$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft File: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft (raw, json) Hash identifier: rKcWst55EG0Dlx3vdsM67XkkYfFrRVTisTYE2xm6Q8E= Subject key identifier: 09:56:8B:DB:EB:C3:2D:2F:B6:F6:70:63:9B:94:02:59:CA:BF:61:DD Authority key identifier: D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 Certificate issuer: /CN=A9116B0C/serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft Manifest number: 2D Signing time: Sun 29 Mar 2026 08:24:03 +0000 Manifest this update: Sun 29 Mar 2026 08:24:02 +0000 Manifest next update: Sun 05 Apr 2026 08:24:02 +0000 Files and hashes: 1: 1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl (hash: ZZ2r8v2FnEsoJeBEg1q8t0ICTT23aBBbbGLDP24STNw=) 2: F5568448F11C11F0AC52AD484D6F56BC.roa (hash: FSRnxAS3d/oxWCt/mXgTvn1rm5+e0wMamnNqPiiIkGI=) 3: 2235EF78F12011F0BFBF3F154E6F56BC.roa (hash: PdAz+4W9gV7DG5blKrt0fnM9lwbclCTxlZE4svm7VgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B0C, serialNumber=D5B16768914A80C93124629610CC40502AAED0E9 Validity Not Before: Mar 29 08:24:02 2026 GMT Not After : Apr 5 08:24:02 2026 GMT Subject: CN=69c8e1a2-d14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:02:64:3c:c0:f2:fa:87:55:dc:dc:6f:c1:48: 0d:96:c2:35:1a:8d:32:c3:b8:fc:88:62:9a:28:27: 06:cb:2b:87:21:63:c6:e9:52:e8:9f:ad:dc:c3:6a: e4:7b:ba:91:43:d4:ae:01:6c:80:52:92:a7:35:68: 81:1f:f1:7d:73:74:d7:72:fd:d9:65:eb:38:3b:ce: 21:bf:d4:1a:c4:95:f0:88:ae:03:0c:79:ff:da:08: f4:a2:34:f5:29:a8:20:ab:96:7a:0a:4f:6d:aa:d6: a8:90:81:65:4b:8b:34:be:cd:4d:f5:4f:1b:43:cc: 46:36:29:ae:e6:81:37:b0:24:e0:f5:d0:ee:75:29: ee:26:a8:cd:de:1c:db:77:16:b4:6d:de:b4:eb:54: 2d:35:a7:fb:92:a3:d0:67:18:d9:e9:87:ef:9e:19: 56:2d:f1:60:0f:1c:78:22:ca:68:e2:c9:cb:e7:5c: 8f:ef:50:77:48:b6:93:db:27:a2:7d:a3:57:90:b9: d4:26:2c:52:e8:8d:fc:01:30:4b:b9:16:f7:6f:c2: 3a:1b:47:7d:12:c7:5f:55:59:c3:fd:e7:63:b6:eb: 4f:f6:91:fb:5a:d7:32:af:c5:bd:84:d5:2e:14:87: b7:c7:82:75:4b:30:ea:e2:b3:71:b9:f5:80:61:fe: e1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:56:8B:DB:EB:C3:2D:2F:B6:F6:70:63:9B:94:02:59:CA:BF:61:DD X509v3 Authority Key Identifier: keyid:D5:B1:67:68:91:4A:80:C9:31:24:62:96:10:CC:40:50:2A:AE:D0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B0C/B61386E6F11C11F0A38F28474D6F56BC/1bFnaJFKgMkxJGKWEMxAUCqu0Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:76:56:09:8f:aa:62:6a:11:41:78:ad:fc:75:0b:cd:3d:77: 