$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: bej4lTh+Ljgu8ey1k7+EHqh9yYQRN+Kb+Utoj4sAjEc= Subject key identifier: 50:86:BB:CA:5E:54:22:20:61:92:83:63:01:CE:A7:43:9E:F4:09:58 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0F5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0F44 Signing time: Mon 02 Mar 2026 01:31:54 +0000 Manifest this update: Mon 02 Mar 2026 01:31:53 +0000 Manifest next update: Mon 09 Mar 2026 01:31:53 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: RkQZACCD7zvPkHt+4rsSh+45QI4VYtFoq+3YG0bgoHk=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: N33b13XY6g27GVjt3CNNQUi+knQ6X/92GcFFFlrfuoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3933 (0xf5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Mar 2 01:31:53 2026 GMT Not After : Mar 9 01:31:53 2026 GMT Subject: CN=69a4e88a-a341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6d:8f:23:75:ba:de:b0:b9:33:a2:44:78:c3: f2:6c:5f:df:ae:a2:80:2b:ff:cc:49:d8:6b:5b:43: 48:42:f2:92:ce:ab:a6:6f:0d:e3:2b:52:6f:77:2f: c3:12:0b:c5:3d:ba:44:81:59:cc:92:d8:7d:42:f4: de:06:aa:d3:00:cc:ae:b8:ed:e3:29:d1:82:0a:c8: 5a:c3:5c:b7:c7:05:87:4a:8f:26:27:36:b1:81:59: df:2e:47:73:91:cc:93:c8:7b:8d:58:2c:9e:a4:88: 7b:35:6d:a1:e2:57:68:ff:da:37:9f:48:2e:76:8a: 1b:e7:6b:60:cc:ed:25:f2:90:a9:36:ca:9c:5c:87: cb:e7:c6:8d:9a:4d:41:8e:23:6e:b2:f3:80:39:63: 33:ed:99:a6:15:1b:fb:94:67:6d:9c:2e:26:64:d9: 89:67:bb:69:32:5a:e2:03:04:f8:46:22:4b:73:bc: 02:92:ba:15:63:fa:a6:eb:4a:86:09:a0:26:be:87: fd:a7:a8:07:5a:0d:6f:d6:46:da:fe:f8:b8:36:c6: 91:7d:79:c4:5e:09:08:44:b4:0c:36:89:28:d0:d3: ca:65:b1:03:09:51:52:f9:b6:78:1d:24:20:62:70: 93:d7:ca:89:c7:6a:c3:ad:20:4d:1c:3c:4d:e0:2c: e6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:86:BB:CA:5E:54:22:20:61:92:83:63:01:CE:A7:43:9E:F4:09:58 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c0:66:97:3c:86:bb:a2:4f:75:96:1b:0c:39:04:ef:42:c7: be:05:57:ee:c5:e8:3d:ff:ba:38:3b:a5:0a:fc:b4:81:05:19: 61:18:39:95:5b:91:91:3a:ae:27:87:c8:6d:19:58:3a:73:59: 0a:cb:0f:c4:f9:2b:cd:e0:21:32:9d:5c:7a:d2:26:3e:1d:b0: 7b:69:79:1e:57:79:42:83:06:42:1b:36:78:dc:a2:c8:c9:c4: cd:a8:46:69:89:72:d8:08:1e:c3:24:35:2f:ed:37:b2:c6:56: 2a:ce:1d:c2:c5:02:11:7d:42:33:23:77:3d:41:08:09:33:ee: 59:80:2f:58:ce:49:24:e9:dd:68:69:db:d4:95:b0:2e:f7:08: 1d:5d:c9:a3:d7:94:d5:44:ae:26:fe:72:0b:20:bf:60:32:ed: 90:bb:e9:9a:65:4c:73:70:58:46:dd:96:39:6a:a6:cd:d5:0e: 8a:c0:0a:81:bd:d0:f4:11:30:ea:d6:df:da:42:5e:e7:29:ab: cd:01:27:a5:41:fd:54:c5:6d:6c:a7:fa:a7:85:e4:e3:3a:07: f9:03:3f:e7:35:a5:7a:6a:b0:9e:a6:c1:ed:6a:3e:68:dd:20: 11:bc:51:f0:ae:a5:11:5e:60:a1:4c:54:be:72:b4:fe:ae:be: 54:28:a6:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjYwMzAyMDEzMTUzWhcNMjYwMzA5MDEzMTUzWjAYMRYwFAYD VQQDEw02OWE0ZTg4YS1hMzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv22PI3W63rC5M6JEeMPybF/frqKAK//MSdhrW0NIQvKSzqumbw3jK1Jvdy/D EgvFPbpEgVnMkth9QvTeBqrTAMyuuO3jKdGCCshaw1y3xwWHSo8mJzaxgVnfLkdz kcyTyHuNWCyepIh7NW2h4ldo/9o3n0gudoob52tgzO0l8pCpNsqcXIfL58aNmk1B jiNusvOAOWMz7ZmmFRv7lGdtnC4mZNmJZ7tpMlriAwT4RiJLc7wCkroVY/qm60qG CaAmvof9p6gHWg1v1kba/vi4NsaRfXnEXgkIRLQMNoko0NPKZbEDCVFS+bZ4HSQg YnCT18qJx2rDrSBNHDxN4CzmNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFCGu8pe VCIgYZKDYwHOp0Oe9AlYMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEcBmlzyGu6JPdZYbDDkE70LHvgVX7sXoPf+6ODulCvy0gQUZYRg5lVuRkTqu J4fIbRlYOnNZCssPxPkrzeAhMp1cetImPh2we2l5Hld5QoMGQhs2eNyiyMnEzahG aYly2AgewyQ1L+03ssZWKs4dwsUCEX1CMyN3PUEICTPuWYAvWM5JJOndaGnb1JWw LvcIHV3Jo9eU1USuJv5yCyC/YDLtkLvpmmVMc3BYRt2WOWqmzdUOisAKgb3Q9BEw 6tbf2kJe5ymrzQEnpUH9VMVtbKf6p4Xk4zoH+QM/5zWlemqwnqbB7Wo+aN0gEbxR 8K6lEV5goUxUvnK0/q6+VCimyw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:31:32 2026 by rpki-client