$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft File: SIcH43YxSt1UXMZgreziKYZME-A.mft (raw, json) Hash identifier: 0C97G4X+VVW6mtOsjMykxDhoVdK8Yvx8cQx+KDm/eyA= Subject key identifier: B9:7A:59:FA:FB:4E:80:D5:E4:60:B2:31:2D:31:A1:54:B8:BF:B3:13 Authority key identifier: 48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 Certificate issuer: /CN=A9193B7A/serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft Manifest number: 71 Signing time: Wed 25 Mar 2026 07:03:23 +0000 Manifest this update: Wed 25 Mar 2026 07:03:22 +0000 Manifest next update: Wed 01 Apr 2026 07:03:22 +0000 Files and hashes: 1: SIcH43YxSt1UXMZgreziKYZME-A.crl (hash: lVV3Re/yg1xWfiIfH07VbiienXrStp91U8KZv+ISptI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B7A, serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Validity Not Before: Mar 25 07:03:22 2026 GMT Not After : Apr 1 07:03:22 2026 GMT Subject: CN=69c388ba-da45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:86:a7:90:92:b9:e3:bb:43:11:bd:96:05: 4b:82:0a:52:a9:b6:51:1a:9f:74:9c:de:25:26:ca: c0:90:84:0e:ac:6e:d8:7c:fc:9d:7b:04:8d:5b:5a: 95:71:76:b8:a1:71:e7:91:c6:09:d9:38:cd:70:bc: 21:6c:d6:0b:d3:1c:93:41:84:c0:dc:7c:fc:3c:f3: e5:60:eb:b1:a7:5c:3a:85:3e:a8:65:26:fc:56:8a: d2:3e:ec:2a:bb:d9:6a:61:2b:64:cb:8a:53:13:95: e4:ea:2a:80:61:9f:26:5d:81:9b:0c:3c:18:75:ee: 51:80:62:81:58:1d:95:6b:db:47:71:6e:44:e3:3b: 82:d7:ac:e9:62:04:2f:f5:09:52:30:a1:db:8b:27: 71:3c:11:91:5d:5d:0a:69:ac:80:52:99:9b:2e:52: 8c:07:19:0f:e4:1e:8c:ab:73:73:ca:8a:3e:da:1c: 78:b9:45:3e:eb:ae:f4:6c:e1:7b:32:44:84:80:e7: 49:7d:0f:a0:cd:54:7f:7f:77:59:4d:59:b4:e4:1d: 85:46:53:f0:c5:51:ad:8a:4a:d9:e5:a9:f3:8c:eb: e9:45:08:8f:8a:ab:5e:ca:73:f2:1b:3e:d1:26:49: ca:d2:0b:69:c2:0f:00:b4:19:b8:7d:14:d9:5a:69: ff:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:7A:59:FA:FB:4E:80:D5:E4:60:B2:31:2D:31:A1:54:B8:BF:B3:13 X509v3 Authority Key Identifier: keyid:48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:68:1b:47:6b:96:bd:59:fe:da:b1:37:62:94:87:01:66:6d: 42:ef:c1:f8:6e:28:7d:91:98:73:0a:e4:ab:56:48:8e:8f:21: 17:ff:ae:cb:14:00:06:d9:1f:29:0e:81:25:8c:02:90:fa:e4: fa:59:f6:12:bf:6a:20:19:d6:cc:4b:db:73:92:36:58:05:7d: 53:df:70:27:14:f5:5e:19:10:d7:bd:ac:81:b9:18:63:34:a7: c7:65:ff:a4:6e:74:86:57:22:7c:b2:56:e6:76:db:a6:39:21: 34:24:0e:cc:b1:d8:60:0c:8a:6b:5b:c6:0e:07:30:b6:38:e0: 56:26:31:20:fa:e8:7e:9c:1e:26:8a:a7:50:bb:b1:50:a0:12: be:bc:5a:88:3c:d0:d7:d2:10:6b:1c:a6:9a:ec:90:d2:43:c8: 1c:32:d9:09:6d:06:24:22:c7:d2:d2:b5:9f:71:f5:bb:1f:50: 52:1d:07:dd:53:02:fd:b3:67:36:d5:6c:97:0e:79:15:db:fc: aa:cc:38:ab:32:05:18:2e:cd:0f:3a:a7:6a:ae:19:5f:f4:48: 75:f6:86:5c:b8:d2:7d:9d:3e:31:58:87:07:f1:65:a4:ec:2f: 73:d5:96:fb:af:5c:6b:2b:91:4e:90:cb:30:79:87:18:10:89: 96:73:77:79 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I3QTExMC8GA1UEBRMoNDg4NzA3RTM3NjMxNEFERDU0NUNDNjYwQURFQ0UyMjk4 NjRDMTNFMDAeFw0yNjAzMjUwNzAzMjJaFw0yNjA0MDEwNzAzMjJaMBgxFjAUBgNV BAMTDTY5YzM4OGJhLWRhNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/nYankJK547tDEb2WBUuCClKptlEan3Sc3iUmysCQhA6sbth8/J17BI1bWpVx drihceeRxgnZOM1wvCFs1gvTHJNBhMDcfPw88+Vg67GnXDqFPqhlJvxWitI+7Cq7 2WphK2TLilMTleTqKoBhnyZdgZsMPBh17lGAYoFYHZVr20dxbkTjO4LXrOliBC/1 CVIwoduLJ3E8EZFdXQpprIBSmZsuUowHGQ/kHoyrc3PKij7aHHi5RT7rrvRs4Xsy RISA50l9D6DNVH9/d1lNWbTkHYVGU/DFUa2KStnlqfOM6+lFCI+Kq17Kc/IbPtEm ScrSC2nCDwC0Gbh9FNlaaf9dAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUuXpZ+vtO gNXkYLIxLTGhVLi/sxMwHwYDVR0jBBgwFoAUSIcH43YxSt1UXMZgreziKYZME+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjdBL0M5OEQ1NUZBN0RC QjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3QxVVhNWmdyZXppS1laTUUt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0ljSDQzWXhTdDFVWE1aZ3JlemlLWVpNRS1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz QjdBL0M5OEQ1NUZBN0RCQjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3Qx VVhNWmdyZXppS1laTUUtQS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBLaBtHa5a9Wf7asTdilIcBZm1C78H4bih9kZhzCuSrVkiOjyEX/67LFAAG2R8p DoEljAKQ+uT6WfYSv2ogGdbMS9tzkjZYBX1T33AnFPVeGRDXvayBuRhjNKfHZf+k bnSGVyJ8slbmdtumOSE0JA7MsdhgDIprW8YOBzC2OOBWJjEg+uh+nB4miqdQu7FQ oBK+vFqIPNDX0hBrHKaa7JDSQ8gcMtkJbQYkIsfS0rWfcfW7H1BSHQfdUwL9s2c2 1WyXDnkV2/yqzDirMgUYLs0POqdqrhlf9Eh19oZcuNJ9nT4xWIcH8WWk7C9z1Zb7 r1xrK5FOkMsweYcYEImWc3d5 -----END CERTIFICATE-----Generated at Thu Mar 26 02:25:35 2026 by rpki-client