$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: /95SH+ODrRiS32ZZSUA2n+Hej9z+LEp1i0aCOzpTVB4= Subject key identifier: 74:F8:0C:AF:4E:D6:C5:DF:D9:E7:4B:0B:3B:2B:F8:F8:76:42:87:9F Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D7A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0D6C Signing time: Mon 02 Mar 2026 15:38:45 +0000 Manifest this update: Mon 02 Mar 2026 15:38:45 +0000 Manifest next update: Mon 09 Mar 2026 15:38:45 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: Ycu+TWammTLpJxW5Zr9UVHfhjrpdt2RpLL72fkMyUrU=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: KN/qO3b9F5dp3gvVSi/2Av1F8gy5I+kWuZVNLBkzY6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3450 (0xd7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Mar 2 15:38:45 2026 GMT Not After : Mar 9 15:38:45 2026 GMT Subject: CN=69a5af05-fb13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b1:7f:1c:98:d8:df:92:bb:66:3d:37:0c:e5: 4a:de:f9:82:8b:8d:25:82:0a:d1:74:f2:60:3f:28: 22:90:05:90:c4:3c:a2:a9:c2:2d:36:66:29:b6:41: 0d:24:7e:e8:15:95:a8:d7:48:e2:94:64:f6:a8:fb: 80:a6:2d:2e:b2:1f:6e:3f:6f:f0:d8:5e:c2:b6:e3: 57:0a:ba:a1:2c:b7:4a:73:3a:60:24:50:2d:73:3b: b3:4f:71:27:f4:0b:19:99:61:a3:9e:56:50:d7:d7: 8d:f4:8a:d4:b8:85:19:87:03:90:8e:14:93:15:79: 20:64:ba:6a:2b:49:d2:da:dc:a3:9a:af:3a:28:a2: 66:4f:5c:a4:1a:6c:5a:d8:d1:b8:85:a8:7e:9b:0d: 02:91:ec:31:06:d2:a2:d0:37:f5:9a:e0:94:8d:4e: 58:e9:fe:13:6d:4f:27:39:2f:6f:70:fa:90:21:ed: a7:9d:87:a2:2d:18:2d:71:42:45:4d:a1:b5:56:b0: 8a:4c:43:13:8f:50:c4:ac:fa:18:9f:84:ce:01:33: 29:3d:b4:98:a9:8a:0b:47:73:e6:3c:d6:5c:e7:b7: 96:6a:0f:f5:4d:25:63:d3:73:43:f4:a2:73:48:83: 8e:13:03:72:35:4b:53:96:39:b3:2f:84:b8:67:15: 40:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F8:0C:AF:4E:D6:C5:DF:D9:E7:4B:0B:3B:2B:F8:F8:76:42:87:9F X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:66:7f:76:3d:f8:36:f7:65:d2:66:3f:8e:3a:2d:8b:05:fa: 7d:bb:c5:56:9f:43:c2:ee:8c:46:9c:f0:68:57:cf:af:15:0e: fd:0f:1d:fb:fa:76:9e:6e:d4:3f:17:a2:88:15:f7:43:9e:d4: 7e:33:98:7d:a7:a6:77:4d:02:11:16:ab:f8:6c:a4:3f:77:ca: 83:2b:23:30:70:e9:0a:59:63:42:95:b5:ce:44:e4:d8:ab:0a: 3f:30:9a:b8:46:99:7f:c1:36:4e:39:0a:e4:e8:fe:b9:f7:1f: 14:01:e7:f9:08:cf:95:05:32:7b:74:34:37:2a:2a:95:be:fc: 94:e3:10:08:0d:d1:8d:c9:3c:72:a9:fc:73:ee:33:11:76:d4: e9:ef:9f:43:09:5e:8a:6d:47:cc:8c:99:25:af:7d:94:4c:0b: 04:87:c3:29:ae:4b:6c:d1:55:20:4e:65:f2:20:04:02:f9:5e: bb:58:c7:94:13:4a:34:8e:e8:74:19:07:e6:18:c7:d9:32:fc: c1:34:e9:c4:c7:4e:0a:10:20:d0:40:2f:ed:b8:cd:e7:ed:8c: 0e:32:da:3f:3e:5d:43:88:e1:cd:09:12:9c:33:77:c8:99:b9: ff:56:1e:e9:11:ae:19:23:ff:85:ec:69:05:3f:fb:82:16:9f: d8:29:05:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjYwMzAyMTUzODQ1WhcNMjYwMzA5MTUzODQ1WjAYMRYwFAYD VQQDEw02OWE1YWYwNS1mYjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLF/HJjY35K7Zj03DOVK3vmCi40lggrRdPJgPygikAWQxDyiqcItNmYptkEN JH7oFZWo10jilGT2qPuApi0ush9uP2/w2F7CtuNXCrqhLLdKczpgJFAtczuzT3En 9AsZmWGjnlZQ19eN9IrUuIUZhwOQjhSTFXkgZLpqK0nS2tyjmq86KKJmT1ykGmxa 2NG4hah+mw0CkewxBtKi0Df1muCUjU5Y6f4TbU8nOS9vcPqQIe2nnYeiLRgtcUJF TaG1VrCKTEMTj1DErPoYn4TOATMpPbSYqYoLR3PmPNZc57eWag/1TSVj03ND9KJz SIOOEwNyNUtTljmzL4S4ZxVAKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHT4DK9O 1sXf2edLCzsr+Ph2QoefMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs2Z/dj34Nvdl0mY/jjotiwX6fbvFVp9Dwu6MRpzwaFfPrxUO/Q8d+/p2nm7U PxeiiBX3Q57UfjOYfaemd00CERar+GykP3fKgysjMHDpClljQpW1zkTk2KsKPzCa uEaZf8E2TjkK5Oj+ufcfFAHn+QjPlQUye3Q0Nyoqlb78lOMQCA3Rjck8cqn8c+4z EXbU6e+fQwleim1HzIyZJa99lEwLBIfDKa5LbNFVIE5l8iAEAvleu1jHlBNKNI7o dBkH5hjH2TL8wTTpxMdOChAg0EAv7bjN5+2MDjLaPz5dQ4jhzQkSnDN3yJm5/1Ye 6RGuGSP/hexpBT/7ghaf2CkFdA== -----END CERTIFICATE-----Generated at Mon Mar 2 18:08:31 2026 by rpki-client