$ rpki-client -vvf rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft File: eERZpLZsg1_PXW5aVoctkkfUZYo.mft (raw, json) Hash identifier: 2+m+HaXBZMJsQpMuwGY+K4IhtfnIQAFJuiWH4yv2U4c= Subject key identifier: 71:66:E9:B1:FB:94:63:9D:50:95:5C:79:53:C4:A2:3B:CD:CB:C2:5F Authority key identifier: 78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A Certificate issuer: /CN=A9145258/serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft Manifest number: DE Signing time: Wed 25 Mar 2026 05:51:40 +0000 Manifest this update: Wed 25 Mar 2026 05:51:39 +0000 Manifest next update: Wed 01 Apr 2026 05:51:39 +0000 Files and hashes: 1: eERZpLZsg1_PXW5aVoctkkfUZYo.crl (hash: yX4xDc3SXY8XYvQDH5VBZpgYaLs4+lXigfoNrexkGWQ=) 2: 2C7AE786042711F0BCEB4A75C4F9AE02.roa (hash: yY5W8QHlOVcNFdNHN5tf5xhCqQSWa5PPR1EloS7CLPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145258, serialNumber=784459A4B66C835FCF5D6E5A56872D9247D4658A Validity Not Before: Mar 25 05:51:39 2026 GMT Not After : Apr 1 05:51:39 2026 GMT Subject: CN=69c377eb-4c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d9:48:cf:f7:f0:63:7a:9b:f2:b6:b0:3e:63: 1c:20:36:c1:ca:fa:cd:8c:a5:5e:5f:74:78:81:f9: 2d:8e:e4:15:ba:6b:3e:97:50:fa:82:4d:ef:6a:ed: 37:3b:6a:01:e1:67:84:c0:45:b6:9c:ac:3e:59:d1: 97:90:47:2c:a2:e7:92:86:26:c1:af:70:bd:65:4c: 39:23:e6:f8:d4:4f:3d:55:bb:5c:a7:f1:4f:ce:96: 32:2f:6d:bc:6a:09:c9:7b:cf:ed:57:2b:8e:ac:4d: 5f:5b:74:4c:40:61:1c:77:34:b8:24:c0:eb:d7:63: 5c:46:d0:10:79:07:d3:a2:07:44:e7:88:5c:08:21: 25:7b:77:bc:f5:cd:01:f1:14:f5:d6:44:c4:42:35: 25:ae:80:47:de:eb:7d:3a:90:81:d5:97:10:69:21: 29:21:e1:83:65:e6:b0:f3:e3:d5:2d:2d:05:16:b3: 24:33:8e:bc:68:85:3a:b9:c7:55:9c:80:5d:f3:78: 37:64:59:f1:2a:a6:8b:a8:b5:6c:1a:97:c2:23:21: f2:9e:c4:9e:a3:f0:a7:e8:28:52:56:79:2f:96:58: 88:5b:ed:d4:88:d9:60:b3:d0:1d:6f:80:51:b8:5e: f1:d1:06:b8:bf:33:db:2a:19:69:43:ef:8c:ff:5b: 85:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:66:E9:B1:FB:94:63:9D:50:95:5C:79:53:C4:A2:3B:CD:CB:C2:5F X509v3 Authority Key Identifier: keyid:78:44:59:A4:B6:6C:83:5F:CF:5D:6E:5A:56:87:2D:92:47:D4:65:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eERZpLZsg1_PXW5aVoctkkfUZYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145258/AC09C6EEE30611EFA807B053C4F9AE02/eERZpLZsg1_PXW5aVoctkkfUZYo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:cd:63:27:c9:87:8a:7d:7f:62:62:ac:d0:32:58:c5:6d:04: 