$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: N66q7gSASRFzedZYbq5GdYzm/itH/2tWKEYFJNVwvh0= Subject key identifier: 3E:ED:E6:B2:AB:0F:8E:D9:AE:59:9B:F6:98:86:1F:5B:64:BA:B3:6C Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0BF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0BC0 Signing time: Sat 28 Mar 2026 18:54:32 +0000 Manifest this update: Sat 28 Mar 2026 18:54:32 +0000 Manifest next update: Sat 04 Apr 2026 18:54:32 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: MMFUmx5xHRou4nSE9Ej7/CH/9QrLhUcbRU41LqSAu+k=) 2: 49E05638EA0B11F09069D0EA6F6F56BC.roa (hash: 5lCa0uM9qsyo4Ls9OwY1shMD+q998RLPGqM4GruFZ8A=) 3: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (hash: naputKDT4YFCuDBkowHlF1Y5kTitkWFz9voR8iEVFrQ=) 4: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (hash: 2xZ7k/voMKzDAbPl0iSayXcIKNq/l+8uvtLON3JZksk=) 5: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: m6A5k7GrCQsQt6UQStLqk4vDI2cF1RjOvSbk8wVUoVE=) 6: 8137CEBC07E911F18CE8BD7B223D8C67.roa (hash: wHgEjCXqndOJLXZ9J6FfS2MgjM1Wq0AwJ0Oymtfq0bs=) 7: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: RzHBWYWw5IHkZGciQV9CfmaSyQYYH4ManuyCrGOl3Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 18:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Mar 28 18:54:32 2026 GMT Not After : Apr 4 18:54:32 2026 GMT Subject: CN=69c823e8-3bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:be:35:10:fa:85:68:d3:8f:39:ea:66:af:87: 8c:63:b3:a1:2a:ad:91:26:a6:9b:84:df:55:a4:66: 20:69:81:fd:5b:07:9f:de:93:e1:49:4a:da:ed:4d: 04:8f:18:2d:40:03:60:a9:2e:93:9b:26:c8:ea:6d: f5:92:f3:e4:ec:eb:d8:33:07:fb:53:99:eb:9e:31: 4d:59:0c:cd:bc:5d:9f:83:ff:8a:e2:50:79:1e:71: bd:28:e6:22:91:1e:b7:41:b8:e5:e3:35:0f:b4:20: 66:8d:4d:3e:0b:00:93:84:99:04:2a:8b:18:6e:8a: 0b:50:0d:a6:14:3e:08:4e:bb:5c:25:92:2d:3e:67: 2e:56:02:8d:36:93:f2:61:76:d1:65:18:a4:1f:40: 2f:65:49:e3:a2:29:27:d8:ae:8c:49:c3:6d:f2:0f: 75:19:d2:15:6e:8b:a0:0a:b2:ea:4f:b9:fb:7f:d9: 80:c2:f7:fb:f4:5f:1a:3b:90:e5:ba:cb:4d:70:d3: 47:e6:4f:1b:47:f2:3d:b0:1d:c4:7a:70:d8:9a:2f: 97:70:ed:3d:06:49:e0:cb:0f:ee:51:31:67:03:b1: 6f:a1:07:bb:39:1d:20:86:f3:12:bd:7b:93:0e:bc: 99:c9:00:d4:92:39:62:b7:04:e8:7b:93:29:82:65: d4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:ED:E6:B2:AB:0F:8E:D9:AE:59:9B:F6:98:86:1F:5B:64:BA:B3:6C X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:90:fc:6a:1d:f1:9b:87:6b:cf:5a:55:ef:7b:79:ed:88:0c: fc:e4:46:ea:46:e1:47:fa:38:fd:60:d4:0a:84:8a:84:2e:aa: 0d:b0:63:33:75:fd:97:9d:e3:01:4f:0d:23:4b:23:aa:d7:b2: e4:2b:7d:d3:51:28:86:da:6d:a5:2d:2e:37:e6:e6:f4:5a:1a: dc:19:85:3a:06:4b:36:95:ec:d3:7b:98:de:b6:d4:88:41:ba: 25:3a:6b:f6:f0:cf:34:48:e6:9f:1d:3c:28:b1:68:11:bc:a3: 9d:53:1e:45:1a:37:10:c2:84:21:1c:5b:70:33:d4:e7:44:5f: 26:41:d0:93:d1:65:4b:5c:84:d6:a7:a9:26:5d:ea:ea:6d:ac: 5a:a5:a0:d7:08:2d:fd:db:4b:0d:c4:ba:cc:d8:02:9b:a7:47: a3:e4:ca:0c:d2:e0:74:2c:07:6c:1c:57:f1:7b:36:84:d3:99: 52:00:ac:87:50:fd:0c:fe:3b:14:d5:95:c5:7a:33:da:e7:9f: 5c:d4:d9:d0:bf:db:0b:de:f5:fd:e1:5d:b9:40:d8:b3:0c:54: 30:c6:c1:46:bc:99:31:16:59:b8:a8:70:73:ff:ec:8f:c0:b0: 70:23:ba:81:79:e3:1d:65:76:f7:d6:c3:c8:2a:ca:d4:7c:7e: 78:02:68:e4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwMzI4MTg1NDMyWhcNMjYwNDA0MTg1NDMyWjAYMRYwFAYD VQQDEw02OWM4MjNlOC0zYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL41EPqFaNOPOepmr4eMY7OhKq2RJqabhN9VpGYgaYH9Wwef3pPhSUra7U0E jxgtQANgqS6TmybI6m31kvPk7OvYMwf7U5nrnjFNWQzNvF2fg/+K4lB5HnG9KOYi kR63Qbjl4zUPtCBmjU0+CwCThJkEKosYbooLUA2mFD4ITrtcJZItPmcuVgKNNpPy YXbRZRikH0AvZUnjoikn2K6MScNt8g91GdIVbougCrLqT7n7f9mAwvf79F8aO5Dl ustNcNNH5k8bR/I9sB3EenDYmi+XcO09Bkngyw/uUTFnA7FvoQe7OR0ghvMSvXuT DryZyQDUkjlitwToe5MpgmXU4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD7t5rKr D47Zrlmb9piGH1tkurNsMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAupD8ah3xm4drz1pV73t57YgM/ORG6kbhR/o4/WDUCoSKhC6qDbBjM3X9l53j AU8NI0sjqtey5Ct901EohtptpS0uN+bm9Foa3BmFOgZLNpXs03uY3rbUiEG6JTpr 9vDPNEjmnx08KLFoEbyjnVMeRRo3EMKEIRxbcDPU50RfJkHQk9FlS1yE1qepJl3q 6m2sWqWg1wgt/dtLDcS6zNgCm6dHo+TKDNLgdCwHbBxX8Xs2hNOZUgCsh1D9DP47 FNWVxXoz2uefXNTZ0L/bC971/eFduUDYswxUMMbBRryZMRZZuKhwc//sj8CwcCO6 gXnjHWV299bDyCrK1Hx+eAJo5A== -----END CERTIFICATE-----Generated at Sun Mar 29 23:41:52 2026 by rpki-client