$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: rbF/O4rB+WoZOMq9rj5Esa9FYkqnH3OeNiWQQ/PAv24= Subject key identifier: 26:0E:6F:C0:30:D7:D3:9D:E9:B8:4E:8F:34:C9:E2:4E:D8:B6:F9:43 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0B05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0AEA Signing time: Tue 24 Mar 2026 19:13:04 +0000 Manifest this update: Tue 24 Mar 2026 19:13:03 +0000 Manifest next update: Tue 31 Mar 2026 19:13:03 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: 1lzY8BuIxSEQPj5aci6KheFA9JL6blD63s9t0RCNGjw=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: 71Hm3TTvUXY6fbA6ubcd977cDED5QXch19XWZX6CKNY=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: AIFJy6tyFcteuwDpDTLrXHVY3zOX+wOFLhJqRTUM3mU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:13:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2821 (0xb05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Mar 24 19:13:03 2026 GMT Not After : Mar 31 19:13:03 2026 GMT Subject: CN=69c2e240-e897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:54:11:02:fc:ee:f1:5d:a2:73:b7:6a:cb:61: 53:9b:10:b0:0d:01:67:a7:4d:b7:f7:a0:ff:c8:f5: 6b:95:b1:31:44:76:52:50:da:b8:e6:38:aa:bc:06: b4:d7:a9:a8:d5:76:bf:38:cc:80:30:85:0e:b8:79: 80:72:26:66:09:1b:ff:29:4b:8a:e7:e1:ea:4f:8e: 8a:0b:c8:d8:92:47:3e:6b:c7:4d:2d:57:bb:26:f3: a1:f0:a7:d6:d3:93:04:c0:51:f8:74:03:2e:66:61: ac:d8:80:db:11:7f:04:b6:d6:e3:f0:f1:37:72:c9: a4:66:21:8c:1a:bd:6e:1e:00:5e:4b:e2:89:15:c2: 2d:69:62:06:a6:3a:c4:d5:c2:25:70:59:7c:96:a3: 69:d8:be:ea:13:dd:9c:09:54:f7:48:27:ae:99:5c: 4e:36:bb:86:e0:19:b4:a9:96:4c:96:aa:24:3c:0a: 8d:30:73:7f:e7:ce:0a:12:83:cb:ff:c8:da:66:38: 86:5c:dd:c9:71:c5:68:f6:d7:8c:ed:3e:0f:78:9d: 1f:97:a6:37:4b:73:fb:29:27:22:ee:de:9d:cf:b8: c3:b6:f7:04:76:be:c3:23:80:0e:1e:89:19:26:82: 14:9c:49:ab:0a:63:af:e2:a2:f9:50:84:f3:d3:de: 43:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0E:6F:C0:30:D7:D3:9D:E9:B8:4E:8F:34:C9:E2:4E:D8:B6:F9:43 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:fc:bc:f3:73:46:c1:a1:e5:4b:11:79:91:00:43:32:8a:01: 93:09:3f:b0:0c:19:de:92:ed:b8:19:a9:d1:f9:49:9f:62:5f: 07:7f:ba:17:3f:7b:4c:86:85:c6:5d:66:d1:80:d9:31:53:97: 2e:1b:9c:40:89:f9:23:d8:58:54:48:0b:5f:39:43:85:4f:0a: ed:66:8e:07:25:45:fc:af:39:2a:2a:d1:69:bc:6c:38:3d:9a: 00:33:10:c7:84:de:95:e2:57:a3:66:f5:b1:3d:ba:bb:8d:9f: af:5f:c5:5b:e8:c1:40:de:22:60:f4:a0:c0:0d:6a:0e:61:d8: 6c:5a:e3:2e:aa:5c:26:2e:31:a6:6f:98:d0:c3:55:f2:99:d6: 09:3f:f7:5b:6f:fc:2d:8f:15:d7:7a:82:50:69:4b:68:d8:a0: 11:b4:17:53:09:eb:83:1b:6d:59:31:b9:80:9c:fc:bc:36:4f: 32:86:72:57:83:35:38:1e:e1:9a:cd:4e:72:37:78:b1:c6:f1: 0d:72:81:7c:b5:6a:22:0e:ff:75:3a:21:d1:4e:da:98:22:36: 9c:b1:de:de:10:8c:95:e8:b1:c4:85:7b:42:83:bf:e9:00:ea: ca:ba:97:c4:b9:2e:b2:4d:b6:d4:24:d7:32:c9:f7:0e:38:82: e2:98:3c:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjYwMzI0MTkxMzAzWhcNMjYwMzMxMTkxMzAzWjAYMRYwFAYD VQQDEw02OWMyZTI0MC1lODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFQRAvzu8V2ic7dqy2FTmxCwDQFnp02396D/yPVrlbExRHZSUNq45jiqvAa0 16mo1Xa/OMyAMIUOuHmAciZmCRv/KUuK5+HqT46KC8jYkkc+a8dNLVe7JvOh8KfW 05MEwFH4dAMuZmGs2IDbEX8Ettbj8PE3csmkZiGMGr1uHgBeS+KJFcItaWIGpjrE 1cIlcFl8lqNp2L7qE92cCVT3SCeumVxONruG4Bm0qZZMlqokPAqNMHN/584KEoPL /8jaZjiGXN3JccVo9teM7T4PeJ0fl6Y3S3P7KSci7t6dz7jDtvcEdr7DI4AOHokZ JoIUnEmrCmOv4qL5UITz095D6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCYOb8Aw 19Od6bhOjzTJ4k7YtvlDMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI/y883NGwaHlSxF5kQBDMooBkwk/sAwZ3pLtuBmp0flJn2JfB3+6Fz97TIaF xl1m0YDZMVOXLhucQIn5I9hYVEgLXzlDhU8K7WaOByVF/K85KirRabxsOD2aADMQ x4TeleJXo2b1sT26u42fr1/FW+jBQN4iYPSgwA1qDmHYbFrjLqpcJi4xpm+Y0MNV 8pnWCT/3W2/8LY8V13qCUGlLaNigEbQXUwnrgxttWTG5gJz8vDZPMoZyV4M1OB7h ms1Ocjd4scbxDXKBfLVqIg7/dToh0U7amCI2nLHe3hCMleixxIV7QoO/6QDqyrqX xLkusk221CTXMsn3DjiC4pg8ig== -----END CERTIFICATE-----Generated at Thu Mar 26 11:52:32 2026 by rpki-client