$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: OQH5hBMjxVHP9PbTatFVsBekjPHOAJH5CC2f4quI7WU= Subject key identifier: 10:B9:C5:F6:4B:76:3E:3D:3B:FD:D6:A1:62:70:A3:82:61:AA:F0:E3 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0E85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0E7B Signing time: Tue 24 Mar 2026 17:37:21 +0000 Manifest this update: Tue 24 Mar 2026 17:37:21 +0000 Manifest next update: Tue 31 Mar 2026 17:37:21 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: chVUFQvtCDJpL9OwPNPJfnfGj6gdctttLFr8J5ktsMw=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: k8KPSV6AIo1KPs7202z0z5rLKfEOuxcDMiUELQD0ouE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3717 (0xe85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Mar 24 17:37:21 2026 GMT Not After : Mar 31 17:37:21 2026 GMT Subject: CN=69c2cbd1-6f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:19:c4:27:6c:ba:5b:8d:ff:35:ec:00:d8:57: 7c:09:7c:6f:a8:fb:ba:95:e8:22:d6:28:b3:68:03: c6:01:65:15:ca:03:29:04:30:f4:27:74:4c:6a:ca: cb:1a:92:65:b2:0e:d3:63:81:28:52:63:d0:44:e3: e3:38:ea:6c:28:b1:57:ca:17:1b:15:1c:20:7e:84: a7:dd:fd:e8:5b:71:2d:a4:80:99:99:bd:5c:fb:ff: db:92:48:b7:68:7e:d3:26:30:2e:8c:d3:16:17:8d: e7:1b:eb:5c:33:d7:a2:f2:82:d0:56:44:56:58:b7: bb:c6:af:1b:cf:20:53:a2:3e:89:77:9e:0e:3b:8a: 25:f7:51:97:b0:b6:09:3c:ea:0a:95:26:13:fb:96: 5b:77:69:97:97:68:9f:8e:51:a4:8c:e5:47:68:ce: 8c:c7:b1:5b:c4:8c:18:19:a1:a1:00:5c:f5:6b:86: a9:20:49:34:c7:98:d6:2d:27:d6:ce:6d:9e:82:b4: fa:d3:87:cc:8b:e3:a9:15:fc:7e:c3:37:34:80:8d: cb:bd:f9:f7:00:24:0d:d7:71:e1:f7:0b:1d:34:f9: 09:f5:b6:a0:51:eb:41:0b:2a:af:fa:04:b0:f4:ce: 01:c2:56:ae:2d:6e:b1:62:a1:5f:f7:fe:b3:8c:ac: da:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B9:C5:F6:4B:76:3E:3D:3B:FD:D6:A1:62:70:A3:82:61:AA:F0:E3 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:57:49:0c:24:e1:d0:ed:d2:ec:6f:8b:95:e8:49:a2:4d:38: 60:b4:3a:68:5e:40:48:ff:6b:cd:1c:9c:e7:ec:d6:b4:20:d4: c2:61:51:b7:2a:b7:ad:48:e3:53:a0:14:65:2f:33:67:64:86: 67:36:80:03:fe:74:34:2d:b9:b4:e5:fa:dd:8f:00:cd:15:ad: 0b:8c:c3:e6:b0:c7:42:c1:0e:68:cb:f7:a6:88:55:c4:b2:16: 8a:68:da:d8:27:a8:e6:c9:94:89:12:c1:4e:3f:c5:6c:64:8f: 14:92:5a:d0:0b:2b:32:69:a7:22:d4:ee:85:c5:27:d8:b5:19: 24:14:84:16:fd:71:20:1c:c0:df:1a:6f:dc:50:0a:d3:b0:f7: 68:1b:96:c6:ad:a0:84:0a:58:c1:3a:af:27:44:08:60:83:9d: 5a:27:da:a4:eb:29:0a:22:f9:5f:e7:45:19:f0:ad:ae:ad:83: f1:0a:bb:93:2a:22:63:15:3b:8f:59:1b:1e:f1:40:98:e7:53: 1c:2e:7b:3d:99:3d:74:f2:4e:2b:59:66:a5:d3:27:c3:0b:ba: f4:07:38:e8:f0:8f:f5:d8:63:97:89:c7:f3:f5:0b:f3:0d:2c: b9:a8:bd:8d:ae:ae:4b:f0:67:b4:28:21:38:97:b9:b9:05:2e: 04:c5:c3:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjYwMzI0MTczNzIxWhcNMjYwMzMxMTczNzIxWjAYMRYwFAYD VQQDEw02OWMyY2JkMS02ZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBnEJ2y6W43/NewA2Fd8CXxvqPu6legi1iizaAPGAWUVygMpBDD0J3RMasrL GpJlsg7TY4EoUmPQROPjOOpsKLFXyhcbFRwgfoSn3f3oW3EtpICZmb1c+//bkki3 aH7TJjAujNMWF43nG+tcM9ei8oLQVkRWWLe7xq8bzyBToj6Jd54OO4ol91GXsLYJ POoKlSYT+5Zbd2mXl2ifjlGkjOVHaM6Mx7FbxIwYGaGhAFz1a4apIEk0x5jWLSfW zm2egrT604fMi+OpFfx+wzc0gI3Lvfn3ACQN13Hh9wsdNPkJ9bagUetBCyqv+gSw 9M4BwlauLW6xYqFf9/6zjKza6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBC5xfZL dj49O/3WoWJwo4JhqvDjMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqFdJDCTh0O3S7G+LlehJok04YLQ6aF5ASP9rzRyc5+zWtCDUwmFRtyq3rUjj U6AUZS8zZ2SGZzaAA/50NC25tOX63Y8AzRWtC4zD5rDHQsEOaMv3pohVxLIWimja 2Ceo5smUiRLBTj/FbGSPFJJa0AsrMmmnItTuhcUn2LUZJBSEFv1xIBzA3xpv3FAK 07D3aBuWxq2ghApYwTqvJ0QIYIOdWifapOspCiL5X+dFGfCtrq2D8Qq7kyoiYxU7 j1kbHvFAmOdTHC57PZk9dPJOK1lmpdMnwwu69Ac46PCP9dhjl4nH8/UL8w0suai9 ja6uS/BntCghOJe5uQUuBMXD8g== -----END CERTIFICATE-----Generated at Thu Mar 26 11:16:04 2026 by rpki-client