$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft File: n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft (raw, json) Hash identifier: ghVyn9Bpu9QTtLcK1FJlBQSMzZ09rctW95CnLFhxe60= Subject key identifier: BA:91:82:B6:20:7A:2D:7E:56:29:ED:39:EE:AD:F9:A9:9F:4D:F4:0D Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2BD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft Manifest number: 2B7D Signing time: Sun 22 Mar 2026 15:28:06 +0000 Manifest this update: Sun 22 Mar 2026 15:28:06 +0000 Manifest next update: Sun 29 Mar 2026 15:28:06 +0000 Files and hashes: 1: n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl (hash: 7MMQ3Z42YWEmxyaCGIfg2SqxonP0+vfur8ceqEPy7YI=) 2: 08074A8A1EB711EF9C248E60C4F9AE02.roa (hash: RaV0EBH4fa+l9u1AYk3sjgFpJfu7SSd3dDIQo14KDEs=) 3: BB799DA8844011F09054B049C4F9AE02.roa (hash: VrRFOlut3uTJjQcCOu3xElVoNRFtaOUQQFsO7k9dNnQ=) 4: 8B903A32353211EBB3D0487FC4F9AE02.roa (hash: 25oLu27CZ0gv2qJnkcUs4150C/CVxdIojsajwReLNXs=) 5: F1BA2EAC353311EBB895B082C4F9AE02.roa (hash: XMn1rTIy3jaeKDZE05M5b8eeprfjm2rfHPZwQzTw2V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11217 (0x2bd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5, serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: Mar 22 15:28:06 2026 GMT Not After : Mar 29 15:28:06 2026 GMT Subject: CN=69c00a86-9ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:3b:ee:52:f0:8e:88:06:b7:57:76:16:71:5c: fc:44:2f:a7:e8:21:59:50:d0:06:6f:27:84:6d:e4: 36:c1:61:09:ce:20:d7:b7:21:47:b6:52:94:31:3b: f7:e7:0d:6a:ee:13:7e:44:2d:02:72:f1:64:f8:33: 8d:79:4c:88:97:ed:17:b2:42:d6:2b:49:29:ef:c5: 81:ba:3d:79:a7:c5:a7:7e:5c:51:55:df:18:57:5c: 3c:59:6f:06:f0:c7:2f:43:50:2f:92:24:2c:f7:89: 0f:5e:6f:62:26:a4:64:bc:d7:c9:5d:ba:4e:9d:d9: 7e:b2:34:7b:73:46:bd:66:fb:4c:a9:09:8a:f3:13: 00:44:50:18:3e:d1:a3:55:ae:e6:4f:9a:25:50:49: b0:e6:1f:81:a4:73:64:d3:2e:a4:68:44:38:07:01: 46:aa:c1:75:9a:0a:5b:e7:de:4a:74:6f:4a:c2:dc: 88:87:27:c1:bd:cc:3d:8a:6d:93:04:9a:c2:a1:b3: dc:7d:5e:1a:7e:89:d1:b4:41:e0:52:d3:15:2e:f9: c4:46:36:5b:f5:4e:37:1a:f2:a8:ad:f1:53:5f:92: 94:7b:12:cb:0f:55:eb:c7:4d:59:ff:2e:ff:70:0a: 54:85:79:6e:33:36:5b:46:e8:94:22:64:6c:2d:6d: d4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:91:82:B6:20:7A:2D:7E:56:29:ED:39:EE:AD:F9:A9:9F:4D:F4:0D X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ea:a5:84:c2:12:d5:c9:57:13:6a:db:83:74:83:25:2f:5e: d7:08:c0:0b:44:ee:9d:ea:8d:f0:25:d2:9c:ba:f9:43:91:da: 4c:74:14:35:70:78:b1:a6:ea:3a:8e:1f:fe:ff:74:27:b9:04: 9d:40:bb:30:08:df:ee:53:0c:64:6f:71:86:d5:d0:61:3c:02: b5:8f:10:93:e4:0f:78:bf:26:1e:dc:8b:ad:0b:18:a2:b7:05: a9:64:36:78:2d:b1:1c:7b:09:b7:51:9a:b0:54:f1:e1:b0:a1: 8a:20:d3:e6:e7:6e:f0:30:00:8b:e9:5a:4c:15:3a:33:45:b0: be:ab:87:97:f5:f1:80:67:7e:db:8e:52:ab:35:38:58:17:d8: bd:df:2d:88:a8:a2:d4:82:08:41:65:b9:0f:bd:0f:e6:b9:38: 72:63:76:92:b7:c9:c8:54:47:2c:d3:6f:f9:29:f2:86:dd:d7: f5:82:d1:4b:bd:0e:0e:7a:3d:4a:be:97:bf:2f:a5:ca:3d:af: 67:83:bf:73:43:82:2b:54:47:93:c9:2a:81:2d:8d:39:5e:d9: 20:91:e3:75:61:fa:9b:87:b7:ff:e7:4e:3c:82:d7:2d:08:a7: b9:7e:b3:7f:29:6a:1c:96:b1:6d:59:85:bd:17:e3:04:d4:53: 8a:20:dd:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICK9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjYwMzIyMTUyODA2WhcNMjYwMzI5MTUyODA2WjAYMRYwFAYD VQQDEw02OWMwMGE4Ni05ZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+DvuUvCOiAa3V3YWcVz8RC+n6CFZUNAGbyeEbeQ2wWEJziDXtyFHtlKUMTv3 5w1q7hN+RC0CcvFk+DONeUyIl+0XskLWK0kp78WBuj15p8WnflxRVd8YV1w8WW8G 8McvQ1AvkiQs94kPXm9iJqRkvNfJXbpOndl+sjR7c0a9ZvtMqQmK8xMARFAYPtGj Va7mT5olUEmw5h+BpHNk0y6kaEQ4BwFGqsF1mgpb595KdG9KwtyIhyfBvcw9im2T BJrCobPcfV4afonRtEHgUtMVLvnERjZb9U43GvKorfFTX5KUexLLD1Xrx01Z/y7/ cApUhXluMzZbRuiUImRsLW3U3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLqRgrYg ei1+VintOe6t+amfTfQNMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkVDNS8yREVDQUU1NjBFNTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNK bDFYeENLdEROUGR5eS1vT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFeqlhMIS1clXE2rbg3SDJS9e1wjAC0TuneqN8CXSnLr5Q5HaTHQUNXB4sabq Oo4f/v90J7kEnUC7MAjf7lMMZG9xhtXQYTwCtY8Qk+QPeL8mHtyLrQsYorcFqWQ2 eC2xHHsJt1GasFTx4bChiiDT5udu8DAAi+laTBU6M0WwvquHl/XxgGd+245SqzU4 WBfYvd8tiKii1IIIQWW5D70P5rk4cmN2krfJyFRHLNNv+Snyht3X9YLRS70ODno9 Sr6Xvy+lyj2vZ4O/c0OCK1RHk8kqgS2NOV7ZIJHjdWH6m4e3/+dOPILXLQinuX6z fylqHJaxbVmFvRfjBNRTiiDdPw== -----END CERTIFICATE-----Generated at Sun Mar 22 18:59:37 2026 by rpki-client