$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: /oZMR+SCiZXvXcftoMIv3HviZ17qUvWadvCHTRH0ULg= Subject key identifier: 59:1A:87:12:F5:E8:B8:81:1D:86:16:C5:D0:9E:E1:B0:83:78:12:AB Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0844 Signing time: Tue 24 Mar 2026 20:35:18 +0000 Manifest this update: Tue 24 Mar 2026 20:35:17 +0000 Manifest next update: Tue 31 Mar 2026 20:35:17 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: NVt8qWF7/e8JpLvd70HkImwSunXPGcIc1BxGKEw4U/0=) 2: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: Y5IJD6VTuhWClnFmdFpK0wVHP2zwBIg8pv8xQi71sq8=) 3: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: D4F7K7fRZi5PjyaGIyrg24WiDsmuKP9iZtha8FbAcn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Mar 24 20:35:17 2026 GMT Not After : Mar 31 20:35:17 2026 GMT Subject: CN=69c2f586-ac5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c4:f1:ba:e6:91:36:4c:7c:02:69:74:64:b6: 6d:00:85:16:af:e9:d8:d1:cd:b9:b9:5d:72:ae:29: 3e:aa:e3:da:9c:bc:8b:0b:6e:3f:31:6c:e9:e1:94: 9f:9c:51:52:ba:1d:5a:d2:4e:a2:50:11:cb:45:a8: d3:51:26:8f:39:ab:04:88:d6:8c:92:2b:4e:91:8f: 68:74:f0:1e:08:51:97:07:0b:f0:6a:b2:3a:5a:b2: ec:51:c8:bf:f7:b6:43:8f:1b:03:4f:67:08:a1:3a: d6:4b:c0:49:ac:40:02:a8:24:c1:43:b2:dc:b2:f4: dc:69:f1:68:21:33:00:76:43:ca:34:5f:5c:ae:0b: f5:74:49:c1:c4:18:90:bd:74:bc:43:fa:9b:15:b9: 53:81:ea:42:2b:00:69:89:5c:3c:8d:44:c4:a1:55: b1:bd:c4:cd:43:9d:0c:8e:ec:04:40:98:4c:51:6b: c9:8f:58:d6:b7:df:e9:2f:a5:65:ec:0f:b8:e3:bd: 29:0d:a0:2b:4b:b9:8e:53:4a:26:a7:92:3a:fb:b5: 02:c4:e9:e6:02:fe:80:4b:f9:9e:6f:b2:79:94:6a: 7a:ca:ef:ae:cb:48:fa:32:78:c5:5c:48:13:c9:40: fa:a4:77:7c:73:fe:77:d2:d1:ae:c2:69:9e:d5:03: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1A:87:12:F5:E8:B8:81:1D:86:16:C5:D0:9E:E1:B0:83:78:12:AB X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:bc:73:0c:f6:22:07:f4:62:1b:3c:34:63:42:18:56:85:61: 59:0a:36:58:78:1a:62:84:e2:f9:55:b7:5e:66:24:18:f3:e1: 2e:cd:95:4d:94:8b:a0:1a:5d:b3:e0:61:83:fd:5d:e2:66:ca: 72:ef:47:38:f5:26:21:ff:e4:93:a4:08:bd:0e:29:8b:e8:1c: 6f:d2:ac:91:93:bd:cd:92:27:f9:30:b0:f4:11:28:d2:18:19: 40:6f:f3:f3:87:c6:df:8c:8e:35:f8:50:a1:a7:40:a5:29:99: 41:7c:fa:b8:92:6f:1d:31:14:de:5f:6b:1f:78:e7:b8:b4:38: 77:2d:f3:e6:0f:92:cf:ad:e0:b8:6e:61:02:a9:e4:c5:a0:30: 1c:c5:dd:12:20:0d:0a:bb:7a:30:96:ab:2b:2a:1b:e2:25:34: 45:17:a3:d5:39:ae:46:8e:b2:e4:a4:71:09:40:23:9d:b0:0d: 86:d7:2e:b4:71:2f:5c:7e:70:d9:a5:6d:8a:38:71:13:64:bd: cc:5f:96:94:c4:8b:c6:a3:be:09:78:0a:fa:1a:c5:0c:5c:cb: d5:bf:2d:cd:03:fe:d4:c9:ab:2f:62:94:d9:fb:95:5f:e2:4e: 55:5a:8f:77:89:3b:91:e8:0d:25:ac:1d:99:73:eb:d3:ac:25: db:0f:0e:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjYwMzI0MjAzNTE3WhcNMjYwMzMxMjAzNTE3WjAYMRYwFAYD VQQDEw02OWMyZjU4Ni1hYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MTxuuaRNkx8Aml0ZLZtAIUWr+nY0c25uV1yrik+quPanLyLC24/MWzp4ZSf nFFSuh1a0k6iUBHLRajTUSaPOasEiNaMkitOkY9odPAeCFGXBwvwarI6WrLsUci/ 97ZDjxsDT2cIoTrWS8BJrEACqCTBQ7LcsvTcafFoITMAdkPKNF9crgv1dEnBxBiQ vXS8Q/qbFblTgepCKwBpiVw8jUTEoVWxvcTNQ50MjuwEQJhMUWvJj1jWt9/pL6Vl 7A+4470pDaArS7mOU0omp5I6+7UCxOnmAv6AS/meb7J5lGp6yu+uy0j6MnjFXEgT yUD6pHd8c/530tGuwmme1QMccwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkahxL1 6LiBHYYWxdCe4bCDeBKrMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOLxzDPYiB/RiGzw0Y0IYVoVhWQo2WHgaYoTi+VW3XmYkGPPhLs2VTZSLoBpd s+Bhg/1d4mbKcu9HOPUmIf/kk6QIvQ4pi+gcb9KskZO9zZIn+TCw9BEo0hgZQG/z 84fG34yONfhQoadApSmZQXz6uJJvHTEU3l9rH3jnuLQ4dy3z5g+Sz63guG5hAqnk xaAwHMXdEiANCrt6MJarKyob4iU0RRej1TmuRo6y5KRxCUAjnbANhtcutHEvXH5w 2aVtijhxE2S9zF+WlMSLxqO+CXgK+hrFDFzL1b8tzQP+1MmrL2KU2fuVX+JOVVqP d4k7kegNJawdmXPr06wl2w8OOA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:13:25 2026 by rpki-client