$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: 6qagKkVL80miLiCoOQpzIQ9exl3G+WxAox7/H7zFYSg= Subject key identifier: 68:B9:56:81:9D:2D:9F:04:7C:3F:3A:8B:7E:23:49:8F:8F:B7:A5:3A Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 062E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 0624 Signing time: Tue 24 Mar 2026 22:31:33 +0000 Manifest this update: Tue 24 Mar 2026 22:31:33 +0000 Manifest next update: Tue 31 Mar 2026 22:31:33 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: d558yghR7GVrZ6cLp6BoqzX2+KOkNhrLasLEn2wUWOU=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: cLEGJuuOutpOBPsuC1eSdRC04oAPN6e0TRfgYBt8aGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1582 (0x62e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Mar 24 22:31:33 2026 GMT Not After : Mar 31 22:31:33 2026 GMT Subject: CN=69c310c5-e40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:60:ca:d4:68:25:eb:a9:72:3c:ff:8f:32: 4f:6d:16:a7:d8:1a:00:b5:1b:0e:03:34:31:8f:2d: db:48:79:c5:85:a8:05:18:09:22:be:38:44:bf:8b: df:c6:8b:63:8f:32:a4:69:93:0a:ba:24:16:4a:25: e4:97:c6:0d:5a:c7:f2:f6:f3:06:db:f6:9c:a9:c0: 90:29:58:33:d7:d9:da:e3:94:20:07:bd:d8:b2:4d: 41:f7:4b:fc:a9:eb:51:bb:1c:3d:6d:88:dd:82:a0: 76:93:16:dc:3c:14:f9:1e:f6:d1:91:ce:9a:59:36: ca:dd:69:ef:c7:18:02:5b:28:af:2a:02:b2:70:8c: 8a:81:28:3e:a4:48:de:56:52:58:33:6c:da:b7:6f: 6e:92:e5:2d:62:53:95:f6:75:b4:0e:48:c4:ec:fc: 35:04:ea:07:68:b2:49:64:4e:46:04:1e:9f:9a:9d: d9:e1:ca:b8:bf:19:9e:d9:c6:e9:a5:be:e4:d9:64: 50:35:33:69:6f:22:84:9f:81:0e:77:a0:69:40:c3: e7:57:63:82:27:e7:c7:8e:82:c5:ac:ac:f2:23:46: 2a:8b:d8:81:0a:3d:99:f4:b9:60:78:e7:e9:eb:12: d5:03:8b:77:a4:e2:85:bb:50:de:e1:cf:bf:5b:f4: 33:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B9:56:81:9D:2D:9F:04:7C:3F:3A:8B:7E:23:49:8F:8F:B7:A5:3A X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:6a:8d:d6:a4:c8:62:6e:01:e1:85:89:62:59:4b:ee:a6:93: 55:f6:25:49:e0:a2:ff:8c:c7:da:18:79:d9:99:d3:43:b4:67: 67:14:ec:0f:3e:49:fe:20:dd:ba:e9:3f:2f:31:04:52:06:40: dd:7e:71:1e:85:8b:6d:74:8f:41:24:9d:2e:14:30:38:88:45: ac:88:7f:ea:a8:cd:69:98:b3:18:48:47:49:7c:c0:57:07:f5: d3:15:38:d5:8b:63:c9:1d:99:38:c8:29:79:da:a6:93:c5:8a: de:a4:07:62:36:39:c0:cf:7c:a6:d4:5b:5c:c9:fd:54:f5:ec: 7d:4c:3d:d8:dd:aa:ee:87:ab:06:4d:bc:26:63:04:bf:3c:1f: 26:ca:10:14:74:f7:13:6d:20:af:8b:de:be:24:65:23:c2:2c: cb:b7:d4:f9:46:aa:de:f0:b8:e6:b6:75:e0:15:95:04:d9:cd: d7:f9:9e:f4:ed:88:44:0d:93:aa:b1:22:93:03:2b:3d:ff:c5: 6f:6e:11:5a:fd:97:91:60:18:44:bc:e7:23:a1:07:a0:81:45: d7:e4:9d:19:d8:0c:ae:4a:d4:f1:31:ae:9b:b8:c3:e9:96:64: 4b:49:ff:98:9a:cd:6d:ec:35:f5:9e:ca:a2:bc:ba:21:a1:c2: 2d:79:9d:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjYwMzI0MjIzMTMzWhcNMjYwMzMxMjIzMTMzWjAYMRYwFAYD VQQDEw02OWMzMTBjNS1lNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAxgytRoJeupcjz/jzJPbRan2BoAtRsOAzQxjy3bSHnFhagFGAkivjhEv4vf xotjjzKkaZMKuiQWSiXkl8YNWsfy9vMG2/acqcCQKVgz19na45QgB73Ysk1B90v8 qetRuxw9bYjdgqB2kxbcPBT5HvbRkc6aWTbK3WnvxxgCWyivKgKycIyKgSg+pEje VlJYM2zat29ukuUtYlOV9nW0DkjE7Pw1BOoHaLJJZE5GBB6fmp3Z4cq4vxme2cbp pb7k2WRQNTNpbyKEn4EOd6BpQMPnV2OCJ+fHjoLFrKzyI0Yqi9iBCj2Z9LlgeOfp 6xLVA4t3pOKFu1De4c+/W/QzSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGi5VoGd LZ8EfD86i34jSY+Pt6U6MB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAmqN1qTIYm4B4YWJYllL7qaTVfYlSeCi/4zH2hh52ZnTQ7RnZxTsDz5J/iDd uuk/LzEEUgZA3X5xHoWLbXSPQSSdLhQwOIhFrIh/6qjNaZizGEhHSXzAVwf10xU4 1YtjyR2ZOMgpedqmk8WK3qQHYjY5wM98ptRbXMn9VPXsfUw92N2q7oerBk28JmME vzwfJsoQFHT3E20gr4veviRlI8Isy7fU+Uaq3vC45rZ14BWVBNnN1/me9O2IRA2T qrEikwMrPf/Fb24RWv2XkWAYRLznI6EHoIFF1+SdGdgMrkrU8TGum7jD6ZZkS0n/ mJrNbew19Z7Kory6IaHCLXmdcg== -----END CERTIFICATE-----Generated at Thu Mar 26 21:50:55 2026 by rpki-client