49:ae:73:c2:d0:3a:a4:f3:7e:a7:24:85:2d:f3:40:da:40:df: 77:19:e3:31:6a:f0:c5:ea:d2:ac:15:f3:82:e2:ff:a7:7e:e5: 39:8c:bc:71:58:51:48:30:15:3b:b7:9d:91:ad:0b:4c:2e:69: de:5f:60:b3:aa:a2:51:38:51:5c:28:44:44:b6:4b:33:9a:64: 07:44:db:2e:52:93:49:45:b8:83:cc:32:8f:06:fe:ed:b2:30: 8c:d3:4b:99:18:da:21:9a:43:24:91:93:2a:0f:57:ac:f1:fe: db:16:ef:94:49:27:97:db:76:a2:29:ce:32:14:79:a9:00:30: dc:e7:71:0a:6a:25:1e:da:0b:81:38:bb:38:37:fe:3d:5a:34: 2a:f5:04:bd:44:36:75:6a:7f:46:47:e4:e1:82:ad:4f:18:bd: fd:f3:41:57:21:50:64:b4:51:08:65:ae:33:c8:70:00:44:dd: 25:33:be:dc:8f:04:10:5b:25:c2:7c:78:84:78:11:86:23:a2: ff:c8:f9:23:5d:36:17:b8:3b:00:15:31:fa:86:cc:09:bb:68: 25:5a:90:e1:e8:27:ba:af:41:92:6b:e8:79:4d:bd:c4:3e:5e: fe:a3:77:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyNTgxMTAvBgNVBAUTKDc4NDQ1OUE0QjY2QzgzNUZDRjVENkU1QTU2ODcyRDky NDdENDY1OEEwHhcNMjYwMzI1MDU1MTM5WhcNMjYwNDAxMDU1MTM5WjAYMRYwFAYD VQQDEw02OWMzNzdlYi00YzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dlIz/fwY3qb8rawPmMcIDbByvrNjKVeX3R4gfktjuQVums+l1D6gk3vau03 O2oB4WeEwEW2nKw+WdGXkEcsoueShibBr3C9ZUw5I+b41E89Vbtcp/FPzpYyL228 agnJe8/tVyuOrE1fW3RMQGEcdzS4JMDr12NcRtAQeQfTogdE54hcCCEle3e89c0B 8RT11kTEQjUlroBH3ut9OpCB1ZcQaSEpIeGDZeaw8+PVLS0FFrMkM468aIU6ucdV nIBd83g3ZFnxKqaLqLVsGpfCIyHynsSeo/Cn6ChSVnkvlliIW+3UiNlgs9Adb4BR uF7x0Qa4vzPbKhlpQ++M/1uFwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFm6bH7 lGOdUJVceVPEojvNy8JfMB8GA1UdIwQYMBaAFHhEWaS2bINfz11uWlaHLZJH1GWK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTI1OC9BQzA5QzZFRUUz MDYxMUVGQTgwN0IwNTNDNEY5QUUwMi9lRVJacExac2cxX1BYVzVhVm9jdGtrZlVa WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VFUlpwTFpzZzFfUFhXNWFWb2N0a2tmVVpZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI1OC9BQzA5QzZFRUUzMDYxMUVGQTgwN0IwNTNDNEY5QUUwMi9lRVJacExac2cx X1BYVzVhVm9jdGtrZlVaWW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVc1jJ8mHin1/YmKs0DJYxW0ESa5zwtA6pPN+pySFLfNA2kDfdxnjMWrwxerS rBXzguL/p37lOYy8cVhRSDAVO7edka0LTC5p3l9gs6qiUThRXChERLZLM5pkB0Tb LlKTSUW4g8wyjwb+7bIwjNNLmRjaIZpDJJGTKg9XrPH+2xbvlEknl9t2oinOMhR5 qQAw3OdxCmolHtoLgTi7ODf+PVo0KvUEvUQ2dWp/Rkfk4YKtTxi9/fNBVyFQZLRR CGWuM8hwAETdJTO+3I8EEFslwnx4hHgRhiOi/8j5I102F7g7ABUx+obMCbtoJVqQ 4egnuq9BkmvoeU29xD5e/qN3lQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:04:57 2026 by rpki-client