$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: AkmSRc5JGI9378qRvMZJflqYH1WP5yxlKR7rcNTBmyU= Subject key identifier: F2:B8:61:68:A3:15:C8:AC:E4:09:3C:39:87:EF:09:7E:EB:20:C1:C7 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 0562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 0550 Signing time: Thu 26 Mar 2026 23:16:00 +0000 Manifest this update: Thu 26 Mar 2026 23:15:59 +0000 Manifest next update: Thu 02 Apr 2026 23:15:59 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: fFQ35EJRDaRdw0tZel9XPYYJxyruGGy0fqlelkn8NW8=) 2: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: ly19W/Muv8BDmpRPmS2Fe3o0q7TToeFH9ObD8f2QW9g=) 3: 1295B5943FA611EF94664041C4F9AE02.roa (hash: hapzzVKt9oxlCLEwYHK4MTLp4PI8BfiasqodqBtyfb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1378 (0x562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Mar 26 23:15:59 2026 GMT Not After : Apr 2 23:15:59 2026 GMT Subject: CN=69c5be30-b518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:37:e9:da:4f:73:5e:04:85:6a:6c:69:e0:d7: 7e:58:27:ee:71:69:18:4f:e8:cd:e8:a4:f0:f5:0b: 65:f6:4f:6b:1f:43:72:18:57:a8:31:1b:64:0f:aa: 7e:60:34:69:92:91:cd:8a:21:00:7c:d3:20:12:5e: 7f:ed:d8:ae:36:0e:ad:1e:f1:7c:3b:29:ca:d8:f1: ba:5a:e7:89:c0:f1:7f:83:54:3e:6f:d9:bf:c0:4f: 27:9e:5a:93:56:8a:18:de:1d:77:fe:4e:72:c8:9c: 14:d0:b9:7c:fc:d9:ea:8b:d8:12:c1:7a:ad:e5:60: 95:e4:96:f8:52:0e:51:27:4f:bb:d3:ed:9c:f7:56: c2:b3:24:30:68:51:28:1e:82:a9:aa:33:dd:07:a6: 92:15:06:08:28:9c:5c:01:ee:ea:33:e4:1f:49:9b: 3f:d2:d8:90:75:f5:d6:d8:90:8e:d7:ad:81:ad:6e: 5b:55:d2:50:16:9d:9b:11:f3:6c:52:56:7a:b1:69: f0:76:5a:ad:88:57:12:e0:71:d8:a8:fb:9d:39:20: d7:8e:cb:2d:75:b3:12:1b:32:eb:0a:c5:5b:79:97: c1:65:8a:2b:83:3f:c9:97:ae:84:21:0e:15:c2:3c: d0:9f:d6:83:6f:4d:cb:1a:bb:b3:27:97:77:f3:bd: d8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B8:61:68:A3:15:C8:AC:E4:09:3C:39:87:EF:09:7E:EB:20:C1:C7 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:39:8f:06:db:d4:3e:a8:d1:85:98:dd:1c:0c:66:9d:5c:6d: 94:cf:26:7a:de:f2:f4:86:1e:37:c6:5d:4f:94:87:97:2f:a8: 87:82:08:a0:4e:3a:7e:52:c3:3a:be:0e:e8:72:48:6c:80:c9: 63:71:6d:38:ef:46:da:dc:2c:76:7f:c1:cf:df:ef:46:6a:2b: 93:6a:b6:cc:31:64:32:25:ec:29:20:6f:8d:59:61:69:b6:cf: 9a:0f:5e:64:ae:03:3c:dd:6a:67:71:61:31:a2:de:52:e3:ce: 6e:ea:06:58:69:46:3e:49:23:71:ef:b5:30:cc:36:82:27:ea: be:ee:f0:b5:b4:9d:a2:c7:68:c5:df:2b:2d:ba:26:96:c2:86: 36:3a:1c:ae:f8:b9:54:a0:7a:94:42:ed:06:cf:b4:55:72:33: 8b:96:dd:fa:49:96:23:c7:8a:34:20:fb:74:bf:db:b4:ac:23: ea:25:e9:9f:17:8c:ca:4c:8b:74:bc:77:b8:2b:1c:e5:73:5d: c0:97:48:6b:c9:23:5d:46:80:5b:09:59:11:67:ca:b3:ad:ad: 4f:bb:46:0e:76:38:e6:22:0e:80:24:cd:68:b7:29:a7:55:08: db:ac:40:f3:4b:c7:71:2d:ed:a7:90:b7:5a:f6:01:29:f4:e3: 9a:4b:de:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjYwMzI2MjMxNTU5WhcNMjYwNDAyMjMxNTU5WjAYMRYwFAYD VQQDEw02OWM1YmUzMC1iNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkDfp2k9zXgSFamxp4Nd+WCfucWkYT+jN6KTw9Qtl9k9rH0NyGFeoMRtkD6p+ YDRpkpHNiiEAfNMgEl5/7diuNg6tHvF8OynK2PG6WueJwPF/g1Q+b9m/wE8nnlqT VooY3h13/k5yyJwU0Ll8/Nnqi9gSwXqt5WCV5Jb4Ug5RJ0+70+2c91bCsyQwaFEo HoKpqjPdB6aSFQYIKJxcAe7qM+QfSZs/0tiQdfXW2JCO162BrW5bVdJQFp2bEfNs UlZ6sWnwdlqtiFcS4HHYqPudOSDXjsstdbMSGzLrCsVbeZfBZYorgz/Jl66EIQ4V wjzQn9aDb03LGruzJ5d3873YYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPK4YWij Fcis5Ak8OYfvCX7rIMHHMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhDmPBtvUPqjRhZjdHAxmnVxtlM8met7y9IYeN8ZdT5SHly+oh4IIoE46flLD Or4O6HJIbIDJY3FtOO9G2twsdn/Bz9/vRmork2q2zDFkMiXsKSBvjVlhabbPmg9e ZK4DPN1qZ3FhMaLeUuPObuoGWGlGPkkjce+1MMw2gifqvu7wtbSdosdoxd8rLbom lsKGNjocrvi5VKB6lELtBs+0VXIzi5bd+kmWI8eKNCD7dL/btKwj6iXpnxeMykyL dLx3uCsc5XNdwJdIa8kjXUaAWwlZEWfKs62tT7tGDnY45iIOgCTNaLcpp1UI26xA 80vHcS3tp5C3WvYBKfTjmkvezA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:21 2026 by rpki-client