$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: iSDnU2XVqrZYd7rRvU820djuiGWO2jM2lgc+pnBxvgg= Subject key identifier: 00:A2:C2:18:06:B9:F0:C6:67:24:C5:FA:21:93:B5:AC:91:FA:0D:D0 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 35A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3559 Signing time: Tue 24 Mar 2026 14:22:27 +0000 Manifest this update: Tue 24 Mar 2026 14:22:26 +0000 Manifest next update: Tue 31 Mar 2026 14:22:26 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: i7rpBdQeaHlRGfUn1GPjeJwFIu53r6H3RYOL/AknbmI=) 2: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: ledywzn44AtfNdf65irkSbejoe2qe67kQVSrxPSpLj8=) 3: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: XdRb/RACDNGwlvNZO7BeLxx7KPhxjnZegADMOdEoBPs=) 4: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: Im+A1kygYXCcmKM1N88CQpYfMfI1pkZXcprVNJAgc7Y=) 5: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: c5BWjsV+5qy4Czn1fNB7N39xouqCRvW12ZZgXgS4ZDQ=) 6: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: CWD+yCy6yNtHR/CgsSdRActZ6Gz+ygW0qqlW1BWQfN0=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: VXO5/U8cHHCFaikukuqO1qnp6nbKhmKzeuFoVz0LqaU=) 8: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: qiT/GVvRCXwwQO5czxfwtuP70nIiPr4STQfaVH+7UL0=) 9: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: izVvMKnosN85WDCwiZeSTea3usmMiFXGuieIuV+2wlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13730 (0x35a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Mar 24 14:22:26 2026 GMT Not After : Mar 31 14:22:26 2026 GMT Subject: CN=69c29e23-c3af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b0:ed:68:ec:b8:89:b1:1c:01:c5:1b:c5:89: cd:db:e4:6c:ee:f3:24:1e:f0:f8:b8:83:10:f3:8d: 74:24:bd:cb:95:ae:ec:d2:29:68:1c:64:0a:6a:da: 3b:53:43:65:74:4e:cf:7b:f1:0f:c0:a2:04:93:37: 63:b4:26:2f:bc:8d:69:4d:0e:fc:26:7e:38:f0:20: d1:b0:b6:b0:26:ca:bf:5a:2b:d1:93:1a:ed:f1:c7: bb:d3:31:56:0c:e0:32:75:15:7a:09:ea:77:b7:86: 0a:32:0e:92:f2:e7:1d:34:c4:d3:10:5d:f3:ec:70: 2f:c5:7d:fd:4e:63:45:c5:75:6b:1a:93:8d:63:58: 10:b6:64:c6:ce:bb:7f:37:76:d9:cd:c1:02:70:67: 47:3b:04:83:c5:10:d4:e5:f9:36:e4:8a:2a:54:b3: dc:a1:5c:c7:68:00:fb:89:9b:43:a7:96:38:78:01: 63:78:69:a2:4d:96:4a:dd:6b:df:d4:e1:59:d1:c4: c5:d0:84:ab:d0:98:fd:46:8f:78:59:cd:58:b1:b7: d7:86:07:45:5e:6a:2e:71:16:78:ee:37:93:e6:c2: fa:f4:af:d7:78:b8:53:6e:0a:e9:59:be:a5:23:02: 85:19:85:b5:0a:b5:1a:96:89:61:44:ab:ad:31:a2: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A2:C2:18:06:B9:F0:C6:67:24:C5:FA:21:93:B5:AC:91:FA:0D:D0 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c9:05:83:03:5b:90:b1:46:05:fb:21:2e:fb:2b:17:65:fd: 7e:49:ca:b1:8a:e3:96:04:38:27:d1:b5:37:9c:7e:b4:e2:84: 41:75:2d:ff:2f:e0:3e:3b:93:df:c0:5f:58:6b:58:a1:91:1c: 43:30:76:b2:c0:9c:12:32:39:ed:50:49:2f:93:5f:7e:f5:8a: 77:c8:bd:71:a2:b8:be:dc:64:39:9c:c3:02:10:2e:cb:1f:86: 82:d6:8c:6b:2a:b9:e9:e0:1a:6e:fb:21:30:f3:9f:4d:35:99: bc:6d:7f:54:bb:8b:ad:ad:2f:a0:fd:ac:65:08:bf:2e:ae:6a: 87:a0:13:5a:fb:8b:d6:2e:9e:10:5b:d1:d2:d3:22:de:f4:d4: c4:be:37:ea:ad:e1:4e:70:d8:e3:4c:06:6c:a9:a4:9e:ac:29: 42:87:c5:a4:a4:bc:a6:bd:6a:4d:98:56:99:15:88:54:cd:41: 80:fd:39:c3:5f:74:a9:bc:79:04:c9:24:54:4d:6d:1b:da:f3: 3c:95:07:44:b1:54:12:bd:3d:45:e1:23:75:b1:68:71:d1:f0: 3e:c5:fd:29:8b:08:98:12:fc:25:e1:de:d0:b1:8a:41:a3:ec: f8:f8:f0:6b:ff:1e:e0:e7:82:75:e7:88:cb:03:55:00:69:85: 7b:4c:06:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjYwMzI0MTQyMjI2WhcNMjYwMzMxMTQyMjI2WjAYMRYwFAYD VQQDEw02OWMyOWUyMy1jM2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLDtaOy4ibEcAcUbxYnN2+Rs7vMkHvD4uIMQ8410JL3Lla7s0iloHGQKato7 U0NldE7Pe/EPwKIEkzdjtCYvvI1pTQ78Jn448CDRsLawJsq/WivRkxrt8ce70zFW DOAydRV6Cep3t4YKMg6S8ucdNMTTEF3z7HAvxX39TmNFxXVrGpONY1gQtmTGzrt/ N3bZzcECcGdHOwSDxRDU5fk25IoqVLPcoVzHaAD7iZtDp5Y4eAFjeGmiTZZK3Wvf 1OFZ0cTF0ISr0Jj9Ro94Wc1YsbfXhgdFXmoucRZ47jeT5sL69K/XeLhTbgrpWb6l IwKFGYW1CrUalolhRKutMaLdVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFACiwhgG ufDGZyTF+iGTtayR+g3QMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANMkFgwNbkLFGBfshLvsrF2X9fknKsYrjlgQ4J9G1N5x+tOKEQXUt/y/gPjuT 38BfWGtYoZEcQzB2ssCcEjI57VBJL5NffvWKd8i9caK4vtxkOZzDAhAuyx+GgtaM ayq56eAabvshMPOfTTWZvG1/VLuLra0voP2sZQi/Lq5qh6ATWvuL1i6eEFvR0tMi 3vTUxL436q3hTnDY40wGbKmknqwpQofFpKS8pr1qTZhWmRWIVM1BgP05w190qbx5 BMkkVE1tG9rzPJUHRLFUEr09ReEjdbFocdHwPsX9KYsImBL8JeHe0LGKQaPs+Pjw a/8e4OeCdeeIywNVAGmFe0wGeA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:37:37 2026 by rpki-client