$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: CbBddnviUcqU5Rkie39EbHR/I1/HL5aktPaYnGhVOho= Subject key identifier: 6F:D3:56:80:3B:E6:A3:2B:5C:6A:C5:DC:E3:EA:53:E2:37:EF:A5:DF Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0225 Signing time: Fri 27 Mar 2026 02:16:08 +0000 Manifest this update: Fri 27 Mar 2026 02:16:08 +0000 Manifest next update: Fri 03 Apr 2026 02:16:08 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: rg7yJmSDDZdIkx9rUzi/u5xfqo+H6LOCFnVAnAn+RGI=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 3weaQ4o+eQXlXxL8Agh4qybWMOK+rrtdU5IbG/vM6oo=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: X373raxuE2iLwtaK4YO98Y1yBAk9TK8MxVlU8+CTPKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Mar 27 02:16:08 2026 GMT Not After : Apr 3 02:16:08 2026 GMT Subject: CN=69c5e868-4973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:83:d4:1e:c7:b6:0f:30:8b:7b:00:92:39:b2: 85:6e:45:71:ba:0b:d0:41:59:02:46:23:3a:a7:11: 4b:f7:4d:a7:97:f2:1d:a0:1f:fd:99:a5:c3:33:9d: 86:3c:df:63:32:5b:e2:77:55:b5:d4:89:2f:ec:6c: 70:1d:ae:17:0d:8f:2a:73:3f:ee:3b:c3:d7:fd:a1: 20:18:73:7b:2a:f6:6e:fd:61:35:6e:8a:75:03:fe: 69:4f:4c:3e:44:d5:bb:1c:f8:e8:0a:88:0a:68:16: 3c:96:2d:d6:7f:f8:60:7d:78:48:ec:f2:2e:22:c3: bc:28:16:db:68:ba:42:69:cc:10:d8:4b:1b:da:d7: 8c:eb:17:5a:4d:e8:4c:5e:64:e3:21:fd:8e:23:b2: 4b:43:c5:43:61:f9:5e:de:7f:9a:39:9b:90:01:af: 73:2a:85:42:60:ea:c8:23:d1:ea:b7:dc:65:15:04: b5:da:0a:06:ec:e7:c4:a1:40:88:ab:14:7c:4f:2e: e7:bd:1b:d3:a9:5b:60:7e:2e:28:c9:29:f9:66:07: d9:89:23:b2:1b:e1:ef:bb:eb:14:62:04:90:b0:d7: db:c2:18:93:c0:98:ba:63:af:12:db:7a:80:43:37: f6:fb:9b:da:ec:73:95:4d:08:2b:13:48:6c:1f:1e: b4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D3:56:80:3B:E6:A3:2B:5C:6A:C5:DC:E3:EA:53:E2:37:EF:A5:DF X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:db:7a:c6:11:00:42:f5:e1:8a:9f:fb:5a:4b:de:64:2b:e9: ed:72:0f:c3:57:a2:a8:f1:21:3e:2f:97:db:26:f9:75:2f:c1: d6:21:88:b7:9c:42:eb:2b:51:de:e6:d3:d7:9f:de:63:2f:4c: 23:15:37:7b:73:88:12:ef:d1:0e:da:5d:b7:ce:73:3d:f0:d6: 65:fb:19:57:86:08:19:7b:68:76:16:e6:93:6e:5b:e8:7f:65: 32:79:98:7a:93:0e:94:ea:84:4b:8f:7a:b5:11:51:d2:c8:b3: 14:a5:4d:6c:dd:86:d4:a6:5a:5a:11:12:b5:75:d5:eb:de:b0: d4:a8:9d:6a:30:b6:fb:82:c7:cb:86:dc:c2:55:f7:ff:2d:46: 51:b1:b9:6f:6f:a4:c8:cd:06:ba:d8:ff:fe:13:1f:31:01:e9: f4:0c:40:52:ef:4a:d9:75:fb:d2:5a:e3:47:49:f7:db:7a:b2: a5:27:2f:4a:a0:98:de:ac:4e:7c:71:d3:f8:40:94:56:64:fa: 36:2d:de:54:81:bd:14:19:78:0f:be:c2:a6:45:ab:f9:14:ea: c9:72:f0:88:31:e3:09:a0:00:02:dc:f3:e7:23:eb:7e:75:4e: fa:19:db:70:97:e9:b9:3b:dd:fd:5f:ab:e2:56:d3:6b:89:ed: 06:a2:50:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjYwMzI3MDIxNjA4WhcNMjYwNDAzMDIxNjA4WjAYMRYwFAYD VQQDEw02OWM1ZTg2OC00OTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IPUHse2DzCLewCSObKFbkVxugvQQVkCRiM6pxFL902nl/IdoB/9maXDM52G PN9jMlvid1W11Ikv7GxwHa4XDY8qcz/uO8PX/aEgGHN7KvZu/WE1bop1A/5pT0w+ RNW7HPjoCogKaBY8li3Wf/hgfXhI7PIuIsO8KBbbaLpCacwQ2Esb2teM6xdaTehM XmTjIf2OI7JLQ8VDYfle3n+aOZuQAa9zKoVCYOrII9Hqt9xlFQS12goG7OfEoUCI qxR8Ty7nvRvTqVtgfi4oySn5ZgfZiSOyG+Hvu+sUYgSQsNfbwhiTwJi6Y68S23qA Qzf2+5va7HOVTQgrE0hsHx60KQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG/TVoA7 5qMrXGrF3OPqU+I376XfMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjdt6xhEAQvXhip/7WkveZCvp7XIPw1eiqPEhPi+X2yb5dS/B1iGIt5xC6ytR 3ubT15/eYy9MIxU3e3OIEu/RDtpdt85zPfDWZfsZV4YIGXtodhbmk25b6H9lMnmY epMOlOqES496tRFR0sizFKVNbN2G1KZaWhEStXXV696w1KidajC2+4LHy4bcwlX3 /y1GUbG5b2+kyM0Gutj//hMfMQHp9AxAUu9K2XX70lrjR0n323qypScvSqCY3qxO fHHT+ECUVmT6Ni3eVIG9FBl4D77CpkWr+RTqyXLwiDHjCaAAAtzz5yPrfnVO+hnb cJfpuTvd/V+r4lbTa4ntBqJQzw== -----END CERTIFICATE-----Generated at Sat Mar 28 15:56:05 2026 by rpki-client