5b:d3:0e:48:dc:15:3d:8c:99:c2:43:81:f9:ea:46:84:d2:1d: 29:a8:70:7b:2f:ac:c8:e6:36:a3:db:f0:02:c3:f4:11:de:1d: 5b:83:25:0c:7d:0c:01:25:85:4a:af:e4:d7:e0:3c:2b:df:89: 0b:1e:9b:f1:3d:e5:53:c1:08:d2:48:d6:bd:32:bd:a6:83:9f: 96:4c:db:7e:e0:63:43:ef:54:4e:e7:ec:d3:be:59:6b:2c:15: 80:1b:2b:59:bc:e5:58:45:d3:27:6f:9e:19:03:84:7f:4a:e7: 00:26:68:3b:21:64:14:f1:bc:11:d6:b8:56:71:0e:a2:4c:e8: 64:f4:48:aa:fe:b8:ff:39:93:33:cd:c1:85:15:9e:37:2e:f7: 84:f2:d4:bb:51:11:42:2b:1e:94:a1:54:84:62:b6:59:2b:df: fc:85:d5:d3:9c:8b:5c:3e:50:64:0c:7e:6f:a8:76:4e:46:66: 7e:6a:eb:20:8b:13:a8:28:b0:0d:1a:fe:4d:80:e2:a5:3a:e5: 1e:86:ef:98:e3:6e:f5:42:33:25:3a:e0:a6:ca:e4:3a:02:4f: c6:e2:d8:fb:ea:1e:a3:97:e7:c0:25:eb:e3:34:d8:c8:97:60: 9a:e9:f5:53 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkIwQzExMC8GA1UEBRMoRDVCMTY3Njg5MTRBODBDOTMxMjQ2Mjk2MTBDQzQwNTAy QUFFRDBFOTAeFw0yNjAzMjkwODI0MDJaFw0yNjA0MDUwODI0MDJaMBgxFjAUBgNV BAMTDTY5YzhlMWEyLWQxNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrAmQ8wPL6h1Xc3G/BSA2WwjUajTLDuPyIYpooJwbLK4chY8bpUuifrdzDauR7 upFD1K4BbIBSkqc1aIEf8X1zdNdy/dll6zg7ziG/1BrElfCIrgMMef/aCPSiNPUp qCCrlnoKT22q1qiQgWVLizS+zU31TxtDzEY2Ka7mgTewJOD10O51Ke4mqM3eHNt3 FrRt3rTrVC01p/uSo9BnGNnph++eGVYt8WAPHHgiymjiycvnXI/vUHdItpPbJ6J9 o1eQudQmLFLojfwBMEu5FvdvwjobR30Sx19VWcP952O260/2kfta1zKvxb2E1S4U h7fHgnVLMOris3G59YBh/uEVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUCVaL2+vD LS+29nBjm5QCWcq/Yd0wHwYDVR0jBBgwFoAU1bFnaJFKgMkxJGKWEMxAUCqu0Okw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QjBDL0I2MTM4NkU2RjEx QzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01reEpHS1dFTXhBVUNxdTBP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJGbmFKRktnTWt4SkdLV0VNeEFVQ3F1ME9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2 QjBDL0I2MTM4NkU2RjExQzExRjBBMzhGMjg0NzRENkY1NkJDLzFiRm5hSkZLZ01r eEpHS1dFTXhBVUNxdTBPay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA1dlYJj6piahFBeK38dQvNPXdb0w5I3BU9jJnCQ4H56kaE0h0pqHB7L6zI5jaj 2/ACw/QR3h1bgyUMfQwBJYVKr+TX4Dwr34kLHpvxPeVTwQjSSNa9Mr2mg5+WTNt+ 4GND71RO5+zTvllrLBWAGytZvOVYRdMnb54ZA4R/SucAJmg7IWQU8bwR1rhWcQ6i TOhk9Eiq/rj/OZMzzcGFFZ43LveE8tS7URFCKx6UoVSEYrZZK9/8hdXTnItcPlBk DH5vqHZORmZ+ausgixOoKLANGv5NgOKlOuUehu+Y4271QjMlOuCmyuQ6Ak/G4tj7 6h6jl+fAJevjNNjIl2Ca6fVT -----END CERTIFICATE-----Generated at Mon Mar 30 22:48:31 2026 by rpki-client