$ rpki-client -vvf rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft File: 7MBefFuSR4uMxDst35ql9slCnyE.mft (raw, json) Hash identifier: 9au+Y+GhVe6AgwLM91fUF1sHo6pumg0sxANGXEvW1XY= Subject key identifier: 89:CC:14:3D:29:A4:A3:88:56:3C:06:79:A1:25:83:2E:41:00:0B:C3 Authority key identifier: EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 Certificate issuer: /CN=A9190D0D/serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Certificate serial: 0BC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft Manifest number: 0B9B Signing time: Tue 24 Mar 2026 18:55:41 +0000 Manifest this update: Tue 24 Mar 2026 18:55:41 +0000 Manifest next update: Tue 31 Mar 2026 18:55:41 +0000 Files and hashes: 1: 7MBefFuSR4uMxDst35ql9slCnyE.crl (hash: dngdHK4eRe777A1LoLAkigyewNeyOgVQmDZCrdyOLbE=) 2: 81B5E70C18B511F1AC11CD310A3D8C67.roa (hash: 5Ie3ZIxlQpY2pGzYYtHErJYraDQp8xSopPGehYawBBk=) 3: B7F0310EBCB911F08FEDBF33C4F9AE02.roa (hash: iBHWKuOva34+z/8UqtOgV0qkI2D/34heB6aVlSgkcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190D0D, serialNumber=ECC05E7C5B92478B8CC43B2DDF9AA5F6C9429F21 Validity Not Before: Mar 24 18:55:41 2026 GMT Not After : Mar 31 18:55:41 2026 GMT Subject: CN=69c2de2d-f3d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c6:8e:64:7c:cb:b2:3a:bb:f2:a6:a3:ce:dc: 7d:38:c7:a5:1d:75:a5:a5:c0:b9:a5:f3:dc:c4:87: c0:5c:7f:fc:cb:7d:bc:e7:63:94:a5:63:4d:d6:2d: 6e:ea:2f:16:08:77:48:b2:e4:54:0d:f7:d6:6d:f8: ad:b0:f4:51:9f:89:3c:fe:48:d4:84:7d:7a:8b:d5: 0a:01:39:bb:8e:0e:3e:f2:78:91:11:24:ae:db:9a: 2d:b9:4e:da:83:01:fd:48:c0:cb:30:11:4b:c7:8a: dd:1d:a9:fe:d0:94:34:11:eb:19:67:00:80:36:bc: b4:4f:97:45:77:6d:cc:c3:15:21:e3:51:10:15:56: 94:4f:14:7f:91:ce:47:96:b0:5c:96:9f:2c:c5:db: 76:bc:0b:7b:a2:f9:cc:f5:d5:18:5b:d0:9f:d4:06: 80:1a:37:e8:a6:96:9c:a3:4b:e4:49:5f:8e:87:77: ab:10:2e:9d:ac:20:19:61:f7:6f:74:56:33:4d:27: ea:b9:73:30:f4:79:01:86:db:47:e6:da:0a:0f:01: e4:72:f6:8b:ba:f2:31:67:60:45:9f:26:b4:2f:ff: cd:e1:aa:ba:b0:88:5e:55:76:93:ee:19:10:0c:e6: a9:d9:dd:8c:c5:43:5b:f2:31:15:e4:50:d6:1c:30: 04:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:CC:14:3D:29:A4:A3:88:56:3C:06:79:A1:25:83:2E:41:00:0B:C3 X509v3 Authority Key Identifier: keyid:EC:C0:5E:7C:5B:92:47:8B:8C:C4:3B:2D:DF:9A:A5:F6:C9:42:9F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7MBefFuSR4uMxDst35ql9slCnyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190D0D/F037BD08476611EAABB11A65C4F9AE02/7MBefFuSR4uMxDst35ql9slCnyE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d3:d2:9f:34:fa:43:26:86:ae:75:94:0a:b3:16:ea:30:7d: 