$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: UL36hQ0sSb5YLIKqhovRZWhSoQjjZA4fpcdhhT2K8Lw= Subject key identifier: D6:23:B9:1A:76:05:D8:93:6D:F0:2A:A5:44:8D:6C:C2:6F:18:FC:22 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 14DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 14AE Signing time: Fri 20 Mar 2026 16:43:08 +0000 Manifest this update: Fri 20 Mar 2026 16:43:07 +0000 Manifest next update: Fri 27 Mar 2026 16:43:07 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: fGDghBEHUqF1UaeLFb3HN1VnuI2NDU2k/DOSfRh9PCE=) 2: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: /dfSFFokCqZHKPcfVIUa5saL4zfwsMCEJvMbseXpy4U=) 3: A83ECFAE791B11F0B7D48969C4F9AE02.roa (hash: mUJCyq9Quz8XTmFeT3HrV8pJ/1hf+u+XYqhrbRQjU3c=) 4: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: Lqak49Os9Ya4UTOEGKBzKyCOhe/2umYec1RSzQZJSpk=) 5: 98A0F2BE450611F093EC3A65C4F9AE02.roa (hash: Wopqvhkb24wEJCTtlFgfkTquZwIEfGbCSBar+r2PsA0=) 6: 983A5536450611F093EC3A65C4F9AE02.roa (hash: ijwzgpsaKu/9677qc+bwpPEiLD74pnpjkFQugVrQBxM=) 7: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: UX+Z+m5y60d6ZGNGCzFSXggUSxqmAM8xUHETNR0GgzI=) 8: 97A9C872450611F093EC3A65C4F9AE02.roa (hash: MmIdcidip9wfZBZNyWLT9cL4eJ3yTZtCyba7+5jHe8E=) 9: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: gIriR3eH5k3pAT0NnJ+OPQQKfKfiZEc9fhp0R9U18R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 16:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5339 (0x14db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Mar 20 16:43:07 2026 GMT Not After : Mar 27 16:43:07 2026 GMT Subject: CN=69bd791c-15bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:db:d5:ac:38:d3:9c:d1:4f:e7:ab:a1:cc:3d: 55:ec:1e:9c:76:d9:c8:09:e8:d4:aa:91:3d:e7:1e: 4e:65:18:9d:1f:90:89:85:a1:11:ef:e7:8e:5c:f6: 3d:f0:ec:1d:a4:00:92:2e:80:46:42:13:2c:84:fb: a3:77:fd:1d:a7:72:bf:04:24:e4:b5:16:cc:06:68: d9:84:c7:66:4c:75:01:a9:04:53:3a:79:b8:c0:bd: d1:33:ce:bc:d0:1a:38:6b:f7:4d:a3:59:36:6c:5a: 3f:31:f4:35:b9:09:52:c7:3b:c3:0f:9b:f9:47:4a: 13:16:d3:3e:16:9e:e9:b6:12:fd:61:81:8d:8e:52: b5:46:fa:a1:03:97:9e:35:55:da:6d:94:cf:d9:09: bd:3c:30:c3:d9:89:9c:6c:d3:df:90:a2:eb:37:b3: 3c:3f:f2:1a:1b:9e:b7:99:48:eb:80:03:ec:90:9c: af:62:68:16:60:4d:12:3c:98:99:b7:29:79:7b:b5: 16:03:19:db:40:29:c4:5f:11:8a:a8:c4:31:62:08: 91:5b:8a:04:d0:f6:ac:97:1d:dc:8a:b7:82:ea:1d: 87:ef:3e:a0:ac:98:47:df:34:0d:44:38:0e:0f:7a: 12:b8:b7:ca:7e:69:2f:86:d3:0a:f5:76:ef:92:df: 83:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:23:B9:1A:76:05:D8:93:6D:F0:2A:A5:44:8D:6C:C2:6F:18:FC:22 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:63:e1:3b:4b:e6:81:b2:08:73:a8:a7:29:5f:97:b7:48:d9: 38:b4:d8:68:fa:53:e7:6b:84:ca:e7:47:b7:ef:ca:4b:02:3a: 4c:f4:ea:7c:8b:c3:13:18:9c:19:74:0c:70:0e:c2:4f:76:18: 96:a2:18:04:97:f3:89:1a:59:fb:9a:0f:10:ce:02:dc:b4:fb: b1:74:73:51:3f:9b:a4:71:03:84:39:76:26:22:67:d3:04:94: 2c:d9:78:37:3f:8c:d5:0f:bb:3a:f7:ee:19:2f:88:4a:ae:87: 03:fc:f7:9d:c2:a6:59:c4:fb:24:77:63:45:30:e6:d7:fa:b9: ec:89:ee:b5:29:72:79:b7:f3:10:e6:a9:fe:5a:d7:25:dc:76: 0c:9e:c0:60:6d:a4:3a:0f:ea:81:fc:73:ff:cd:49:cb:e7:79: 3e:fb:26:0c:58:36:2e:49:16:50:b2:82:5e:9d:aa:52:01:a6: 20:ab:fa:54:7b:8e:47:65:e9:a1:3d:37:3c:11:fc:b3:63:01: f1:e3:d3:b7:1f:1d:d0:f0:02:42:b9:d3:ba:26:bf:b4:75:b4: 4e:3c:bc:c3:d5:24:5a:1a:b4:e2:75:12:c3:64:44:4f:dd:5b: 15:d0:8d:22:06:c3:76:fa:4d:a8:6f:35:4e:09:e2:e2:29:ac: c8:95:cc:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjYwMzIwMTY0MzA3WhcNMjYwMzI3MTY0MzA3WjAYMRYwFAYD VQQDEw02OWJkNzkxYy0xNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdvVrDjTnNFP56uhzD1V7B6cdtnICejUqpE95x5OZRidH5CJhaER7+eOXPY9 8OwdpACSLoBGQhMshPujd/0dp3K/BCTktRbMBmjZhMdmTHUBqQRTOnm4wL3RM868 0Bo4a/dNo1k2bFo/MfQ1uQlSxzvDD5v5R0oTFtM+Fp7pthL9YYGNjlK1RvqhA5ee NVXabZTP2Qm9PDDD2YmcbNPfkKLrN7M8P/IaG563mUjrgAPskJyvYmgWYE0SPJiZ tyl5e7UWAxnbQCnEXxGKqMQxYgiRW4oE0Paslx3cireC6h2H7z6grJhH3zQNRDgO D3oSuLfKfmkvhtMK9Xbvkt+DZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNYjuRp2 BdiTbfAqpUSNbMJvGPwiMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABGPhO0vmgbIIc6inKV+Xt0jZOLTYaPpT52uEyudHt+/KSwI6TPTqfIvDExic GXQMcA7CT3YYlqIYBJfziRpZ+5oPEM4C3LT7sXRzUT+bpHEDhDl2JiJn0wSULNl4 Nz+M1Q+7OvfuGS+ISq6HA/z3ncKmWcT7JHdjRTDm1/q57InutSlyebfzEOap/lrX Jdx2DJ7AYG2kOg/qgfxz/81Jy+d5PvsmDFg2LkkWULKCXp2qUgGmIKv6VHuOR2Xp oT03PBH8s2MB8ePTtx8d0PACQrnTuia/tHW0Tjy8w9UkWhq04nUSw2RET91bFdCN IgbDdvpNqG81Tgni4imsyJXMcA== -----END CERTIFICATE-----Generated at Sat Mar 21 13:17:24 2026 by rpki-client