$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft File: 23zlI-hAt3_J4Zb1jxSXas5BVL4.mft (raw, json) Hash identifier: kMY7773O9BmfS7VrPTp/Itl5TQMw0FWBheT+zk9wq0o= Subject key identifier: 19:A8:8B:0F:6F:F7:80:7E:B4:F1:42:6D:2C:C3:61:EB:32:EE:DB:6F Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 071A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft Manifest number: 06F7 Signing time: Tue 24 Mar 2026 21:51:27 +0000 Manifest this update: Tue 24 Mar 2026 21:51:26 +0000 Manifest next update: Tue 31 Mar 2026 21:51:26 +0000 Files and hashes: 1: 23zlI-hAt3_J4Zb1jxSXas5BVL4.crl (hash: 2fIeHnrcg/ywBtxQB1gsPelmWSVQNxO4HGf+xqc01ik=) 2: 1E9D1268B3E011ED98356A75C4F9AE02.roa (hash: 5lB4KJ1dE9BAQX/uKgJe1+lnx+W9PJrFHNnppiXGz5M=) 3: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (hash: Yp5vZ4wNCCpx+gdrt1JNNzRzB8+x9ZIjyyfZWtoHuOw=) 4: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (hash: y3IxwzZcVIyvXDTK0dR4pibIdUtU+ExL4IB+J5qtwjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C, serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Mar 24 21:51:26 2026 GMT Not After : Mar 31 21:51:26 2026 GMT Subject: CN=69c3075f-56ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1c:61:ab:2e:5d:19:72:66:e3:b7:8d:ae:73: 40:5e:d9:c5:00:4c:23:2d:12:cd:0b:df:1c:6e:a8: 18:6c:17:20:29:af:67:90:10:b3:16:53:94:b3:09: 67:fd:06:ba:36:51:54:72:89:5d:d3:6d:a1:78:9b: bc:30:9b:a4:60:d3:b6:55:c2:94:19:01:ae:f8:e5: 78:2c:da:1e:95:57:be:5f:ba:9d:fd:d4:17:91:af: 75:d8:38:50:f8:03:14:bb:10:4e:97:5c:7b:d6:b6: 18:55:98:2d:fe:06:e6:35:07:45:be:d5:96:0b:7d: 7f:97:b2:f4:9c:3e:64:ef:1c:5c:e8:c9:ee:2d:53: f0:55:be:92:bd:33:56:5a:50:a1:df:4b:7c:da:c7: 70:25:e5:d2:da:be:85:41:47:db:27:e1:29:57:a6: b7:e3:5e:bf:c4:65:89:76:b0:0a:1c:79:5f:91:84: 25:ee:87:1f:48:e0:6f:75:a9:50:09:06:41:62:7f: 03:2b:3b:85:55:aa:05:28:47:58:d1:51:e2:6d:36: f2:d1:4c:bc:22:de:d0:fb:0f:a9:b8:f8:a5:ae:8e: 8e:4c:d0:16:aa:b3:81:d6:e6:78:d6:7e:47:98:ad: 78:d9:49:21:8f:68:66:af:6f:a4:8e:38:04:70:df: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A8:8B:0F:6F:F7:80:7E:B4:F1:42:6D:2C:C3:61:EB:32:EE:DB:6F X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:16:8e:fd:e4:09:4b:45:04:65:74:9a:1d:f5:66:58:34:7f: bf:17:22:4c:1a:3e:9a:91:46:d0:df:b0:ff:fb:29:b1:a4:36: 61:44:1b:a1:2b:55:dc:b6:63:c3:35:39:42:56:11:2d:a7:e3: 2d:b8:e1:8d:2f:8a:57:85:3e:ef:68:0d:ff:f8:6f:80:3d:2b: aa:61:e0:ac:91:4d:68:99:5f:22:78:21:0f:26:74:fd:13:14: 42:34:a1:24:e7:e5:76:ad:ef:6e:e7:4f:44:5d:cb:d1:d4:a2: 84:b9:33:5b:32:3e:7b:ae:47:68:da:f7:be:73:cd:77:e7:5d: a1:38:ae:91:d6:5a:6c:d4:39:5c:d5:70:50:5a:59:3a:fd:6a: fa:44:1b:a7:5a:f4:ef:77:9c:0e:ce:50:a9:16:4c:bb:64:fd: 2f:bb:61:59:c9:3a:62:15:21:e2:52:5a:be:96:2d:5a:66:3c: 7a:ac:45:21:5d:39:cd:f0:b1:8e:50:9a:01:16:86:33:c6:36: 5f:27:d7:29:1d:5c:9a:9a:dd:9b:cb:4c:76:db:17:09:c4:77: 8d:9c:d1:e5:1e:92:31:8b:45:f1:0b:c8:52:e7:b3:0f:68:aa: 98:6e:e2:3f:4b:30:71:a9:a1:08:d2:b5:95:de:a7:b2:31:d4: db:3d:9e:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjYwMzI0MjE1MTI2WhcNMjYwMzMxMjE1MTI2WjAYMRYwFAYD VQQDEw02OWMzMDc1Zi01NmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxxhqy5dGXJm47eNrnNAXtnFAEwjLRLNC98cbqgYbBcgKa9nkBCzFlOUswln /Qa6NlFUcold022heJu8MJukYNO2VcKUGQGu+OV4LNoelVe+X7qd/dQXka912DhQ +AMUuxBOl1x71rYYVZgt/gbmNQdFvtWWC31/l7L0nD5k7xxc6MnuLVPwVb6SvTNW WlCh30t82sdwJeXS2r6FQUfbJ+EpV6a3416/xGWJdrAKHHlfkYQl7ocfSOBvdalQ CQZBYn8DKzuFVaoFKEdY0VHibTby0Uy8It7Q+w+puPilro6OTNAWqrOB1uZ41n5H mK142Ukhj2hmr2+kjjgEcN89TwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBmoiw9v 94B+tPFCbSzDYesy7ttvMB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTQyQy8xQjYzNDY2RThDQTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQz X0o0WmIxanhTWGFzNUJWTDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdBaO/eQJS0UEZXSaHfVmWDR/vxciTBo+mpFG0N+w//spsaQ2YUQboStV3LZj wzU5QlYRLafjLbjhjS+KV4U+72gN//hvgD0rqmHgrJFNaJlfInghDyZ0/RMUQjSh JOfldq3vbudPRF3L0dSihLkzWzI+e65HaNr3vnPNd+ddoTiukdZabNQ5XNVwUFpZ Ov1q+kQbp1r073ecDs5QqRZMu2T9L7thWck6YhUh4lJavpYtWmY8eqxFIV05zfCx jlCaARaGM8Y2XyfXKR1cmprdm8tMdtsXCcR3jZzR5R6SMYtF8QvIUuezD2iqmG7i P0swcamhCNK1ld6nsjHU2z2eiw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:56:13 2026 by rpki-client