$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: +OSNMFYuSZs5sp8Y/j/1ffh+T1hR/QXhJeFUidbzyl8= Subject key identifier: E5:E6:91:C1:F6:48:3D:57:35:37:9D:6C:16:86:CB:1B:68:E7:A3:37 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 05C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 05BA Signing time: Tue 24 Mar 2026 22:49:21 +0000 Manifest this update: Tue 24 Mar 2026 22:49:20 +0000 Manifest next update: Tue 31 Mar 2026 22:49:20 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: NR7r2EVnyRZdXqADFKQXOeSEtPZNevadailWO6bqGTs=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: FhhQyHeWyKOZmuPQHPKmrZdEe/8rcAsfsUV6nBHHPzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1476 (0x5c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Mar 24 22:49:20 2026 GMT Not After : Mar 31 22:49:20 2026 GMT Subject: CN=69c314f0-faf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a7:9b:03:7f:d6:2a:3f:d3:4d:0f:96:aa:40: 4a:1c:c3:c5:e3:e0:7d:47:31:cf:9e:18:bc:99:0b: 1d:db:d4:71:4e:2d:4f:37:0c:9c:ec:68:c1:dd:8f: 3f:95:6a:81:05:83:ae:03:18:35:dc:c1:45:35:59: 8d:a4:37:ab:15:8f:5c:a9:59:e8:ca:03:78:91:2a: 4f:3a:e5:7e:6e:bd:a6:63:0a:b5:a3:a8:49:32:0b: a8:c1:db:53:ee:2b:04:1f:9e:58:94:c2:91:cd:8d: 1e:10:5b:96:83:76:f2:68:8a:8d:cb:4e:c6:3b:6f: 36:5b:ef:aa:59:d9:49:90:f8:52:3b:d0:c6:43:9f: b9:b7:84:89:99:81:65:89:37:98:f2:c9:2a:4d:dd: 70:e9:da:e9:ec:49:66:3c:37:7c:ba:be:be:f8:3f: 6c:29:9b:7c:40:30:5e:88:93:5e:df:b9:c5:0e:17: 61:ce:18:79:86:3d:dd:31:83:98:e3:bc:45:48:0c: e9:aa:78:27:08:42:dd:fe:35:bc:b8:38:62:ec:d8: ea:55:e3:bb:25:02:41:2f:9e:2a:f8:7e:1c:04:b9: ab:78:0b:40:84:78:b2:e6:63:81:58:7a:81:a6:9a: 91:2e:1e:ca:c1:06:28:50:4c:30:e7:24:fb:48:4d: 4c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E6:91:C1:F6:48:3D:57:35:37:9D:6C:16:86:CB:1B:68:E7:A3:37 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:84:81:2e:5e:37:bd:41:f5:26:9a:6d:c1:f3:62:73:05:91: 77:9c:b6:47:ce:ac:b2:67:a9:d3:a6:d3:54:08:8e:36:60:f4: eb:55:18:fa:0b:85:cd:a7:7e:ba:ae:51:67:98:a2:13:ef:bc: ec:1d:4b:83:cd:90:69:c0:45:29:bc:fe:4d:96:ff:52:92:82: 11:18:da:72:40:cd:0b:18:2c:0a:30:8c:a4:74:0d:88:8e:78: 2d:74:f9:e6:58:82:37:b8:8e:aa:bb:be:01:2c:20:2a:b7:df: bf:8a:6d:86:e3:4e:8b:14:24:4d:a9:8a:3f:f9:9d:96:98:4c: ca:96:11:f5:65:04:4c:1f:ef:ea:a6:63:0b:86:3c:fe:32:b3: 0b:31:cf:2d:97:dd:cf:15:49:d2:5f:28:48:6f:1a:bb:f8:ae: d5:5f:53:a5:b1:d1:7b:c4:5b:77:db:df:cd:2a:d0:5d:d9:54: d4:45:c9:28:d2:e2:2b:03:d7:f7:3f:5f:44:a8:8f:da:cb:59: e9:a8:e9:72:ea:51:fb:45:ac:20:d8:7c:ed:55:fe:1b:8d:02: 00:2e:72:e5:9a:0c:fd:7a:46:d5:66:c2:60:9d:f7:d9:7a:12: d0:5b:da:81:42:4c:8f:4a:92:f5:02:f0:5c:28:aa:5b:d9:13: 21:1a:93:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjYwMzI0MjI0OTIwWhcNMjYwMzMxMjI0OTIwWjAYMRYwFAYD VQQDEw02OWMzMTRmMC1mYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KebA3/WKj/TTQ+WqkBKHMPF4+B9RzHPnhi8mQsd29RxTi1PNwyc7GjB3Y8/ lWqBBYOuAxg13MFFNVmNpDerFY9cqVnoygN4kSpPOuV+br2mYwq1o6hJMguowdtT 7isEH55YlMKRzY0eEFuWg3byaIqNy07GO282W++qWdlJkPhSO9DGQ5+5t4SJmYFl iTeY8skqTd1w6drp7ElmPDd8ur6++D9sKZt8QDBeiJNe37nFDhdhzhh5hj3dMYOY 47xFSAzpqngnCELd/jW8uDhi7NjqVeO7JQJBL54q+H4cBLmreAtAhHiy5mOBWHqB ppqRLh7KwQYoUEww5yT7SE1MLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOXmkcH2 SD1XNTedbBaGyxto56M3MB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABYSBLl43vUH1JpptwfNicwWRd5y2R86ssmep06bTVAiONmD061UY+guFzad+ uq5RZ5iiE++87B1Lg82QacBFKbz+TZb/UpKCERjackDNCxgsCjCMpHQNiI54LXT5 5liCN7iOqru+ASwgKrffv4pthuNOixQkTamKP/mdlphMypYR9WUETB/v6qZjC4Y8 /jKzCzHPLZfdzxVJ0l8oSG8au/iu1V9TpbHRe8Rbd9vfzSrQXdlU1EXJKNLiKwPX 9z9fRKiP2stZ6ajpcupR+0WsINh87VX+G40CAC5y5ZoM/XpG1WbCYJ332XoS0Fva gUJMj0qS9QLwXCiqW9kTIRqTlg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:08 2026 by rpki-client