$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: QM4pvepg61Yr3/XRlKURG9vr3UNLBjSPKrhwbwg9NJE= Subject key identifier: 47:7D:5F:A2:5B:04:AD:AF:B8:1E:9D:38:89:E2:F8:EC:1E:0B:18:DF Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 0A17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09F3 Signing time: Wed 18 Mar 2026 19:35:37 +0000 Manifest this update: Wed 18 Mar 2026 19:35:37 +0000 Manifest next update: Wed 25 Mar 2026 19:35:37 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: ll2/f8qIShZBxk750Klquf/8On+KMnd29a2jX9RKxtc=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: Od5KYLxvqq8bPa97Fy0kuI4FHkEaW4Gm3D6V7HRmSiU=) 3: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: Zmk+e16+6eqsGa5Xu4c3qgkHkTU472qL2Fssh+v6Tm4=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: LO9ouDVpuivnYHBghIyjyP9NLDarWKgm/7HMedCaaUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 19:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Mar 18 19:35:37 2026 GMT Not After : Mar 25 19:35:37 2026 GMT Subject: CN=69bafe89-9dd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:31:75:28:db:11:62:5f:6a:48:77:78:42: 39:60:c4:f8:38:36:4d:f9:3c:a0:e5:3c:10:37:2e: ce:be:76:15:80:39:bd:e1:3d:cd:69:fc:5b:40:55: 8e:ae:a5:f3:cf:1b:7d:05:c4:7e:44:c4:35:41:9d: 86:ce:57:ff:79:b8:48:69:99:32:15:35:d7:72:aa: d1:73:d3:bf:21:57:6f:bc:1c:4e:cd:c6:9d:fd:2e: 24:0d:a6:ba:37:c0:fa:29:df:c9:9b:8a:b5:34:a6: 94:a8:6a:60:c0:c2:8d:ba:b1:09:14:6d:cb:22:5c: 87:67:b1:c3:54:9e:2d:78:3b:f3:57:43:ca:4a:cf: 00:01:82:6a:24:56:97:39:9c:0f:21:6e:57:00:17: 53:d3:a2:ac:19:d7:3d:b8:84:77:05:67:8f:b4:98: c0:6b:62:47:dd:8a:70:e5:34:c8:ac:f6:30:2c:3c: 48:1c:35:d8:9a:9d:89:d2:16:5e:84:04:e5:1d:12: d3:91:90:f3:38:af:1b:9a:5b:8b:08:b6:2c:93:29: 48:d2:10:dd:08:d8:b2:0f:43:03:a1:bc:20:e5:03: 21:03:38:77:be:81:6c:9d:0a:f7:1e:61:8a:b9:a2: fa:23:53:18:80:ee:43:85:f6:83:76:67:51:78:ce: 43:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7D:5F:A2:5B:04:AD:AF:B8:1E:9D:38:89:E2:F8:EC:1E:0B:18:DF X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:80:fc:f0:60:46:d1:82:70:08:53:30:4c:8b:48:9b:a5:3f: a6:10:c4:f7:b9:fa:54:ff:d4:ea:40:a9:22:b3:02:b1:72:e9: fb:af:c5:da:d7:83:ee:4c:28:79:51:d6:6c:f1:fa:ad:fa:d0: 40:c5:7b:f3:8b:6e:f8:be:17:c4:04:66:00:f3:2a:e7:56:df: 85:93:51:38:5e:9a:87:2c:19:e0:36:66:e3:16:19:51:4e:37: 96:99:6f:be:d6:5d:8a:49:4b:bc:d5:0a:a8:07:48:a3:80:0a: 21:94:36:ad:ee:6c:2b:01:cc:23:7a:e6:13:66:49:cf:c7:78: 24:f5:79:5d:0d:f4:0d:a9:07:20:2f:3a:16:99:b3:61:ce:b6: c7:b9:fc:ee:ef:75:e9:a7:62:4f:79:79:61:1d:00:12:f7:1c: 70:8e:56:e6:76:76:c8:ec:60:e9:03:08:df:12:18:e8:d9:8b: 86:ac:72:54:cf:ae:3a:bd:30:41:2e:ee:ba:3a:78:d0:7e:1f: f8:37:f5:fe:c6:b4:da:c2:78:69:6b:e8:77:e4:46:96:46:69: 82:a4:1b:31:1c:aa:f1:08:3a:ef:79:a5:44:06:f6:5e:ae:10: 71:c4:04:0a:6e:c9:6f:53:87:ac:38:c0:18:86:05:ab:51:be: 5c:2d:d7:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjYwMzE4MTkzNTM3WhcNMjYwMzI1MTkzNTM3WjAYMRYwFAYD VQQDEw02OWJhZmU4OS05ZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYoxdSjbEWJfakh3eEI5YMT4ODZN+Tyg5TwQNy7OvnYVgDm94T3NafxbQFWO rqXzzxt9BcR+RMQ1QZ2Gzlf/ebhIaZkyFTXXcqrRc9O/IVdvvBxOzcad/S4kDaa6 N8D6Kd/Jm4q1NKaUqGpgwMKNurEJFG3LIlyHZ7HDVJ4teDvzV0PKSs8AAYJqJFaX OZwPIW5XABdT06KsGdc9uIR3BWePtJjAa2JH3Ypw5TTIrPYwLDxIHDXYmp2J0hZe hATlHRLTkZDzOK8bmluLCLYskylI0hDdCNiyD0MDobwg5QMhAzh3voFsnQr3HmGK uaL6I1MYgO5DhfaDdmdReM5DcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEd9X6Jb BK2vuB6dOIni+OweCxjfMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgID88GBG0YJwCFMwTItIm6U/phDE97n6VP/U6kCpIrMCsXLp+6/F2teD7kwo eVHWbPH6rfrQQMV784tu+L4XxARmAPMq51bfhZNROF6ahywZ4DZm4xYZUU43lplv vtZdiklLvNUKqAdIo4AKIZQ2re5sKwHMI3rmE2ZJz8d4JPV5XQ30DakHIC86Fpmz Yc62x7n87u916adiT3l5YR0AEvcccI5W5nZ2yOxg6QMI3xIY6NmLhqxyVM+uOr0w QS7uujp40H4f+Df1/sa02sJ4aWvod+RGlkZpgqQbMRyq8Qg673mlRAb2Xq4QccQE Cm7Jb1OHrDjAGIYFq1G+XC3XVQ== -----END CERTIFICATE-----Generated at Fri Mar 20 15:59:50 2026 by rpki-client