$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: wS7fW5A/0rQAMsq7ORYQsoU7jthoCURDVnevYCnoJgE= Subject key identifier: AA:81:F9:FE:F0:6E:5E:98:EE:D4:BC:04:C1:82:17:5D:14:85:3B:74 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 087B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0864 Signing time: Thu 12 Mar 2026 20:23:17 +0000 Manifest this update: Thu 12 Mar 2026 20:23:16 +0000 Manifest next update: Thu 19 Mar 2026 20:23:16 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: zEbc9reVTyGmT+LQ0/6NkUp42PadrhnCMCc4Qxee1y4=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: yYK7V7dW/D0eC17jG/LycZEBlM7X3W0O8v5bUzFm2dA=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: X+7xi8ucS3fgs8IMY8mWHVyiqI68xFhirEd+62e8Rek=) 4: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: xE0G8jy0x1aFTqJiiedpm0HY07HDA+9aAMGkr13aJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Mar 12 20:23:16 2026 GMT Not After : Mar 19 20:23:16 2026 GMT Subject: CN=69b320b5-a9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:29:5b:a0:58:e7:f8:7c:82:7a:5f:b6:67:e8: 1f:df:fb:52:08:d5:03:17:a8:cc:85:63:5d:38:c6: 86:2d:60:a6:91:41:1f:6a:b8:59:a8:94:e0:db:34: e1:13:d6:36:e7:aa:28:45:78:e2:43:43:74:86:f3: 43:97:c0:ff:ed:77:7a:22:f5:52:ec:73:91:7f:98: cf:2e:63:20:1d:8a:84:97:a4:87:21:3b:6b:97:27: d9:42:af:da:f6:23:59:18:d5:20:61:e0:64:9a:c4: 80:ae:6e:18:5a:99:0d:6c:f7:02:aa:06:90:dd:61: 04:1f:94:76:c3:07:3e:6d:11:b6:91:7e:e8:8e:d8: 7a:07:fd:2a:0a:bf:e9:17:e9:c4:89:46:c3:fd:bb: cd:12:b4:a1:1b:14:b4:dd:7a:0d:5d:5c:45:12:59: ee:7f:65:63:64:cf:9c:e8:72:d4:de:39:bd:07:0a: 9b:4e:b8:1e:62:e7:f5:a8:f7:14:91:cf:9d:c7:7d: d4:78:37:2f:25:ef:0e:26:f7:7c:a4:0b:13:d8:82: 7e:b1:e7:a7:13:47:84:4d:69:32:81:28:37:6a:b6: d9:99:3b:4d:a4:c4:e6:b8:9b:e8:72:24:56:05:5a: 53:bd:38:90:b1:f7:2a:a0:d8:01:fe:af:b1:38:3f: c5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:81:F9:FE:F0:6E:5E:98:EE:D4:BC:04:C1:82:17:5D:14:85:3B:74 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a4:84:cd:ac:a6:bd:c8:55:8d:f0:dd:f5:da:fb:5c:79:2e: af:92:b3:55:a6:21:85:52:e3:37:62:44:e4:eb:9b:8e:30:1a: 06:31:87:82:ef:b2:32:c5:8e:7e:f9:ed:4b:32:6d:9b:96:c9: 0e:51:02:0a:03:e0:6b:35:42:18:f8:be:c4:60:8d:7e:93:2f: 80:f9:c8:25:61:65:d3:75:2d:d3:1b:0a:d4:99:bd:f1:66:9d: 1a:28:cd:12:d9:f8:d6:5c:6a:0d:29:6d:ec:bc:cb:84:24:3c: 1f:e0:cf:a2:db:9e:67:b5:63:21:d5:75:ea:54:2e:a6:88:41: 71:49:b9:62:b4:da:df:23:ad:89:a3:c3:c6:00:83:1d:c9:b5: 85:d6:27:8f:13:60:ce:22:08:4c:13:16:aa:f8:b8:c4:b0:9a: 80:89:04:b3:4e:95:47:16:9e:68:aa:a5:3c:52:ef:9e:52:7f: cd:17:95:72:f2:23:74:ff:7b:bf:fa:be:60:ca:1a:33:63:57: 5e:39:dd:f4:fc:cb:fa:d9:d5:8f:20:8f:8d:fd:cb:18:77:41: f3:fe:4f:23:8b:0d:b3:79:11:ea:80:06:43:13:ac:17:11:eb: d2:42:05:99:c7:68:ac:e8:6d:64:9b:d6:af:1f:51:5e:4e:7c: 8e:03:06:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjYwMzEyMjAyMzE2WhcNMjYwMzE5MjAyMzE2WjAYMRYwFAYD VQQDEw02OWIzMjBiNS1hOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ylboFjn+HyCel+2Z+gf3/tSCNUDF6jMhWNdOMaGLWCmkUEfarhZqJTg2zTh E9Y256ooRXjiQ0N0hvNDl8D/7Xd6IvVS7HORf5jPLmMgHYqEl6SHITtrlyfZQq/a 9iNZGNUgYeBkmsSArm4YWpkNbPcCqgaQ3WEEH5R2wwc+bRG2kX7ojth6B/0qCr/p F+nEiUbD/bvNErShGxS03XoNXVxFElnuf2VjZM+c6HLU3jm9BwqbTrgeYuf1qPcU kc+dx33UeDcvJe8OJvd8pAsT2IJ+seenE0eETWkygSg3arbZmTtNpMTmuJvociRW BVpTvTiQsfcqoNgB/q+xOD/FhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKqB+f7w bl6Y7tS8BMGCF10UhTt0MB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP6SEzaymvchVjfDd9dr7XHkur5KzVaYhhVLjN2JE5OubjjAaBjGHgu+yMsWO fvntSzJtm5bJDlECCgPgazVCGPi+xGCNfpMvgPnIJWFl03Ut0xsK1Jm98WadGijN Etn41lxqDSlt7LzLhCQ8H+DPotueZ7VjIdV16lQupohBcUm5YrTa3yOtiaPDxgCD Hcm1hdYnjxNgziIITBMWqvi4xLCagIkEs06VRxaeaKqlPFLvnlJ/zReVcvIjdP97 v/q+YMoaM2NXXjnd9PzL+tnVjyCPjf3LGHdB8/5PI4sNs3kR6oAGQxOsFxHr0kIF mcdorOhtZJvWrx9RXk58jgMGrg== -----END CERTIFICATE-----Generated at Sat Mar 14 07:41:11 2026 by rpki-client