$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: TI5a+VYxnu036uv4c+Y/FlcuhbcMmO2VHTyNIH3cxU8= Subject key identifier: 96:7A:93:3F:6F:5C:40:11:97:D7:05:82:76:D4:90:03:B2:11:9A:C4 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 026D Signing time: Wed 25 Mar 2026 01:30:12 +0000 Manifest this update: Wed 25 Mar 2026 01:30:11 +0000 Manifest next update: Wed 01 Apr 2026 01:30:11 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: sWPZ/6rmY0Kg3kbEtaPSuUIooMa1enOC0nx8num23lo=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: GVyHO9aPtU+XPsp7j3IVen2mhZWFCWup91n2kBUjWV8=) 3: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: /sj3JZ3p1665YJRvSUXz4i11ey7ZoPynVcwKSHS8SnQ=) 4: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: MpcjQVs1Jc1cjgEQDQ1xjrNe8yr/lbGI3mI0RqgvaQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Mar 25 01:30:11 2026 GMT Not After : Apr 1 01:30:11 2026 GMT Subject: CN=69c33aa4-a860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ae:15:0b:3e:27:3a:ea:91:25:48:f7:3a:30: d5:e6:89:17:9e:3e:9b:dd:3f:02:f0:f3:92:25:2f: 72:bc:55:c4:e1:52:d6:b3:4f:54:9c:90:b7:e9:90: 5a:b7:f5:9c:7b:03:03:02:69:65:42:d1:d5:8a:39: 5e:08:ad:2c:04:2c:7c:5b:57:64:3e:fa:a6:22:1b: 2f:fa:46:9f:98:6c:e1:ad:98:ba:fe:29:02:34:43: 78:04:b2:d3:9e:7f:8f:12:07:d2:f1:c8:82:ce:48: cf:92:f9:ee:f8:1d:eb:fa:3f:c6:28:11:4c:a0:a2: 0b:5a:6f:ec:50:4e:48:24:c2:bf:8f:7a:7c:3a:02: 1d:69:33:bd:84:68:03:9f:18:e0:a0:ba:9f:15:cb: 0f:3d:15:10:5a:95:90:bd:27:c7:25:44:37:ef:f7: 9a:e9:b0:d3:6a:97:28:c2:e1:47:90:3c:7d:41:03: 27:ac:dd:de:02:c3:b7:a7:75:cc:2a:91:74:84:dc: 58:97:ca:fd:89:5b:58:9c:b0:8a:bc:66:4b:f9:ce: 4b:76:5b:50:62:23:e4:e7:d5:92:7e:b5:2b:e4:d8: 97:10:c5:61:1d:41:f1:36:85:2c:f2:f5:42:83:be: bf:e5:57:f0:d3:02:7d:59:7f:b3:15:b4:67:60:69: a8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7A:93:3F:6F:5C:40:11:97:D7:05:82:76:D4:90:03:B2:11:9A:C4 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:db:32:b7:4c:e9:d2:f6:b6:55:26:1d:5c:b8:49:7c:4a:7e: 64:d9:d0:81:03:74:fa:62:90:57:9d:b3:50:26:08:50:95:45: ee:c4:ac:24:e8:ff:00:9a:af:e2:03:44:5d:f7:ed:14:97:fe: fc:31:b6:8a:84:72:7c:89:df:67:4d:18:dc:23:6f:c6:c9:ed: 07:94:c0:3d:2a:25:5f:cf:b6:09:a2:d2:e9:9a:ba:dd:b2:b6: 91:03:18:08:16:07:98:90:f6:af:c4:f9:94:de:12:30:bf:8f: a6:de:1c:e1:f2:dd:f9:27:3b:12:62:39:1d:a9:e4:91:c0:37: f5:7b:03:41:55:ae:af:db:7a:8e:50:b8:2f:73:03:bb:f2:24: 79:19:35:e7:64:2b:5a:9b:a8:68:af:d3:cb:d3:82:11:96:22: e5:e7:6c:2e:5e:4c:56:e9:39:4c:4a:fb:98:45:d1:d5:c4:cb: c7:f3:c1:f2:9b:f3:5d:0e:c6:f6:d0:78:e1:e5:c0:8f:e9:0e: 84:25:26:6b:dc:01:ca:3c:1e:03:d1:9f:d0:cd:21:bb:ed:e5: af:ba:d5:41:d4:e1:29:74:e4:51:c9:ed:a3:12:c1:e9:49:bb: 31:3d:81:8c:83:b8:e4:ec:6a:c6:b8:78:3f:c8:c0:96:fa:9f: 41:0f:71:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjYwMzI1MDEzMDExWhcNMjYwNDAxMDEzMDExWjAYMRYwFAYD VQQDEw02OWMzM2FhNC1hODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8K4VCz4nOuqRJUj3OjDV5okXnj6b3T8C8POSJS9yvFXE4VLWs09UnJC36ZBa t/WcewMDAmllQtHVijleCK0sBCx8W1dkPvqmIhsv+kafmGzhrZi6/ikCNEN4BLLT nn+PEgfS8ciCzkjPkvnu+B3r+j/GKBFMoKILWm/sUE5IJMK/j3p8OgIdaTO9hGgD nxjgoLqfFcsPPRUQWpWQvSfHJUQ37/ea6bDTapcowuFHkDx9QQMnrN3eAsO3p3XM KpF0hNxYl8r9iVtYnLCKvGZL+c5LdltQYiPk59WSfrUr5NiXEMVhHUHxNoUs8vVC g76/5Vfw0wJ9WX+zFbRnYGmoWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJZ6kz9v XEARl9cFgnbUkAOyEZrEMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEActsyt0zp0va2VSYdXLhJfEp+ZNnQgQN0+mKQV52zUCYIUJVF7sSsJOj/AJqv 4gNEXfftFJf+/DG2ioRyfInfZ00Y3CNvxsntB5TAPSolX8+2CaLS6Zq63bK2kQMY CBYHmJD2r8T5lN4SML+Ppt4c4fLd+Sc7EmI5HankkcA39XsDQVWur9t6jlC4L3MD u/IkeRk152QrWpuoaK/Ty9OCEZYi5edsLl5MVuk5TEr7mEXR1cTLx/PB8pvzXQ7G 9tB44eXAj+kOhCUma9wByjweA9Gf0M0hu+3lr7rVQdThKXTkUcntoxLB6Um7MT2B jIO45Oxqxrh4P8jAlvqfQQ9xeA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:54:41 2026 by rpki-client