$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: 3BJ0kyT4//UU7olIND+cZNQ1abPz5xrQjq2BPQHRT04= Subject key identifier: CB:52:36:FE:AF:89:FD:7D:33:D7:0A:14:B5:22:33:B3:6C:54:33:22 Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 0B22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 0B0C Signing time: Tue 24 Mar 2026 19:08:39 +0000 Manifest this update: Tue 24 Mar 2026 19:08:38 +0000 Manifest next update: Tue 31 Mar 2026 19:08:38 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: zkeScH147BVxTfUomD2k71369/qt4RaLkd2lNA/D9+o=) 2: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: T7F9sYmBfX213620QhV+BnZ0urvbmihVaySfbdUeNc4=) 3: 676A2DE2564911F08353B443C4F9AE02.roa (hash: ecnb3B//PetfjXKsXLiwuQ7U/4504jmNWHFH5xzzKKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118, serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: Mar 24 19:08:38 2026 GMT Not After : Mar 31 19:08:38 2026 GMT Subject: CN=69c2e137-971f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6d:cb:15:eb:e9:76:dd:f7:b3:87:5f:99:06: de:01:50:f0:2c:10:54:27:f2:cd:42:b5:82:50:7d: 6b:c3:3d:bc:e1:94:49:a3:89:b7:2e:dd:77:2e:b9: ad:ea:85:f4:ff:0c:48:4e:2e:47:1e:ed:8f:f1:5c: d1:b2:0e:19:c1:b6:d0:e4:4d:fa:03:ee:c1:ea:95: 7d:15:7f:bd:2a:25:20:85:1d:ed:b8:bf:c6:d8:ca: ac:47:fe:aa:c2:d4:e1:df:87:7e:a8:78:6e:02:57: 12:e8:38:32:87:a2:ca:01:30:66:ca:1f:33:62:88: 7f:53:68:70:15:74:7a:f7:f2:3a:23:24:a9:18:49: ca:b4:fd:9e:3a:84:9e:08:af:b6:ee:9c:b3:1c:7f: 2b:60:b6:02:4e:37:6d:91:ce:24:29:09:ec:f6:d2: 0d:0f:ba:c7:83:f2:fc:ab:7c:e3:19:b3:92:46:7e: 2f:f8:7c:81:fa:94:98:1a:6f:fc:8e:8f:24:29:fd: 16:69:00:76:ef:ec:54:78:91:1a:ec:bb:d1:82:61: d2:6d:b6:0f:2a:56:39:c9:c7:e2:7c:44:84:a2:c9: bd:03:98:58:20:eb:25:67:6e:d2:22:87:11:01:f8: bb:09:4a:87:24:76:f8:e5:cd:b3:3b:a1:8f:f8:81: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:52:36:FE:AF:89:FD:7D:33:D7:0A:14:B5:22:33:B3:6C:54:33:22 X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a4:92:c5:98:ad:77:28:40:7a:0d:b2:12:1c:0e:da:a3:55: c6:ef:b6:d3:14:58:03:db:ea:6f:96:41:43:60:05:54:3d:da: 96:38:6b:26:41:47:fe:eb:e7:b3:7d:d2:1d:76:ae:54:ea:7a: 29:28:f6:8d:f0:90:bd:b5:b6:d3:b1:be:09:20:db:4b:c2:47: 14:79:4d:a9:9f:fb:0a:b5:b0:87:49:ee:c0:f6:5c:5f:40:d6: f2:64:88:55:d2:cc:8f:e2:b2:39:7b:d1:c1:0c:a0:05:13:d2: 77:f0:80:f3:7f:52:e3:b4:07:72:2f:d8:51:62:26:27:dd:1c: 6a:05:03:b4:b8:a6:42:6a:d8:72:7b:7d:33:d6:79:bd:56:67: b2:64:5e:e6:e6:28:f9:50:85:a8:1f:a5:80:dc:ee:21:7a:d1: 70:a2:17:a3:19:8a:4b:fb:c5:80:bf:80:d3:33:98:fb:3d:63: db:05:38:34:8e:0f:3b:7d:4a:b9:26:63:3e:53:c8:33:50:5b: 51:c2:ec:24:39:f8:c7:06:21:be:fe:82:85:40:6e:f5:01:95: ee:d2:62:17:fe:48:74:2e:57:c2:c1:5c:78:40:0f:ae:77:ac: 05:db:0d:a1:ae:a2:7a:3b:9f:8a:02:52:db:39:e5:cf:61:b7: b0:a9:a9:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjYwMzI0MTkwODM4WhcNMjYwMzMxMTkwODM4WjAYMRYwFAYD VQQDEw02OWMyZTEzNy05NzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr23LFevpdt33s4dfmQbeAVDwLBBUJ/LNQrWCUH1rwz284ZRJo4m3Lt13Lrmt 6oX0/wxITi5HHu2P8VzRsg4ZwbbQ5E36A+7B6pV9FX+9KiUghR3tuL/G2MqsR/6q wtTh34d+qHhuAlcS6Dgyh6LKATBmyh8zYoh/U2hwFXR69/I6IySpGEnKtP2eOoSe CK+27pyzHH8rYLYCTjdtkc4kKQns9tIND7rHg/L8q3zjGbOSRn4v+HyB+pSYGm/8 jo8kKf0WaQB27+xUeJEa7LvRgmHSbbYPKlY5ycfifESEosm9A5hYIOslZ27SIocR Afi7CUqHJHb45c2zO6GP+IFjZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMtSNv6v if19M9cKFLUiM7NsVDMiMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsKSSxZitdyhAeg2yEhwO2qNVxu+20xRYA9vqb5ZBQ2AFVD3aljhrJkFH/uvn s33SHXauVOp6KSj2jfCQvbW207G+CSDbS8JHFHlNqZ/7CrWwh0nuwPZcX0DW8mSI VdLMj+KyOXvRwQygBRPSd/CA839S47QHci/YUWImJ90cagUDtLimQmrYcnt9M9Z5 vVZnsmRe5uYo+VCFqB+lgNzuIXrRcKIXoxmKS/vFgL+A0zOY+z1j2wU4NI4PO31K uSZjPlPIM1BbUcLsJDn4xwYhvv6ChUBu9QGV7tJiF/5IdC5XwsFceEAPrnesBdsN oa6iejufigJS2znlz2G3sKmpyQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:28:22 2026 by rpki-client