$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft File: giq84EQXvhV7KDO6OwIw3iOEwkA.mft (raw, json) Hash identifier: tDrLkOaq5rUsseiNBkHVlN+QPnr67Jkf9eLMUYXsnos= Subject key identifier: 68:AB:81:DC:AB:67:CD:45:74:76:2F:70:57:F0:F8:95:4F:B8:33:55 Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0C00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft Manifest number: 0BF7 Signing time: Tue 24 Mar 2026 18:40:19 +0000 Manifest this update: Tue 24 Mar 2026 18:40:19 +0000 Manifest next update: Tue 31 Mar 2026 18:40:19 +0000 Files and hashes: 1: giq84EQXvhV7KDO6OwIw3iOEwkA.crl (hash: cXnQdXgJFSkke7ox5ls6PjvMc00OCDOZ1bCMbre2EQE=) 2: BFB35A9831E011EA91E99C3CC4F9AE02.roa (hash: TI2KVdmBR8c+EKodG88ZYvgfW8TmL2x0GR8/djTO5Zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3072 (0xc00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Mar 24 18:40:19 2026 GMT Not After : Mar 31 18:40:19 2026 GMT Subject: CN=69c2da93-5cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b5:7a:4c:ed:0e:23:e1:aa:c8:8b:ca:bb:b6: 8d:a8:5d:f8:14:84:71:9a:27:e2:ab:8c:fa:b4:3a: 27:e5:48:cd:5f:9a:7f:85:d5:17:8c:10:d1:96:83: b0:07:c6:a5:47:66:62:77:52:85:d0:35:3a:7f:a2: 43:f9:f6:a8:de:b1:e9:fe:06:47:85:2e:48:52:22: 25:d8:e6:b6:8a:83:28:23:56:60:72:4e:35:3d:60: 91:c7:ad:ae:ca:a8:7e:e8:65:44:1a:42:52:d8:2e: d6:40:32:96:06:fa:13:d0:a1:c6:18:ed:69:14:3c: 8d:ab:c1:34:7e:4d:96:33:02:39:55:df:21:af:4d: 01:e5:97:b3:39:f9:c9:7b:2d:07:0b:fa:c9:2a:bf: 33:c2:10:ff:89:ee:33:dd:19:09:57:d6:cb:6c:54: c4:c6:eb:d0:aa:80:c9:06:69:f5:e1:a3:a8:38:5c: 9c:2d:a0:59:a6:10:e0:4b:c4:37:6b:77:44:40:57: 35:e9:30:02:d1:16:7d:da:44:e2:2e:58:73:b2:1a: 9b:83:60:b7:cf:d0:0f:5a:8c:7e:87:33:2c:ed:ed: 2f:2f:51:c9:7f:b0:9d:39:77:e5:7f:2b:1a:29:fc: ae:ef:ae:81:07:f4:04:88:5c:58:87:e4:aa:6a:ae: 82:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AB:81:DC:AB:67:CD:45:74:76:2F:70:57:F0:F8:95:4F:B8:33:55 X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:c3:7c:74:c1:3b:26:c0:bc:d6:87:c6:c0:29:31:01:4a:95: db:35:3c:34:31:ec:18:b9:77:1f:53:68:48:e1:eb:3e:3a:c2: 42:e3:0d:75:1d:7c:28:b4:da:64:c4:04:ac:4d:28:64:ea:8f: b1:c3:d2:13:d8:98:6b:d9:f8:a6:b1:70:fe:0e:b5:41:53:bd: 10:80:43:c8:a2:24:ae:f1:fd:c8:14:3b:35:7b:64:0b:f8:f1: 56:a6:c2:d7:34:6d:c5:37:1f:87:bb:ce:da:91:ae:55:e0:0f: 56:db:15:ec:fc:a8:0a:d3:a6:52:ad:8f:df:42:be:e1:7c:e6: 20:85:c5:ac:2f:f9:c2:14:28:78:b9:b2:7b:e3:4e:5d:d9:60: 3d:03:85:37:fe:67:bd:41:06:ae:c3:33:26:09:a5:f1:bf:12: d2:c8:01:58:c9:59:f2:a9:44:80:c0:ae:67:b8:5c:ea:d3:af: 92:6a:da:2f:cb:39:0d:55:ea:3e:8b:33:06:e9:f5:2c:ff:46: e4:62:27:9b:6d:57:7f:eb:b2:9b:14:d9:49:06:a7:91:24:59: 96:11:62:0c:fc:4a:0d:cf:e6:d0:0a:29:29:15:2c:c7:45:3b: fc:6a:62:31:b9:09:50:cb:fb:e8:43:91:08:5d:f6:2a:43:52: 58:3e:2f:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjYwMzI0MTg0MDE5WhcNMjYwMzMxMTg0MDE5WjAYMRYwFAYD VQQDEw02OWMyZGE5My01Y2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7V6TO0OI+GqyIvKu7aNqF34FIRxmifiq4z6tDon5UjNX5p/hdUXjBDRloOw B8alR2Zid1KF0DU6f6JD+fao3rHp/gZHhS5IUiIl2Oa2ioMoI1Zgck41PWCRx62u yqh+6GVEGkJS2C7WQDKWBvoT0KHGGO1pFDyNq8E0fk2WMwI5Vd8hr00B5ZezOfnJ ey0HC/rJKr8zwhD/ie4z3RkJV9bLbFTExuvQqoDJBmn14aOoOFycLaBZphDgS8Q3 a3dEQFc16TAC0RZ92kTiLlhzshqbg2C3z9APWox+hzMs7e0vL1HJf7CdOXflfysa Kfyu766BB/QEiFxYh+Sqaq6CswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGirgdyr Z81FdHYvcFfw+JVPuDNVMB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkNDMS8xNDk4RkM5RTMxRTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZo VjdLRE82T3dJdzNpT0V3a0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlcN8dME7JsC81ofGwCkxAUqV2zU8NDHsGLl3H1NoSOHrPjrCQuMNdR18KLTa ZMQErE0oZOqPscPSE9iYa9n4prFw/g61QVO9EIBDyKIkrvH9yBQ7NXtkC/jxVqbC 1zRtxTcfh7vO2pGuVeAPVtsV7PyoCtOmUq2P30K+4XzmIIXFrC/5whQoeLmye+NO XdlgPQOFN/5nvUEGrsMzJgml8b8S0sgBWMlZ8qlEgMCuZ7hc6tOvkmraL8s5DVXq PoszBun1LP9G5GInm21Xf+uymxTZSQankSRZlhFiDPxKDc/m0AopKRUsx0U7/Gpi MbkJUMv76EORCF32KkNSWD4vew== -----END CERTIFICATE-----Generated at Thu Mar 26 02:51:25 2026 by rpki-client