23:05:7f:54:02:3b:47:67:90:99:e8:cb:a0:a5:8a:aa:86:62: 73:a8:5f:49:90:7a:fe:8a:e1:03:54:a0:73:0c:ad:0e:a5:80: d8:0b:9f:5a:5f:25:85:3d:e0:7d:18:f4:dc:40:32:b0:c3:55: ab:3a:65:31:b1:0c:6e:62:43:01:a8:14:32:b6:b7:42:9c:13: 9a:ab:36:af:e5:3a:40:3d:94:fb:5f:a7:01:58:7d:b2:36:aa: 47:65:c1:c9:82:b2:f4:dd:86:54:b9:f3:b7:43:68:1c:70:2c: 3a:d7:c3:c0:16:fe:e8:be:a2:5c:34:b7:0e:9b:ad:cf:19:43: fe:a6:2f:83:84:f8:88:56:e7:02:91:47:96:1f:3c:49:32:85: 26:52:4e:b3:6f:b3:6b:65:f0:c3:1e:82:44:86:c6:93:d2:43: dd:83:e2:c2:25:b9:99:3b:8e:31:5e:38:29:0b:e7:8b:f3:e6: 7d:cc:f4:69:ad:33:44:1f:4c:2c:37:7e:fd:d6:a8:28:57:e6: 58:0e:ba:3d:ad:ce:db:d7:e7:48:2c:22:78:17:6e:be:0a:e7: 51:01:0f:40:33:7b:c1:4c:e2:fc:06:d9:ed:6b:ab:1d:db:b9: b8:44:2f:7e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBEMEQxMTAvBgNVBAUTKEVDQzA1RTdDNUI5MjQ3OEI4Q0M0M0IyRERGOUFBNUY2 Qzk0MjlGMjEwHhcNMjYwMzI0MTg1NTQxWhcNMjYwMzMxMTg1NTQxWjAYMRYwFAYD VQQDEw02OWMyZGUyZC1mM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsaOZHzLsjq78qajztx9OMelHXWlpcC5pfPcxIfAXH/8y32852OUpWNN1i1u 6i8WCHdIsuRUDffWbfitsPRRn4k8/kjUhH16i9UKATm7jg4+8niRESSu25otuU7a gwH9SMDLMBFLx4rdHan+0JQ0EesZZwCANry0T5dFd23MwxUh41EQFVaUTxR/kc5H lrBclp8sxdt2vAt7ovnM9dUYW9Cf1AaAGjfoppaco0vkSV+Oh3erEC6drCAZYfdv dFYzTSfquXMw9HkBhttH5toKDwHkcvaLuvIxZ2BFnya0L//N4aq6sIheVXaT7hkQ DOap2d2MxUNb8jEV5FDWHDAEywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFInMFD0p pKOIVjwGeaElgy5BAAvDMB8GA1UdIwQYMBaAFOzAXnxbkkeLjMQ7Ld+apfbJQp8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEQwRC9GMDM3QkQwODQ3 NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0dU14RHN0MzVxbDlzbENu eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdNQmVmRnVTUjR1TXhEc3QzNXFsOXNsQ255RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MEQwRC9GMDM3QkQwODQ3NjYxMUVBQUJCMTFBNjVDNEY5QUUwMi83TUJlZkZ1U1I0 dU14RHN0MzVxbDlzbENueUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdtPSnzT6QyaGrnWUCrMW6jB9IwV/VAI7R2eQmejLoKWKqoZic6hfSZB6/orh A1SgcwytDqWA2AufWl8lhT3gfRj03EAysMNVqzplMbEMbmJDAagUMra3QpwTmqs2 r+U6QD2U+1+nAVh9sjaqR2XByYKy9N2GVLnzt0NoHHAsOtfDwBb+6L6iXDS3Dput zxlD/qYvg4T4iFbnApFHlh88STKFJlJOs2+za2Xwwx6CRIbGk9JD3YPiwiW5mTuO MV44KQvni/Pmfcz0aa0zRB9MLDd+/daoKFfmWA66Pa3O29fnSCwieBduvgrnUQEP QDN7wUzi/AbZ7WurHdu5uEQvfg== -----END CERTIFICATE-----Generated at Thu Mar 26 18:47:45 2026 by rpki-client