$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: qdpvsB2w6I9aGcppSciYAFAbskmGM8vpWlOtfivgtOA= Subject key identifier: CA:B9:DC:C2:09:99:DF:4F:E0:32:99:2F:8C:87:85:4B:41:28:BE:A7 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0DC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0DBA Signing time: Thu 26 Mar 2026 17:50:55 +0000 Manifest this update: Thu 26 Mar 2026 17:50:55 +0000 Manifest next update: Thu 02 Apr 2026 17:50:55 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: O2ez1a5BZ7y385YHc9AiJc1yaAciU2fnn8BA5DFxkWY=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: DwDMBzTdLVQ0ELyjY5S8is56cxQg9X2S+eZse3Y+xqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 17:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Mar 26 17:50:55 2026 GMT Not After : Apr 2 17:50:55 2026 GMT Subject: CN=69c571ff-08c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:2d:a9:29:66:0f:35:87:db:06:44:dd:c1:fc: ba:ee:10:fe:68:28:57:67:3d:a6:49:12:cf:ea:b0: 22:fd:3a:49:bd:91:09:ab:f9:9a:74:36:d0:b9:63: ac:89:9c:e6:6c:14:42:3c:54:8a:ae:9e:7c:65:0a: 34:ba:27:9c:1a:a5:bb:f7:51:d1:1c:44:28:bf:2e: be:31:d6:c3:63:c2:0d:86:76:97:30:c7:9d:36:79: e1:44:80:14:3d:c9:32:24:8a:fd:2a:ee:2c:4b:4f: 8f:cc:09:51:3a:9d:67:9d:85:0c:eb:0b:1a:57:9c: 66:42:54:22:14:db:27:ca:ac:20:ac:5e:be:68:58: b6:b2:53:65:c2:ae:b5:06:cd:ca:38:69:83:a4:94: da:f6:0d:79:b5:54:2c:57:c9:7f:03:b3:05:41:ee: 4d:79:26:49:90:ca:b1:13:aa:eb:cc:68:cb:12:f3: 98:91:8e:59:c8:cb:67:7a:48:88:cd:e1:d3:a1:0c: 46:a7:f7:e6:3f:b2:b7:a2:37:cc:93:99:6f:d0:19: 30:a3:ce:f3:a9:13:33:2b:bb:1d:dd:ca:16:8f:f3: 5a:69:34:bf:a1:1f:76:95:0b:3b:0d:d9:73:06:38: 9c:3e:4c:df:33:17:70:91:04:62:b4:6f:b1:22:9c: f9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B9:DC:C2:09:99:DF:4F:E0:32:99:2F:8C:87:85:4B:41:28:BE:A7 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:25:7a:62:97:a1:91:04:9f:60:3e:7a:7e:19:a0:22:5a:03: 0c:d1:24:9e:6a:6c:40:bb:14:a7:f0:ad:0f:1f:3e:bb:b2:54: 2d:ec:82:97:d2:e0:1c:67:5b:3e:f1:24:86:da:29:80:2c:5b: 4d:20:c0:17:6f:63:33:d1:be:d7:82:45:4c:fa:c2:f2:d3:21: e1:c8:84:0c:c5:d9:14:a2:65:a1:20:4d:5c:68:1b:96:bc:99: a4:87:5b:87:10:38:f3:b2:ac:37:96:03:06:96:2b:2b:e6:cc: eb:73:b3:ae:fb:5c:e7:64:49:11:af:d0:08:f6:ed:10:0f:09: 15:61:1d:bc:fc:a7:5c:fb:81:c3:9a:25:df:b8:f6:87:51:77: 97:37:55:e5:55:61:17:9a:ef:09:c8:be:ef:c1:7e:6d:fc:6e: 67:9d:f9:57:14:ca:5d:c1:01:29:c7:6d:50:1b:e9:d9:2e:54: a4:2c:e2:7d:50:7f:3b:6a:16:1a:d9:cb:f6:cf:60:7c:0f:ce: 53:db:92:6d:25:35:f2:0e:9c:83:fb:6b:f4:55:57:72:3a:d6: 08:4b:cd:45:b6:00:72:e5:22:bf:c1:15:0d:ee:ec:b9:9e:01: 3e:41:60:f2:18:ef:a9:f7:06:9c:b6:c3:5d:59:be:b6:70:2a: fd:d3:77:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjYwMzI2MTc1MDU1WhcNMjYwNDAyMTc1MDU1WjAYMRYwFAYD VQQDEw02OWM1NzFmZi0wOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkC2pKWYPNYfbBkTdwfy67hD+aChXZz2mSRLP6rAi/TpJvZEJq/madDbQuWOs iZzmbBRCPFSKrp58ZQo0uiecGqW791HRHEQovy6+MdbDY8INhnaXMMedNnnhRIAU PckyJIr9Ku4sS0+PzAlROp1nnYUM6wsaV5xmQlQiFNsnyqwgrF6+aFi2slNlwq61 Bs3KOGmDpJTa9g15tVQsV8l/A7MFQe5NeSZJkMqxE6rrzGjLEvOYkY5ZyMtnekiI zeHToQxGp/fmP7K3ojfMk5lv0Bkwo87zqRMzK7sd3coWj/NaaTS/oR92lQs7Ddlz BjicPkzfMxdwkQRitG+xIpz5fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMq53MIJ md9P4DKZL4yHhUtBKL6nMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZiV6YpehkQSfYD56fhmgIloDDNEknmpsQLsUp/CtDx8+u7JULeyCl9LgHGdb PvEkhtopgCxbTSDAF29jM9G+14JFTPrC8tMh4ciEDMXZFKJloSBNXGgblryZpIdb hxA487KsN5YDBpYrK+bM63Ozrvtc52RJEa/QCPbtEA8JFWEdvPynXPuBw5ol37j2 h1F3lzdV5VVhF5rvCci+78F+bfxuZ535VxTKXcEBKcdtUBvp2S5UpCzifVB/O2oW GtnL9s9gfA/OU9uSbSU18g6cg/tr9FVXcjrWCEvNRbYAcuUiv8EVDe7suZ4BPkFg 8hjvqfcGnLbDXVm+tnAq/dN3gQ== -----END CERTIFICATE-----Generated at Fri Mar 27 06:33:51 2026 by rpki-client