$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: G2VGZsTRZm+IhvKcFV+XM/VP94FWxscGlVAkIKbwrO8= Subject key identifier: 49:D5:E0:64:2B:0D:0B:B3:23:C2:3B:0D:FA:29:2B:E0:19:5D:CE:B2 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0ECF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0E9B Signing time: Thu 12 Mar 2026 17:32:49 +0000 Manifest this update: Thu 12 Mar 2026 17:32:49 +0000 Manifest next update: Thu 19 Mar 2026 17:32:49 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: cLsmHffc1erJaWW003AlUD/Q06s76Jq41rwTwJcOkz4=) 2: 670DF186232111EB9896B783C4F9AE02.roa (hash: JDnnr+gXElLZfFNqxroiEtHe91q0ZicgMHi1XY427Ss=) 3: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: xo+tt5lov3udnd3XAOiK90QcwkAcxMUW1iuUC+4M+z8=) 4: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: bKvSPuftAoTubmq1z1G2lBaSXWyaRfT8vN+YYMv11yI=) 5: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: E+4UeHlGnBHL9IRmWm+TexcyHwom9b/OOAx0STjQIo0=) 6: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: jPTrigcWq4coxSH4UL7oP5hGP5jZz/yTxLEnnmOBFlo=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: IJy6vq3u18sfK/PaqQ4HkbGHvtQ0+WpPPGjw18M6VWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3791 (0xecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Mar 12 17:32:49 2026 GMT Not After : Mar 19 17:32:49 2026 GMT Subject: CN=69b2f8c1-906b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b9:72:83:eb:6e:64:09:75:59:36:30:c1:f0: 53:a8:f2:8e:ee:b9:ee:ea:23:b4:d9:ed:35:97:20: db:8b:80:23:d6:d0:86:2a:00:60:55:8c:66:02:de: 5a:4a:b9:b2:fc:21:6a:b8:21:9a:e5:dd:f9:f5:d8: 91:e6:b5:de:9d:be:2a:0f:2e:d0:7f:1c:dc:49:32: 65:17:20:21:c3:d6:1c:e7:78:9b:6b:62:45:61:9c: 21:ce:56:df:ae:d1:ce:b3:dc:35:4f:b5:55:9d:9a: a9:30:7c:85:83:7b:7a:78:64:55:65:b9:77:72:e3: 27:d1:78:d1:8a:08:b0:46:39:70:a0:bb:8f:a7:37: 62:31:63:dd:5c:91:4d:a0:d6:67:c6:71:69:8b:8e: ed:e9:a4:40:3c:2b:99:e0:c2:e9:6d:63:c0:34:4e: 81:ea:6c:fd:da:7c:17:1a:b9:89:ef:3d:ff:46:72: c1:2f:18:e3:ed:b7:bb:90:ed:9f:d7:fc:c3:97:af: 3c:a1:85:20:f6:5e:c9:8a:79:df:4c:cc:91:fa:64: 48:dd:f3:f9:07:fc:26:6a:c1:af:9b:97:09:7f:dc: 8d:8d:11:5e:94:db:1d:30:2f:95:98:a9:90:c8:20: 14:86:3b:20:da:bd:39:48:79:c6:5e:71:57:51:14: 28:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D5:E0:64:2B:0D:0B:B3:23:C2:3B:0D:FA:29:2B:E0:19:5D:CE:B2 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:1c:42:34:5f:9b:41:9a:58:fa:3e:a5:b9:42:c4:74:c5:7d: 8c:fb:0b:02:0e:74:3c:55:39:d6:ae:2e:fe:a7:76:af:81:96: 18:7e:f6:76:72:c9:5b:33:25:71:7f:bc:c3:1c:95:cb:12:22: 59:5d:45:48:1d:34:6b:57:5c:37:85:cf:40:7e:70:25:aa:86: 57:c3:c6:53:13:af:38:6e:2b:c7:38:cc:05:a7:83:f2:a2:a0: 80:82:53:a1:ee:d5:db:db:07:f1:56:c6:f5:c0:57:cb:9e:6a: 28:31:a9:8e:ea:03:c8:27:ae:3c:52:6f:35:15:69:ab:33:27: e4:af:ec:a2:34:cc:9e:a1:38:51:81:a2:61:c9:e9:a0:fa:69: 32:60:98:8b:47:3d:f4:cf:cc:75:6c:c7:6b:ce:04:a2:7b:1d: 88:fa:2a:6d:f5:76:5b:0c:d4:e1:38:4a:78:43:92:3b:68:72: 85:73:1d:81:6c:99:b2:d1:7f:7e:44:68:83:e9:49:74:d0:33: bb:69:19:28:74:cf:ed:b7:58:8e:c1:b3:90:fd:2b:eb:e0:17: 0f:b3:df:70:90:61:fa:5c:d8:c7:45:cf:f8:46:78:78:a8:00: 30:ab:8e:6a:f9:8a:40:62:49:87:86:7d:5f:0e:30:0a:31:01: d7:08:3d:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjYwMzEyMTczMjQ5WhcNMjYwMzE5MTczMjQ5WjAYMRYwFAYD VQQDEw02OWIyZjhjMS05MDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7lyg+tuZAl1WTYwwfBTqPKO7rnu6iO02e01lyDbi4Aj1tCGKgBgVYxmAt5a Srmy/CFquCGa5d359diR5rXenb4qDy7QfxzcSTJlFyAhw9Yc53iba2JFYZwhzlbf rtHOs9w1T7VVnZqpMHyFg3t6eGRVZbl3cuMn0XjRigiwRjlwoLuPpzdiMWPdXJFN oNZnxnFpi47t6aRAPCuZ4MLpbWPANE6B6mz92nwXGrmJ7z3/RnLBLxjj7be7kO2f 1/zDl688oYUg9l7JinnfTMyR+mRI3fP5B/wmasGvm5cJf9yNjRFelNsdMC+VmKmQ yCAUhjsg2r05SHnGXnFXURQosQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEnV4GQr DQuzI8I7DfopK+AZXc6yMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXhxCNF+bQZpY+j6luULEdMV9jPsLAg50PFU51q4u/qd2r4GWGH72dnLJWzMl cX+8wxyVyxIiWV1FSB00a1dcN4XPQH5wJaqGV8PGUxOvOG4rxzjMBaeD8qKggIJT oe7V29sH8VbG9cBXy55qKDGpjuoDyCeuPFJvNRVpqzMn5K/sojTMnqE4UYGiYcnp oPppMmCYi0c99M/MdWzHa84EonsdiPoqbfV2WwzU4ThKeEOSO2hyhXMdgWyZstF/ fkRog+lJdNAzu2kZKHTP7bdYjsGzkP0r6+AXD7PfcJBh+lzYx0XP+EZ4eKgAMKuO avmKQGJJh4Z9Xw4wCjEB1wg9ng== -----END CERTIFICATE-----Generated at Thu Mar 12 21:30:33 2026 by rpki-client