$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: cf7SYlx6seKV12Xd1UvfTcwS+kH2CXqlE6SXGTZCpiQ= Subject key identifier: CC:F5:9C:D6:B5:25:8B:63:E8:00:27:DA:81:50:F2:17:F3:B1:27:95 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 01BE Signing time: Wed 25 Mar 2026 03:08:04 +0000 Manifest this update: Wed 25 Mar 2026 03:08:03 +0000 Manifest next update: Wed 01 Apr 2026 03:08:03 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: +I/D4ZrYLaYLdkF99rwW1TdADFfvyRxAk6evy93RHqM=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: zfGF7KOCQQRDY2l23rBtYS3NirQreMdPDlzYfVapP6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Mar 25 03:08:03 2026 GMT Not After : Apr 1 03:08:03 2026 GMT Subject: CN=69c35194-ec63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3f:46:55:6c:45:36:44:d3:11:10:4f:40:44: dd:f3:1d:98:c9:fd:37:5d:9b:6a:85:49:e6:c7:f8: 03:e4:ff:92:40:ba:1f:ab:37:9b:f0:79:fd:c7:fa: 9d:02:46:01:68:cf:4d:3d:cf:0e:35:92:20:9a:28: 9a:ec:c2:74:26:00:e8:71:ba:1b:41:8c:16:79:b8: ac:e0:e6:15:16:01:72:38:ec:ee:b1:93:99:ee:52: 4b:f0:2e:66:9d:49:c6:c2:1b:3b:6f:9e:e6:dd:e1: af:a3:b6:9e:3f:9f:cd:35:af:e3:9a:be:a6:28:56: 08:34:87:8a:06:20:5e:73:7e:73:1b:8b:f2:1c:dd: 1e:23:02:f0:3c:d8:8e:23:99:50:06:b1:b1:eb:28: c2:62:7f:8d:cb:6e:62:dd:55:b4:3c:f1:7e:08:a8: 0e:88:1f:0a:e8:8d:3f:9a:40:0f:3d:c0:b5:9f:9a: 0e:43:17:44:5c:b5:12:2e:b5:a2:ee:cd:5c:c0:48: f2:39:c5:dd:6a:3d:7b:18:77:2d:3b:cc:77:e2:30: ff:61:c2:0e:6a:66:6f:e6:e3:5a:76:3d:d4:58:44: d4:79:7d:da:9c:b5:48:0b:50:e5:b5:34:2e:8f:ce: 17:22:1d:c8:59:75:1b:36:76:9a:b4:17:93:33:53: 21:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F5:9C:D6:B5:25:8B:63:E8:00:27:DA:81:50:F2:17:F3:B1:27:95 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:f3:e1:3c:53:91:6c:9e:95:29:cd:34:39:ce:25:b2:6e:6b: ff:fe:0c:f0:55:d7:a2:09:05:cc:5f:bc:c0:1b:34:7b:e4:b2: cd:4c:23:bf:5c:f8:ff:b8:e4:76:8f:4f:01:c3:ed:44:78:d6: a3:1f:8a:4a:32:2a:ee:0d:6b:d9:0f:d0:dc:92:91:c7:90:84: 28:6f:63:01:4a:68:29:aa:c1:a1:e7:9a:2a:48:28:ae:b9:ce: e2:b4:50:0c:a2:30:03:16:53:11:87:07:1e:4b:b9:2e:1f:e9: 4b:55:3c:56:07:cf:fd:58:53:ec:1e:84:1d:b2:6b:79:be:02: 69:9f:ce:1a:4e:ba:21:18:ac:56:df:68:79:11:fd:db:08:a8: 13:60:1e:38:39:03:64:96:3b:fe:29:9f:a3:80:2a:3e:f2:91: ab:61:d1:9d:7e:09:68:dc:0e:f4:d2:57:02:49:75:94:38:7d: c0:bf:07:ad:2e:65:a2:3e:cc:08:46:d4:cb:34:98:96:75:6d: 4f:ad:cc:15:e9:50:c1:49:e6:c4:0f:cb:bd:73:46:4b:9f:71: ab:20:ea:56:b0:c1:8a:aa:e2:5f:9a:a1:f4:af:e3:b5:29:19: 39:98:e8:76:6f:85:bc:5a:a2:90:fc:c7:86:e6:b6:4e:2d:af: 3d:e7:75:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjYwMzI1MDMwODAzWhcNMjYwNDAxMDMwODAzWjAYMRYwFAYD VQQDEw02OWMzNTE5NC1lYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwT9GVWxFNkTTERBPQETd8x2Yyf03XZtqhUnmx/gD5P+SQLofqzeb8Hn9x/qd AkYBaM9NPc8ONZIgmiia7MJ0JgDocbobQYwWebis4OYVFgFyOOzusZOZ7lJL8C5m nUnGwhs7b57m3eGvo7aeP5/NNa/jmr6mKFYINIeKBiBec35zG4vyHN0eIwLwPNiO I5lQBrGx6yjCYn+Ny25i3VW0PPF+CKgOiB8K6I0/mkAPPcC1n5oOQxdEXLUSLrWi 7s1cwEjyOcXdaj17GHctO8x34jD/YcIOamZv5uNadj3UWETUeX3anLVIC1DltTQu j84XIh3IWXUbNnaatBeTM1MhMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMz1nNa1 JYtj6AAn2oFQ8hfzsSeVMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArvPhPFORbJ6VKc00Oc4lsm5r//4M8FXXogkFzF+8wBs0e+SyzUwjv1z4/7jk do9PAcPtRHjWox+KSjIq7g1r2Q/Q3JKRx5CEKG9jAUpoKarBoeeaKkgorrnO4rRQ DKIwAxZTEYcHHku5Lh/pS1U8VgfP/VhT7B6EHbJreb4CaZ/OGk66IRisVt9oeRH9 2wioE2AeODkDZJY7/imfo4AqPvKRq2HRnX4JaNwO9NJXAkl1lDh9wL8HrS5loj7M CEbUyzSYlnVtT63MFelQwUnmxA/LvXNGS59xqyDqVrDBiqriX5qh9K/jtSkZOZjo dm+FvFqikPzHhua2Ti2vPed15Q== -----END CERTIFICATE-----Generated at Thu Mar 26 12:38:17 2026 by rpki-client