$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: hhuXQwb6Lwuyay/oq87p7YH0ixpKaZtsbXpcn/ePE+c= Subject key identifier: 36:D4:85:F0:16:97:6E:23:30:FE:20:39:31:6E:29:74:AD:AC:A0:74 Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 3560 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 3534 Signing time: Mon 02 Mar 2026 00:58:07 +0000 Manifest this update: Mon 02 Mar 2026 00:58:06 +0000 Manifest next update: Mon 09 Mar 2026 00:58:06 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: QRaVegLio6B7yfYlwRGjCZBHFW6D4pYNf8KtLWuKDBg=) 2: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: cXxlTlh2e8x7rwEZccluqoXbQOcppLc/t/OKxLCL9Es=) 3: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: iodpqPzJXCkEMjXNizFOPmkITOS3ty8iD6q0/vbWTBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13664 (0x3560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Mar 2 00:58:06 2026 GMT Not After : Mar 9 00:58:06 2026 GMT Subject: CN=69a4e09f-feda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b4:eb:29:99:19:0f:f4:1a:29:f9:2e:a6:c8: e4:31:63:75:fc:df:93:33:8c:60:34:92:fa:e4:39: 6b:e9:e0:98:cd:66:24:09:96:b4:b0:d3:44:84:82: aa:9d:34:2a:1f:fc:65:24:4e:24:b7:19:bd:af:4f: 40:a4:d7:e1:85:34:6c:c3:f4:f8:ba:03:1c:c0:08: a4:4c:71:72:19:01:e4:8f:5e:9c:10:12:1f:af:0d: e5:ec:d5:74:6a:7b:5f:ef:98:3a:5c:25:a3:26:53: 23:58:07:48:f8:ac:4b:4f:64:6d:fa:41:f3:59:fe: 74:9a:41:2e:3d:58:42:0c:10:55:7c:a0:54:82:24: df:26:4f:ab:fa:91:c2:e9:0f:18:87:89:69:34:61: 80:b6:16:0d:c6:02:b4:eb:b1:f6:8d:32:26:80:dd: 6d:a2:06:42:cd:0e:a0:fb:68:28:a7:19:8d:29:5f: e8:b9:2e:99:23:3d:c5:ac:8b:bc:ca:6d:32:3b:c9: d5:2d:29:73:38:be:fd:a4:9b:df:6b:b5:1b:cb:3a: 8b:06:9a:28:b0:2e:d7:b0:5c:4f:d3:ba:00:0a:68: 9e:91:1c:1b:ec:4e:87:8b:0b:eb:5c:b8:76:98:17: 4a:07:0b:14:c4:e7:4c:0f:84:ca:e1:b5:9f:e3:62: 6b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D4:85:F0:16:97:6E:23:30:FE:20:39:31:6E:29:74:AD:AC:A0:74 X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ec:54:d9:d8:43:4b:88:77:8b:56:9e:6f:ae:83:f4:19:6c: bd:2a:b2:6c:ce:fe:08:71:19:67:54:ab:d9:aa:94:b2:fb:50: f1:84:fc:7f:e2:e4:27:32:8e:98:d4:ec:ba:54:5d:0c:1a:51: bf:07:18:69:43:0b:35:44:e1:8f:5d:72:38:11:39:f1:cf:a8: ac:e4:55:9b:02:ec:50:f0:27:47:70:9c:22:2f:75:d5:f8:c9: f0:6a:a3:f6:0d:8a:90:02:e0:85:91:ec:67:83:08:9b:34:db: e4:32:36:44:a8:47:cf:4c:a9:fe:01:e3:96:bc:c6:9c:31:71: f1:b9:5c:c0:fb:3c:93:af:1d:b7:ec:03:a0:89:c5:c3:71:c7: 20:52:e4:f0:10:75:42:c8:58:a7:5d:cb:06:d1:e9:47:87:35: 83:12:43:6f:5d:12:d5:ef:f9:77:b8:de:9c:ce:63:bb:f0:eb: a0:4a:5c:c3:75:bd:fc:1a:ac:d5:a9:f4:ec:21:1e:1e:58:a6: c0:76:50:b4:c0:28:35:8b:29:9e:21:9f:01:12:93:4f:b6:61: 32:00:d0:d7:20:d3:da:8b:be:cd:bf:a1:f7:38:23:0d:a6:e8: fd:d4:6e:3f:43:b1:6f:0e:27:72:00:07:9b:9d:cd:9e:11:2f: fe:1f:c9:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjYwMzAyMDA1ODA2WhcNMjYwMzA5MDA1ODA2WjAYMRYwFAYD VQQDEw02OWE0ZTA5Zi1mZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbTrKZkZD/QaKfkupsjkMWN1/N+TM4xgNJL65Dlr6eCYzWYkCZa0sNNEhIKq nTQqH/xlJE4ktxm9r09ApNfhhTRsw/T4ugMcwAikTHFyGQHkj16cEBIfrw3l7NV0 antf75g6XCWjJlMjWAdI+KxLT2Rt+kHzWf50mkEuPVhCDBBVfKBUgiTfJk+r+pHC 6Q8Yh4lpNGGAthYNxgK067H2jTImgN1togZCzQ6g+2gopxmNKV/ouS6ZIz3FrIu8 ym0yO8nVLSlzOL79pJvfa7UbyzqLBpoosC7XsFxP07oACmiekRwb7E6HiwvrXLh2 mBdKBwsUxOdMD4TK4bWf42Jr0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDbUhfAW l24jMP4gOTFuKXStrKB0MB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs+xU2dhDS4h3i1aeb66D9BlsvSqybM7+CHEZZ1Sr2aqUsvtQ8YT8f+LkJzKO mNTsulRdDBpRvwcYaUMLNUThj11yOBE58c+orORVmwLsUPAnR3CcIi911fjJ8Gqj 9g2KkALghZHsZ4MImzTb5DI2RKhHz0yp/gHjlrzGnDFx8blcwPs8k68dt+wDoInF w3HHIFLk8BB1QshYp13LBtHpR4c1gxJDb10S1e/5d7jenM5ju/DroEpcw3W9/Bqs 1an07CEeHlimwHZQtMAoNYspniGfARKTT7ZhMgDQ1yDT2ou+zb+h9zgjDabo/dRu P0Oxbw4ncgAHm53NnhEv/h/JZQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:25:24 2026 by rpki-client