$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: oCIOOUdABcw4zl4J57qDHduJRXYvg8PmvtOCpwJJ/W8= Subject key identifier: 93:D4:59:25:05:F1:92:3D:21:E9:96:FB:11:78:19:86:C9:C8:0A:83 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 93 Signing time: Tue 03 Mar 2026 07:03:22 +0000 Manifest this update: Tue 03 Mar 2026 07:03:21 +0000 Manifest next update: Tue 10 Mar 2026 07:03:21 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: rydqfuqKYakABY9Jwm3O6nTpSTxxj6BuiWC9wlVtODY=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: j7nDmBZXblO/tpvpaih+MGRhVNByB2VTssko4z3YvKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Mar 3 07:03:21 2026 GMT Not After : Mar 10 07:03:21 2026 GMT Subject: CN=69a687b9-e6ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:1c:e6:9a:40:ab:c2:44:98:d7:a3:e1:d2: 3e:b1:72:62:c2:9a:75:90:60:12:41:f5:d0:22:90: 82:d7:fe:eb:87:6a:b9:68:ba:90:bc:48:30:bd:a4: 12:2c:03:0f:8a:6e:d8:de:c4:d5:c8:8d:d6:86:7d: 5f:f6:39:99:2b:bf:74:48:56:ce:a6:79:af:80:a1: e5:e1:ad:8a:8c:d3:ad:d3:7e:99:40:f3:be:ac:86: d8:37:1a:60:21:d7:49:14:7f:b8:42:cb:0e:e0:81: 2a:ed:f7:12:d3:85:c7:ef:0f:68:83:a3:c7:1a:71: 44:22:c3:66:cc:2c:f7:16:7b:76:ce:0d:48:a8:2a: b3:54:bf:d4:bc:5c:25:11:38:49:4d:72:97:7e:69: 25:7e:44:35:75:dc:67:db:59:b6:2e:34:33:b3:76: 12:da:af:f0:89:83:82:05:7f:09:65:34:52:00:d8: 57:3c:0a:8e:0e:5e:e5:36:e7:3d:72:31:40:e2:ac: 67:a5:d2:4a:17:b6:9b:10:dc:57:7e:31:7a:dc:e9: 28:3c:8e:95:83:07:4d:12:d7:44:84:6e:fb:07:ea: 37:98:1c:21:b3:bb:67:ba:65:7c:46:e8:e6:d8:9c: 89:70:c6:8c:ca:aa:1d:a8:af:fb:6e:42:9d:bb:ae: ca:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D4:59:25:05:F1:92:3D:21:E9:96:FB:11:78:19:86:C9:C8:0A:83 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:aa:27:9f:4d:71:a7:f1:06:21:67:08:4c:43:c9:87:a9:f1: ab:46:81:47:d0:86:0c:9f:85:85:70:29:a8:58:27:63:fb:d1: 6f:a1:26:e2:5c:53:51:1c:0f:b8:c8:5a:dc:46:be:92:82:9f: bf:c2:6f:e7:2b:d9:39:0f:ee:a8:0c:70:0d:e5:5e:0e:e4:98: db:3a:f2:f3:2e:6b:ea:8f:c5:49:c3:97:85:df:01:eb:02:4f: 14:ea:d7:ac:91:0b:71:81:81:7b:88:88:01:5c:c5:1d:af:c7: e7:f1:a3:0f:bd:5e:8f:3e:d1:40:3d:d4:57:70:00:d9:87:b8: a2:fb:0d:e2:76:3b:9d:60:35:41:ae:96:e5:4a:ca:2c:4d:e9: 25:ac:ff:ed:99:f7:39:4d:a4:a6:05:b4:9c:71:a9:1f:7b:99: 39:95:4f:ff:cc:56:5e:d7:e3:ac:53:96:4a:d9:bf:bb:bc:ca: 1e:98:8a:4d:eb:06:ca:9b:b5:59:31:10:3c:43:1b:7e:30:b4: a7:11:e6:d7:09:f8:dc:5a:18:8d:fb:25:d0:44:0d:22:db:9c: 0b:78:2c:98:cf:9f:92:d4:b4:60:15:93:37:43:c9:3b:9b:8a: 66:52:1c:b8:38:39:7c:6c:50:a4:e7:85:7d:74:32:f9:fd:ce: 01:32:eb:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNzQxMTAvBgNVBAUTKEUyQ0I5NkYzQjA1QTYzRTlFNTQ3OTY1MjZFQ0NFOTRB MzU5MUU1RkMwHhcNMjYwMzAzMDcwMzIxWhcNMjYwMzEwMDcwMzIxWjAYMRYwFAYD VQQDEw02OWE2ODdiOS1lNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ysc5ppAq8JEmNej4dI+sXJiwpp1kGASQfXQIpCC1/7rh2q5aLqQvEgwvaQS LAMPim7Y3sTVyI3Whn1f9jmZK790SFbOpnmvgKHl4a2KjNOt036ZQPO+rIbYNxpg IddJFH+4QssO4IEq7fcS04XH7w9og6PHGnFEIsNmzCz3Fnt2zg1IqCqzVL/UvFwl EThJTXKXfmklfkQ1ddxn21m2LjQzs3YS2q/wiYOCBX8JZTRSANhXPAqODl7lNuc9 cjFA4qxnpdJKF7abENxXfjF63OkoPI6VgwdNEtdEhG77B+o3mBwhs7tnumV8Rujm 2JyJcMaMyqodqK/7bkKdu67KrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJPUWSUF 8ZI9IemW+xF4GYbJyAqDMB8GA1UdIwQYMBaAFOLLlvOwWmPp5UeWUm7M6Uo1keX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3NC9BRjY0RTUxMDNC QUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVktbmxSNVpTYnN6cFNqV1I1 ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3NC9BRjY0RTUxMDNCQUExMUYwOTY0MjgyMUNDNEY5QUUwMi80c3VXODdCYVkt bmxSNVpTYnN6cFNqV1I1ZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbqonn01xp/EGIWcITEPJh6nxq0aBR9CGDJ+FhXApqFgnY/vRb6Em4lxTURwP uMha3Ea+koKfv8Jv5yvZOQ/uqAxwDeVeDuSY2zry8y5r6o/FScOXhd8B6wJPFOrX rJELcYGBe4iIAVzFHa/H5/GjD71ejz7RQD3UV3AA2Ye4ovsN4nY7nWA1Qa6W5UrK LE3pJaz/7Zn3OU2kpgW0nHGpH3uZOZVP/8xWXtfjrFOWStm/u7zKHpiKTesGypu1 WTEQPEMbfjC0pxHm1wn43FoYjfsl0EQNItucC3gsmM+fktS0YBWTN0PJO5uKZlIc uDg5fGxQpOeFfXQy+f3OATLrVw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:21:59 2026 by rpki-client