4:4a:ee:5a:a6:1b:49:64:5f:1e: 7f:f8:80:fd:11:4b:27:f7:e9:6e:e2:7d:ec:a1:4f:60:d2:b2: 84:86:83:76:b0:99:59:a0:3b:c5:b4:fd:d3:09:3b:47:59:9c: 12:95:46:92:3c:91:bf:3e:a7:99:48:4e:be:83:2f:03:94:1c: 16:eb:7b:c7:0b:9e:a6:fa:c6:dc:db:c6:ea:d4:f7:f9:f5:cf: d9:d4:78:e7:dc:1b:05:38:d0:39:d4:77:8b:c7:d1:89:9f:ec: fb:79:79:0e:b0:64:a1:dd:7e:70:1d:a3:5e:00:c6:fa:74:ab: 76:5a:75:c3:01:4a:a2:60:3a:7c:60:8a:30:3b:13:76:79:ff: da:3c:fb:e6:12:cf:56:91:c1:c1:cb:75:98:97:32:7d:b2:9c: 19:04:81:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwMzI0MTg0ODI5WhcNMjYwMzMxMTg0ODI5WjAYMRYwFAYD VQQDEw02OWMyZGM3ZC1mOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUjkpjFz5iZuABu8mzG1KoCyZGHFyPCs7DFXcj0N8F0RqGdkGhRnJXvoPT+e sfKMySXPb39jEmIUx9OJue8SXTD5e0aQEFR8MdyKUCwVJHtwHrlC/AZdtxw9dCer BQ9djLmfK2UMm/GF+IrSp1e4nPk/9LDZ+7A5TuMt5mDAiIMmf94w3iKw1s6FpQXp 1SopeAiQ5c7mu3r0QYZDCc1Up0dCv9L+AYDO4DiVilwQdmmAPTu4XxCQ2gtaABDE R8xuCaZP7IVCoe1VjqZYW5BsyIBHVgQjIPX9/D4UtoWzqFFdZnsX02rdrhr2mPNw i1w3nzjh0yL+L0QhBg4qzaWWKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFADHsry+ 86Y5R9kjjoHJ/1uix1hSMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADhbcleAgXEDozV/64B0mXXJH+W9wJ0XVIuhfhZXKSZhPLINRMsZJ32DtMFEP AhPQ1I31Mx4PN8xuqIyrcXrNQHQkxhEx6/qgVdVgedznClKVHJfU5AFOE6c4n7rQ rfXhB8a0Su5aphtJZF8ef/iA/RFLJ/fpbuJ97KFPYNKyhIaDdrCZWaA7xbT90wk7 R1mcEpVGkjyRvz6nmUhOvoMvA5QcFut7xwuepvrG3NvG6tT3+fXP2dR459wbBTjQ OdR3i8fRiZ/s+3l5DrBkod1+cB2jXgDG+nSrdlp1wwFKomA6fGCKMDsTdnn/2jz7 5hLPVpHBwct1mJcyfbKcGQSBiQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:14:49 2026 by rpki-client