$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: MYfqLmnznFSmgNfsIIeVuALYEqNlnUm4x3yp+OPJHHc= Subject key identifier: 72:28:FC:8E:84:60:2E:4A:CF:EF:93:05:27:35:B2:D2:E5:73:ED:29 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 06C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 06AA Signing time: Tue 24 Mar 2026 22:18:43 +0000 Manifest this update: Tue 24 Mar 2026 22:18:42 +0000 Manifest next update: Tue 31 Mar 2026 22:18:42 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: TvOBHggsqRL0VgZae7cEoXTHt7zgWES5tER47rHVr3s=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: ODIX3oDpfnNWOwtgKPini7l1bVtlb/9n+o+dXisnTbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Mar 24 22:18:42 2026 GMT Not After : Mar 31 22:18:42 2026 GMT Subject: CN=69c30dc2-b24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:26:fc:9b:42:7c:a8:59:96:0e:61:ea:83:f0: 5e:c5:db:af:54:bf:45:87:e9:e3:01:f3:5e:b3:f9: e5:10:c5:2d:d3:f1:be:c9:0e:24:cf:3e:98:38:c8: 58:da:bd:dc:3c:e6:6f:e9:12:19:f9:c6:cd:22:54: 6d:d3:41:62:44:e8:2e:e2:66:b3:b2:ff:99:75:06: 67:8c:5f:eb:c9:0d:a0:64:48:0c:67:55:f4:a4:3e: 75:57:37:3f:97:fd:c2:73:4b:8f:d8:ba:fd:26:2b: f7:d1:7c:72:6e:9e:93:5b:18:36:08:39:14:f1:3f: 92:9f:d9:b5:da:26:92:92:84:48:63:8b:fe:c9:ba: dc:70:8d:4d:a6:8b:bb:0d:cf:a3:96:9f:7a:cb:b1: 1a:78:e8:e8:f0:bd:81:67:44:19:80:d3:66:5f:df: 6b:37:38:fb:33:85:1d:0b:17:0f:29:f6:f3:00:29: 65:1e:8c:03:7a:94:76:b2:4e:0a:5c:d9:72:79:fc: 54:3f:44:16:50:10:07:77:9d:4b:d4:ad:35:57:cf: bd:88:a1:1d:d6:82:d5:9a:c9:9a:90:c9:ea:21:31: 37:28:c2:b8:e9:45:30:4b:99:da:20:79:5d:22:29: 8a:4c:a9:af:e5:a8:dd:bf:f1:ba:4c:f5:79:ea:79: 1d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:28:FC:8E:84:60:2E:4A:CF:EF:93:05:27:35:B2:D2:E5:73:ED:29 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:52:30:0e:25:ad:8d:f4:1b:ca:dc:88:0b:78:cb:68:4a:18: 7c:60:b9:92:eb:a7:b1:03:2a:bf:d6:e3:de:12:c7:a3:eb:6a: 04:09:be:43:e0:47:4f:21:50:d1:d2:3f:73:b2:3d:3e:99:91: 36:eb:0b:d3:96:f8:93:97:19:c4:b0:49:a6:b3:61:47:55:66: 8a:c5:39:f4:9d:f2:11:d3:be:8c:4f:fc:8f:29:06:a8:8b:9c: 6f:aa:4e:a1:e4:c8:99:20:2b:66:23:b7:14:89:51:cb:f5:85: 51:a6:75:01:e4:5b:42:d3:4d:fa:e2:c6:b2:eb:a6:6e:f9:b9: 76:ef:e2:4b:6f:1a:41:7b:d0:fb:92:93:4d:37:25:82:9e:f9: 02:10:9d:9c:7d:f3:41:be:86:09:33:6c:ac:c1:36:00:bc:ff: 74:5b:59:03:1a:d7:1d:ea:12:ce:bf:79:13:d8:67:18:17:f6: d3:1a:91:3b:c0:24:a8:45:84:2f:d8:c5:df:9d:95:87:4a:87: af:3c:c7:fc:4d:59:21:f7:ce:eb:d6:1e:3f:6e:90:ab:4e:c8: ad:0f:7a:59:9c:35:f9:52:d1:96:3e:6f:5e:d4:7e:f4:37:38: a0:36:66:9b:13:5d:68:90:12:47:97:7a:aa:d4:eb:03:ce:ae: 16:08:e9:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjYwMzI0MjIxODQyWhcNMjYwMzMxMjIxODQyWjAYMRYwFAYD VQQDEw02OWMzMGRjMi1iMjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cb8m0J8qFmWDmHqg/BexduvVL9Fh+njAfNes/nlEMUt0/G+yQ4kzz6YOMhY 2r3cPOZv6RIZ+cbNIlRt00FiROgu4mazsv+ZdQZnjF/ryQ2gZEgMZ1X0pD51Vzc/ l/3Cc0uP2Lr9Jiv30Xxybp6TWxg2CDkU8T+Sn9m12iaSkoRIY4v+ybrccI1Npou7 Dc+jlp96y7EaeOjo8L2BZ0QZgNNmX99rNzj7M4UdCxcPKfbzACllHowDepR2sk4K XNlyefxUP0QWUBAHd51L1K01V8+9iKEd1oLVmsmakMnqITE3KMK46UUwS5naIHld IimKTKmv5ajdv/G6TPV56nkdkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHIo/I6E YC5Kz++TBSc1stLlc+0pMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAElIwDiWtjfQbytyIC3jLaEoYfGC5kuunsQMqv9bj3hLHo+tqBAm+Q+BHTyFQ 0dI/c7I9PpmRNusL05b4k5cZxLBJprNhR1VmisU59J3yEdO+jE/8jykGqIucb6pO oeTImSArZiO3FIlRy/WFUaZ1AeRbQtNN+uLGsuumbvm5du/iS28aQXvQ+5KTTTcl gp75AhCdnH3zQb6GCTNsrME2ALz/dFtZAxrXHeoSzr95E9hnGBf20xqRO8AkqEWE L9jF352Vh0qHrzzH/E1ZIffO69YeP26Qq07IrQ96WZw1+VLRlj5vXtR+9Dc4oDZm mxNdaJASR5d6qtTrA86uFgjpdg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:01:47 2026 by rpki-client