$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: ZYmBXJkPTduvq/q7cFufMlLeC/JYRgkorb7KnCyw+4o= Subject key identifier: C4:79:16:53:BC:59:49:7D:83:B2:50:1F:C6:3C:36:0A:D9:46:E7:65 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0CBD Signing time: Thu 12 Mar 2026 18:14:11 +0000 Manifest this update: Thu 12 Mar 2026 18:14:10 +0000 Manifest next update: Thu 19 Mar 2026 18:14:10 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: 6l2Brztfi9MhSTuAoDc7QVDr18kIUVcAqkyxsvh2/SI=) 2: 2BA0624C078511ED87041524C4F9AE02.roa (hash: ZcdBlD0cGDsdpulCv2fc2yReHhNwViqaBn++RZ5qJME=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: svlh2+vPV9FFZwbhD1Wgc1v2nG2kP+knUxNtCuCVjZk=) 4: 2D0509BC078511ED87041524C4F9AE02.roa (hash: FLx8pb39u5dZ14LSQha4djjm7m8zVtkJpA9CuWtbNEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Mar 12 18:14:10 2026 GMT Not After : Mar 19 18:14:10 2026 GMT Subject: CN=69b30272-4535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:6a:68:13:67:01:e6:c9:83:2a:e1:c9:42: 1c:39:a9:e0:2b:4b:af:8b:24:ac:ba:cc:a3:a6:42: de:b8:db:dd:6d:c2:77:d8:05:ee:12:67:41:45:cb: b7:d3:6a:ca:78:b9:8f:74:18:c0:8b:e1:44:7f:22: de:17:3a:75:c5:96:1e:92:13:d3:2d:2f:0e:ad:a6: 50:d1:db:a0:d4:12:dc:0e:0c:9b:ea:2f:c7:34:e6: 1e:24:a5:56:1a:fb:cf:f5:a5:42:51:fd:29:7e:cb: a8:02:75:2a:9c:53:e0:12:95:9a:a8:52:64:9f:68: b3:64:70:73:9d:8a:c1:a6:83:a6:50:eb:98:3c:84: 91:8d:fa:d9:48:d7:64:7e:a0:e9:4e:dc:18:c6:01: 01:b0:de:3c:55:c5:6f:33:ed:f9:6c:ec:e8:da:c4: cd:df:bb:56:f0:3a:7d:4d:fe:68:80:84:e7:39:9f: cd:40:8c:a0:0e:3d:16:1e:ba:3e:67:45:ac:cb:09: b7:c1:fa:a8:40:6a:41:06:cf:60:75:43:4f:04:1b: ff:a2:a2:25:83:ce:9d:35:5b:68:ad:7e:75:1d:20: 86:15:ee:3f:b2:b9:d5:d6:78:54:70:9b:34:38:97: e1:ca:49:4a:51:b0:54:56:11:d7:27:f6:e7:64:5b: 71:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:79:16:53:BC:59:49:7D:83:B2:50:1F:C6:3C:36:0A:D9:46:E7:65 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:15:5f:6e:5d:73:7d:c8:7d:6d:45:b5:e5:ab:11:01:c2:f2: 78:36:f6:34:f0:ec:48:2c:44:d9:0b:e5:74:f3:b4:95:be:d6: 29:4e:ca:2f:ca:2d:6b:a2:9a:c8:7f:e0:0d:fd:b1:ad:bc:98: a4:84:78:87:c2:d0:07:c5:33:51:b8:a3:7f:bf:f1:df:3e:28: 11:59:fa:a3:06:eb:7c:49:8a:4d:e6:bb:27:4a:30:c0:f4:c3: d8:11:c5:b1:50:61:63:65:b4:1b:6b:57:cb:01:64:90:6d:81: 34:40:f3:57:f9:78:aa:cf:56:1f:58:e8:fc:37:47:0a:c5:8f: 12:30:83:e5:db:dc:c8:ee:3d:d8:85:f8:26:aa:5b:0a:9f:9c: 08:77:93:f6:4e:51:0d:e3:be:7a:19:48:ea:04:1c:b1:7e:85: bb:d2:cc:12:43:90:44:64:9f:f7:ae:01:2b:6d:7b:61:8a:75: e7:90:24:7a:37:cf:50:05:1b:e7:1c:f2:ea:dd:d7:37:07:00: 41:67:8e:6f:4a:1a:e0:b8:88:32:85:0b:fe:6f:8a:56:86:dd: f2:19:b7:e4:19:19:96:76:9c:3b:b6:de:03:67:96:ce:d6:79: 5b:a5:25:2b:39:c6:04:cd:f7:da:6b:6d:4c:94:89:90:13:2c: bf:fe:6e:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjYwMzEyMTgxNDEwWhcNMjYwMzE5MTgxNDEwWjAYMRYwFAYD VQQDEw02OWIzMDI3Mi00NTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt1qaBNnAebJgyrhyUIcOangK0uviySsusyjpkLeuNvdbcJ32AXuEmdBRcu3 02rKeLmPdBjAi+FEfyLeFzp1xZYekhPTLS8OraZQ0dug1BLcDgyb6i/HNOYeJKVW GvvP9aVCUf0pfsuoAnUqnFPgEpWaqFJkn2izZHBznYrBpoOmUOuYPISRjfrZSNdk fqDpTtwYxgEBsN48VcVvM+35bOzo2sTN37tW8Dp9Tf5ogITnOZ/NQIygDj0WHro+ Z0Wsywm3wfqoQGpBBs9gdUNPBBv/oqIlg86dNVtorX51HSCGFe4/srnV1nhUcJs0 OJfhyklKUbBUVhHXJ/bnZFtxWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMR5FlO8 WUl9g7JQH8Y8NgrZRudlMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUBVfbl1zfch9bUW15asRAcLyeDb2NPDsSCxE2QvldPO0lb7WKU7KL8ota6Ka yH/gDf2xrbyYpIR4h8LQB8UzUbijf7/x3z4oEVn6owbrfEmKTea7J0owwPTD2BHF sVBhY2W0G2tXywFkkG2BNEDzV/l4qs9WH1jo/DdHCsWPEjCD5dvcyO492IX4Jqpb Cp+cCHeT9k5RDeO+ehlI6gQcsX6Fu9LMEkOQRGSf964BK217YYp155AkejfPUAUb 5xzy6t3XNwcAQWeOb0oa4LiIMoUL/m+KVobd8hm35BkZlnacO7beA2eWztZ5W6Ul KznGBM332mttTJSJkBMsv/5uZQ== -----END CERTIFICATE-----Generated at Sat Mar 14 07:35:54 2026 by rpki-client