$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: f4e1dBi3fvbglRAcIAoW53+mjE2AjhFoW4GUrLjEhjE= Subject key identifier: E4:16:E5:0B:32:B6:69:1A:21:61:BD:5A:9D:51:7B:22:8B:65:E3:3B Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 023A Signing time: Wed 25 Mar 2026 01:59:43 +0000 Manifest this update: Wed 25 Mar 2026 01:59:43 +0000 Manifest next update: Wed 01 Apr 2026 01:59:43 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: qWPblCyTrfnti6Pboj9GXGm9zmwcXuhqy7kcRc4KS3E=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: DI/eG9DXOFb9EKRR2bPnL0OAziLMqCbunU7psCFOUsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Mar 25 01:59:43 2026 GMT Not After : Apr 1 01:59:43 2026 GMT Subject: CN=69c3418f-6a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8e:c4:cc:ab:a4:13:a1:dc:25:1c:fc:46:67: dc:75:86:7d:ad:2c:40:ca:ec:24:19:43:1b:b3:c8: cb:b9:2e:1e:af:94:66:92:86:62:d1:33:66:e2:cf: fe:67:d1:fb:96:85:9b:87:8b:4d:ff:d9:74:89:99: ef:77:e0:53:db:a7:bc:3f:b3:35:9f:14:3a:ad:37: 2f:c6:6f:4e:df:8b:b3:46:a6:0a:27:b5:bc:72:80: 04:45:37:d8:d4:6c:4b:75:7a:b9:22:9b:b1:12:31: 05:4c:d7:b3:d7:73:d9:1d:d5:5f:3c:82:de:06:e3: 89:60:29:04:2c:d7:2c:e5:de:df:37:b9:f1:02:23: e6:b8:f8:de:c2:26:3a:c4:aa:5c:3f:0d:ea:b9:a5: e5:f6:e0:61:04:98:78:e8:14:a8:1c:c6:cc:76:86: 36:54:73:f0:39:d8:db:d5:43:b5:51:b3:2d:ae:42: f8:d3:ea:94:08:42:df:3d:71:19:d6:7e:81:51:ea: dd:8f:58:11:bf:d8:d8:97:05:16:ed:69:b5:c7:54: 52:8d:4f:be:d4:fa:96:70:2c:8f:e8:e3:67:bc:40: e5:84:bc:e9:b0:0e:cc:05:71:3d:cb:c9:44:91:13: 59:fa:dd:0b:00:0c:8e:de:41:26:b4:11:d3:20:69: fb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:16:E5:0B:32:B6:69:1A:21:61:BD:5A:9D:51:7B:22:8B:65:E3:3B X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ce:8c:47:9b:b7:19:7e:a9:9c:c0:93:53:2b:d4:ec:e4:05: 0c:ad:fa:06:6d:bc:fe:a2:4a:68:ea:b5:f8:cf:e5:81:1b:d1: 62:44:00:31:fb:61:39:6a:34:a1:43:4f:1c:df:96:ae:aa:b1: 17:20:d4:55:2d:c0:85:bc:2e:99:68:35:06:3c:4c:11:a4:3f: 6e:d7:c2:f4:91:02:2e:48:ee:3c:c5:3d:ea:0c:f7:fb:5e:7a: 72:98:98:aa:6d:5b:29:9a:cf:71:59:10:b9:a5:12:a2:dd:5a: 82:6f:4b:e0:07:e6:59:41:1f:76:de:e1:8c:fe:e7:54:1d:27: e7:12:ea:3d:8d:5a:1d:86:e1:c9:a6:b8:4d:a2:57:d0:bd:9f: d7:c9:a1:06:a3:99:69:ad:4b:f8:29:72:f1:21:c6:74:78:59: a7:aa:50:5d:30:9c:32:25:50:87:6e:f8:7e:61:f6:17:8d:5a: ba:69:41:a6:03:d6:3c:e3:10:ec:da:32:f6:29:39:13:ac:d6: 4f:91:b3:31:28:e4:4b:0a:46:8e:ef:d0:bd:91:d3:fd:c0:a9: 3e:e5:8d:4c:20:c0:57:1d:f9:9d:69:6e:5a:5c:89:fc:76:7d: c6:c6:31:64:1e:ba:01:75:b3:54:38:ef:ab:08:41:95:69:c3: 45:a3:74:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjYwMzI1MDE1OTQzWhcNMjYwNDAxMDE1OTQzWjAYMRYwFAYD VQQDEw02OWMzNDE4Zi02YTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzI7EzKukE6HcJRz8RmfcdYZ9rSxAyuwkGUMbs8jLuS4er5RmkoZi0TNm4s/+ Z9H7loWbh4tN/9l0iZnvd+BT26e8P7M1nxQ6rTcvxm9O34uzRqYKJ7W8coAERTfY 1GxLdXq5IpuxEjEFTNez13PZHdVfPILeBuOJYCkELNcs5d7fN7nxAiPmuPjewiY6 xKpcPw3quaXl9uBhBJh46BSoHMbMdoY2VHPwOdjb1UO1UbMtrkL40+qUCELfPXEZ 1n6BUerdj1gRv9jYlwUW7Wm1x1RSjU++1PqWcCyP6ONnvEDlhLzpsA7MBXE9y8lE kRNZ+t0LAAyO3kEmtBHTIGn7JQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOQW5Qsy tmkaIWG9Wp1ReyKLZeM7MB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhM6MR5u3GX6pnMCTUyvU7OQFDK36Bm28/qJKaOq1+M/lgRvRYkQAMfthOWo0 oUNPHN+WrqqxFyDUVS3AhbwumWg1BjxMEaQ/btfC9JECLkjuPMU96gz3+156cpiY qm1bKZrPcVkQuaUSot1agm9L4AfmWUEfdt7hjP7nVB0n5xLqPY1aHYbhyaa4TaJX 0L2f18mhBqOZaa1L+Cly8SHGdHhZp6pQXTCcMiVQh274fmH2F41aumlBpgPWPOMQ 7Noy9ik5E6zWT5GzMSjkSwpGju/QvZHT/cCpPuWNTCDAVx35nWluWlyJ/HZ9xsYx ZB66AXWzVDjvqwhBlWnDRaN0JA== -----END CERTIFICATE-----Generated at Thu Mar 26 21:00:00 2026 by rpki-client