$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: TtLo7i1yJhyDUeeLSf9DJj7e6FLVYOi03quj39hXZmQ= Subject key identifier: C9:78:63:18:E1:E4:CE:B1:A7:AF:73:F5:D3:32:5F:24:E6:00:07:01 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 01E5 Signing time: Fri 27 Mar 2026 02:54:25 +0000 Manifest this update: Fri 27 Mar 2026 02:54:25 +0000 Manifest next update: Fri 03 Apr 2026 02:54:25 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: PZJ9ugAwLXa7L5papF5GOeKcPKyemFzZT7UvXWbfvGQ=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: mj1933/3n6toouA33PYerjmiVEAl8MHe43vblZwNmME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Mar 27 02:54:25 2026 GMT Not After : Apr 3 02:54:25 2026 GMT Subject: CN=69c5f161-7134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:54:44:55:8e:7e:5e:cc:e9:92:a9:07:c6: 66:2b:4d:4b:ca:f0:d3:7d:0e:e5:7e:c9:49:1c:cd: 26:14:4c:f8:98:fe:bf:4f:10:c9:d8:5b:6f:a3:33: fb:64:c3:6d:71:68:3c:c0:62:46:66:9e:a3:9a:d1: 40:22:77:e9:09:b7:1a:b1:a7:6a:8c:a9:21:7f:d0: 49:dd:02:ef:a2:48:1f:47:06:b0:42:14:54:e4:e7: b0:c9:66:0b:f4:09:dd:89:d1:37:02:9e:50:96:5e: 12:8c:fd:c1:09:12:4a:79:93:28:67:c5:c6:0b:74: c6:14:6c:d3:94:66:be:1d:92:42:ab:5f:49:77:95: 5d:20:fa:78:cc:b2:c2:b9:86:35:fd:f0:6c:31:51: ae:c8:a4:53:f5:c9:a3:51:bb:a1:a7:ea:85:f3:48: 95:92:a4:15:83:d1:15:3f:82:65:38:9c:20:83:3f: d8:c7:67:92:9f:d8:45:62:02:59:6d:c0:a2:f6:7a: 08:29:c2:c2:f4:33:cc:4c:9c:b8:1d:40:91:f4:d7: 06:82:28:d2:81:62:82:0b:36:53:cc:5b:0d:f3:7f: 1f:c7:e9:d4:fe:8b:89:45:eb:bb:cd:5d:d5:38:f2: 93:da:14:fa:c4:f1:d2:5f:fd:05:e3:fe:6b:2e:c4: 1e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:78:63:18:E1:E4:CE:B1:A7:AF:73:F5:D3:32:5F:24:E6:00:07:01 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:54:8a:a3:fb:ac:50:3e:8f:f7:a3:f4:65:85:9c:35:d9:04: 25:ba:49:1d:82:00:9a:9c:15:fa:2b:83:df:08:b6:f8:0a:c8: 83:9e:a5:7a:11:ac:ad:2f:05:55:fe:28:da:9f:b6:d5:68:4f: 6e:ca:34:81:1a:1e:4c:59:16:3a:9e:16:42:ce:54:37:21:66: c3:4f:de:86:c1:5c:70:3d:8c:f1:38:62:12:58:b6:2d:cd:50: 02:53:06:39:b0:a2:da:e0:ea:bb:40:3c:71:84:62:b8:36:d3: 12:01:86:fd:1a:87:d7:73:7a:d2:38:47:bd:e1:01:a9:63:bd: 85:9d:00:ac:e0:38:80:2a:fe:6e:08:51:b5:89:2a:e0:98:1b: 1d:bb:45:de:a9:db:99:ae:17:e0:9a:fc:21:05:7a:d9:81:61: 3b:ef:ba:5e:6a:bb:ad:28:5b:7b:a0:19:88:c1:28:63:a5:0a: 62:89:8c:2c:fa:23:f2:78:f2:5e:b6:65:e7:3f:52:b5:80:da: ba:84:52:24:c5:b7:81:f7:d2:1d:99:1e:d7:17:2e:9b:79:fc: ea:48:df:04:7c:cf:56:6b:a1:20:11:08:30:08:1b:76:1e:b8: 28:2f:d6:73:ef:d2:54:7a:5f:f9:d6:d0:10:2e:c2:73:f9:98: f7:a8:d0:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjYwMzI3MDI1NDI1WhcNMjYwNDAzMDI1NDI1WjAYMRYwFAYD VQQDEw02OWM1ZjE2MS03MTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFlURFWOfl7M6ZKpB8ZmK01LyvDTfQ7lfslJHM0mFEz4mP6/TxDJ2FtvozP7 ZMNtcWg8wGJGZp6jmtFAInfpCbcasadqjKkhf9BJ3QLvokgfRwawQhRU5OewyWYL 9AndidE3Ap5Qll4SjP3BCRJKeZMoZ8XGC3TGFGzTlGa+HZJCq19Jd5VdIPp4zLLC uYY1/fBsMVGuyKRT9cmjUbuhp+qF80iVkqQVg9EVP4JlOJwggz/Yx2eSn9hFYgJZ bcCi9noIKcLC9DPMTJy4HUCR9NcGgijSgWKCCzZTzFsN838fx+nU/ouJReu7zV3V OPKT2hT6xPHSX/0F4/5rLsQe7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMl4Yxjh 5M6xp69z9dMyXyTmAAcBMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl1SKo/usUD6P96P0ZYWcNdkEJbpJHYIAmpwV+iuD3wi2+ArIg56lehGsrS8F Vf4o2p+21WhPbso0gRoeTFkWOp4WQs5UNyFmw0/ehsFccD2M8ThiEli2Lc1QAlMG ObCi2uDqu0A8cYRiuDbTEgGG/RqH13N60jhHveEBqWO9hZ0ArOA4gCr+bghRtYkq 4JgbHbtF3qnbma4X4Jr8IQV62YFhO++6Xmq7rShbe6AZiMEoY6UKYomMLPoj8njy XrZl5z9StYDauoRSJMW3gffSHZke1xcum3n86kjfBHzPVmuhIBEIMAgbdh64KC/W c+/SVHpf+dbQEC7Cc/mY96jQKA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:34:13 2026 by rpki-client