$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: uPJ63ANgeat8NPMj6MEMXrBJ/CGm3rggwB619qx9AiE= Subject key identifier: 42:A2:5A:9B:EA:C5:06:C5:35:9D:06:DA:16:63:CF:13:F5:75:C4:D2 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03E0 Signing time: Wed 25 Mar 2026 00:11:55 +0000 Manifest this update: Wed 25 Mar 2026 00:11:54 +0000 Manifest next update: Wed 01 Apr 2026 00:11:54 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: CqFy9xvYZD4clTCuYc5Af8UB0Oe9ZZm0+EuPaNCKwWM=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: 1651DDZqfZG0+Q1CtVyAE69Gh2+OtTkbKUiK/1/L4rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 997 (0x3e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Mar 25 00:11:54 2026 GMT Not After : Apr 1 00:11:54 2026 GMT Subject: CN=69c3284b-a08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:45:3f:d2:72:b4:3d:7c:74:ad:ed:df:72: 59:c6:c9:81:87:2f:07:a4:f5:9b:36:1d:11:8c:dc: 0a:59:25:b4:ad:c8:ff:19:8b:1b:5a:73:c0:cd:a1: be:d0:f5:3e:09:20:ad:46:35:06:3e:84:5a:ab:61: ad:aa:5b:d4:47:01:7e:ff:7a:6b:8c:b2:e8:50:f4: 55:9a:8d:e7:42:78:c2:40:9f:b2:94:77:49:41:34: f5:5a:62:39:a5:5e:04:ed:ac:0e:38:a2:cd:01:89: 19:87:60:77:9b:7e:31:f1:9f:4d:d1:7a:36:47:f9: 6b:c4:51:f1:bb:0a:05:8d:ae:50:10:38:a8:91:e9: 0f:31:53:15:11:dc:d7:b1:28:49:50:e1:66:ce:00: 3e:28:32:e4:71:a5:3b:d5:7a:15:5f:f0:b1:44:ba: bc:2f:3d:d1:4c:e5:fe:da:ab:45:b9:bd:a7:65:e8: 6e:49:f3:c2:a4:57:24:97:7b:99:03:ea:be:b8:fd: 2d:aa:4d:2d:28:75:a9:53:c7:99:e0:16:02:cf:59: cb:c6:b5:c9:32:5f:08:70:ff:aa:8c:76:75:f9:5f: 7f:1a:2f:51:4b:c7:d8:7a:8d:23:b0:7d:ea:1d:06: 04:86:fc:95:ed:d9:40:5b:f8:42:45:b0:6f:6a:3f: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A2:5A:9B:EA:C5:06:C5:35:9D:06:DA:16:63:CF:13:F5:75:C4:D2 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:96:1f:99:80:c7:bc:31:5f:e0:2d:13:e7:32:7d:3f:58:e9: 21:ae:a6:e6:7d:a8:0e:95:18:d1:48:37:72:fc:80:67:ea:0d: 9a:15:ea:9d:d8:2a:b6:1e:f4:a8:6c:c4:9c:25:93:4d:94:98: 94:1e:77:a3:b7:d3:46:f8:87:fb:ac:dc:f3:a8:eb:6c:36:99: 0d:eb:49:40:72:f7:50:91:68:50:08:e1:40:0f:7d:07:ca:58: 7e:d8:45:c6:d7:18:47:57:db:f5:f3:a7:31:58:82:b3:01:a1: 70:47:5a:2c:00:c2:b1:f5:b8:51:4e:9e:5e:2b:af:75:6b:fd: b1:17:8c:22:8a:67:06:20:b3:5f:22:1d:bd:b1:eb:7d:18:b9: f6:da:2a:3d:e6:bd:b2:a6:73:a6:27:e8:8f:35:76:48:bf:a2: 08:fc:8e:79:63:c1:7d:ae:44:57:74:33:34:8d:0c:45:c2:5b: 61:95:3c:bf:e9:82:bd:6d:07:ad:9b:37:e7:03:e7:32:9d:17: bc:fb:f3:eb:75:68:ca:57:c3:f3:47:2e:e7:e7:bd:26:95:41: fc:8b:31:75:e3:62:00:ac:d9:81:93:d6:07:f9:b8:28:8f:fd: 35:10:e9:4d:c8:74:3c:f7:8f:1a:f8:31:68:95:a9:48:b1:3f: 35:71:ac:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjYwMzI1MDAxMTU0WhcNMjYwNDAxMDAxMTU0WjAYMRYwFAYD VQQDEw02OWMzMjg0Yi1hMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjxFP9JytD18dK3t33JZxsmBhy8HpPWbNh0RjNwKWSW0rcj/GYsbWnPAzaG+ 0PU+CSCtRjUGPoRaq2GtqlvURwF+/3prjLLoUPRVmo3nQnjCQJ+ylHdJQTT1WmI5 pV4E7awOOKLNAYkZh2B3m34x8Z9N0Xo2R/lrxFHxuwoFja5QEDiokekPMVMVEdzX sShJUOFmzgA+KDLkcaU71XoVX/CxRLq8Lz3RTOX+2qtFub2nZehuSfPCpFckl3uZ A+q+uP0tqk0tKHWpU8eZ4BYCz1nLxrXJMl8IcP+qjHZ1+V9/Gi9RS8fYeo0jsH3q HQYEhvyV7dlAW/hCRbBvaj9xjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEKiWpvq xQbFNZ0G2hZjzxP1dcTSMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAV5YfmYDHvDFf4C0T5zJ9P1jpIa6m5n2oDpUY0Ug3cvyAZ+oNmhXqndgqth70 qGzEnCWTTZSYlB53o7fTRviH+6zc86jrbDaZDetJQHL3UJFoUAjhQA99B8pYfthF xtcYR1fb9fOnMViCswGhcEdaLADCsfW4UU6eXiuvdWv9sReMIopnBiCzXyIdvbHr fRi59toqPea9sqZzpifojzV2SL+iCPyOeWPBfa5EV3QzNI0MRcJbYZU8v+mCvW0H rZs35wPnMp0XvPvz63VoylfD80cu5+e9JpVB/IsxdeNiAKzZgZPWB/m4KI/9NRDp Tch0PPePGvgxaJWpSLE/NXGsXg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:15:25 2026 by rpki-client