$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: 3fnAWTZVW/cDnh9mT3lcELe860JiBykaxpsB5ryJ1YU= Subject key identifier: 49:2D:4C:3E:C1:A0:DD:C4:AC:01:B1:8A:8B:B3:A8:40:2A:01:62:61 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 093E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 092D Signing time: Mon 02 Mar 2026 01:57:35 +0000 Manifest this update: Mon 02 Mar 2026 01:57:33 +0000 Manifest next update: Mon 09 Mar 2026 01:57:33 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: p2eDdax6AesXEl1ckWxkTEL9d8fWpaFwXdX3BYWa9rs=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: +2GMR/V9mZr0Ife9tGdydPkVcoSqLY2zhQZIUiI3Hq0=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: bPFO6I2wWIPENqB/X87e5uIatc/LQckX7tfxgiWc7ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2366 (0x93e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Mar 2 01:57:33 2026 GMT Not After : Mar 9 01:57:33 2026 GMT Subject: CN=69a4ee8e-b14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:8c:83:65:67:bd:55:a2:25:d8:60:96:9c: 97:8a:7f:c3:6c:25:96:71:ee:af:32:2e:8f:52:b1: 98:9e:23:4d:42:ef:af:49:cb:b9:1b:eb:f6:17:03: 49:6d:de:3e:2f:f8:9c:86:9c:a2:9f:98:61:8f:62: 38:e0:39:60:ec:2b:96:c3:f5:52:78:d3:8b:97:d1: 52:20:61:1e:24:ab:0a:59:71:3b:3e:f7:ef:25:6b: ef:f6:5f:da:79:df:af:4a:37:61:ba:30:45:8b:83: e8:23:c7:33:95:1b:a7:0b:4f:0d:8a:25:bf:1b:da: 3d:11:7e:96:28:b2:90:97:ca:29:72:8c:f0:32:c4: 37:48:a8:17:d1:c6:09:75:d5:9f:81:cd:d6:ba:31: ef:4e:4a:66:96:45:2e:17:e1:2a:2c:18:93:9d:64: 36:8a:be:f3:95:f7:af:33:aa:79:df:65:91:7d:be: 31:aa:10:8c:06:81:1f:e5:08:5e:da:7b:7e:5d:2a: b0:f8:7c:c7:99:2b:2e:ff:c2:e4:20:1d:d6:84:e9: 44:50:3a:55:4e:b5:66:8e:a4:f5:e2:5d:b0:02:8d: ef:5e:51:f0:20:59:09:82:b8:24:e7:b2:b3:e1:8e: a3:02:db:40:f7:27:fa:5c:23:eb:1e:86:2f:fd:96: 59:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2D:4C:3E:C1:A0:DD:C4:AC:01:B1:8A:8B:B3:A8:40:2A:01:62:61 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5f:0b:4b:69:35:1b:ab:e6:0c:20:a8:26:df:35:c7:98:ac: 99:35:25:93:90:1b:0a:32:4d:51:77:8e:14:7f:22:bb:8b:f7: e7:b0:76:ae:e5:ba:ac:c1:b8:a7:0b:08:30:cc:ee:8b:45:4c: 79:47:25:92:94:b4:0f:d3:5e:00:ba:91:fa:2b:42:34:73:7f: 24:67:a5:fe:57:e4:aa:fa:2f:50:1e:38:75:a1:a0:d5:fb:4c: 4f:7a:e1:68:07:64:9b:85:fb:39:38:67:fb:4c:70:62:a8:29: 57:d1:8e:cb:42:72:70:ef:76:6f:88:1b:b3:6e:ba:4f:06:88: 77:ae:79:4b:d0:af:57:2c:2a:e9:01:b5:6a:6b:26:ef:92:1f: a8:40:d9:a8:0e:d6:ae:c4:5d:38:ef:55:8b:0a:58:de:4b:6e: b3:7b:c1:a8:82:96:20:ef:a5:e8:2c:97:42:7d:20:77:a8:18: 00:d0:d9:97:2f:cc:e2:e8:6f:07:76:ef:f8:6a:7e:b3:6b:55: e1:17:57:2e:88:6c:c3:d9:a7:8a:da:91:0d:a8:22:2e:7b:4c: 6f:f5:b8:12:60:d7:df:db:ae:89:58:4a:92:f9:07:4f:a8:00: 12:01:4c:2f:6d:d8:bc:7e:26:18:7e:be:7f:f2:d0:b0:71:1a: f1:17:68:85 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjYwMzAyMDE1NzMzWhcNMjYwMzA5MDE1NzMzWjAYMRYwFAYD VQQDEw02OWE0ZWU4ZS1iMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8OMg2VnvVWiJdhglpyXin/DbCWWce6vMi6PUrGYniNNQu+vScu5G+v2FwNJ bd4+L/ichpyin5hhj2I44Dlg7CuWw/VSeNOLl9FSIGEeJKsKWXE7PvfvJWvv9l/a ed+vSjdhujBFi4PoI8czlRunC08NiiW/G9o9EX6WKLKQl8opcozwMsQ3SKgX0cYJ ddWfgc3WujHvTkpmlkUuF+EqLBiTnWQ2ir7zlfevM6p532WRfb4xqhCMBoEf5Qhe 2nt+XSqw+HzHmSsu/8LkIB3WhOlEUDpVTrVmjqT14l2wAo3vXlHwIFkJgrgk57Kz 4Y6jAttA9yf6XCPrHoYv/ZZZewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEktTD7B oN3ErAGxiouzqEAqAWJhMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIl8LS2k1G6vmDCCoJt81x5ismTUlk5AbCjJNUXeOFH8iu4v357B2ruW6rMG4 pwsIMMzui0VMeUclkpS0D9NeALqR+itCNHN/JGel/lfkqvovUB44daGg1ftMT3rh aAdkm4X7OThn+0xwYqgpV9GOy0JycO92b4gbs266TwaId655S9CvVywq6QG1amsm 75IfqEDZqA7WrsRdOO9ViwpY3ktus3vBqIKWIO+l6CyXQn0gd6gYANDZly/M4uhv B3bv+Gp+s2tV4RdXLohsw9mnitqRDagiLntMb/W4EmDX39uuiVhKkvkHT6gAEgFM L23YvH4mGH6+f/LQsHEa8RdohQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:12:04 2026 by rpki-client