$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: L+BiOAUDlJpuIFAWTSBGXhOzBH65OI6d6JAd9E6DJZI= Subject key identifier: 4E:08:29:53:5C:39:D3:63:70:F6:06:F1:4B:A4:33:4B:DA:B8:32:4C Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C6C Signing time: Tue 24 Mar 2026 18:27:33 +0000 Manifest this update: Tue 24 Mar 2026 18:27:33 +0000 Manifest next update: Tue 31 Mar 2026 18:27:33 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: KfiPZDYJv8X+Io+JR4L0x3RTNX0bVj47Oib5dzPgaEY=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: jvXpWHuQMqZIyWCLt8zGlmD/EFuQwBIFv6UJxNzSdzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Mar 24 18:27:33 2026 GMT Not After : Mar 31 18:27:33 2026 GMT Subject: CN=69c2d795-d5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:05:ef:c3:27:dc:ea:a1:07:d8:59:3a:eb:45: 53:6f:04:c1:80:36:5a:91:cc:4f:40:22:16:b8:8d: df:90:a0:a1:76:f4:2c:e4:4c:2e:b7:91:a8:65:3a: e5:eb:fc:c5:d1:ad:6b:47:a2:00:dd:f0:21:b2:dd: eb:3f:90:bb:1d:7b:4a:4f:3a:d6:f8:23:00:e0:c4: b8:7e:33:90:eb:75:30:43:7e:c6:fc:03:25:03:40: ae:f8:29:5e:92:a2:d0:39:d0:07:fc:de:35:3f:d7: 25:d9:36:e9:ec:e5:38:00:b0:cc:6f:49:4f:41:99: 62:27:ea:87:95:56:22:97:0f:83:54:4a:f2:09:df: bd:36:6c:92:57:db:1a:5e:a0:ac:e9:1f:70:a2:9c: 85:8b:e3:64:04:6b:52:1d:cb:a1:da:b1:fc:f1:fa: c4:a4:5c:d3:76:e8:2c:ca:ba:8e:c9:83:2a:2e:9e: 37:36:69:b5:e7:27:d6:8c:2a:b6:75:af:ab:46:0f: 4c:ff:70:25:32:d4:af:6b:79:8c:36:95:f8:19:1d: 1f:c1:1c:ba:b8:16:bc:0b:d7:95:b0:e7:05:81:2c: c7:cd:8c:9a:1f:06:4e:93:17:1a:01:33:3a:bf:a2: 5c:b8:e4:32:cd:aa:fa:db:c0:c3:75:28:3c:37:6b: f0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:08:29:53:5C:39:D3:63:70:F6:06:F1:4B:A4:33:4B:DA:B8:32:4C X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:e3:f0:dc:75:e2:47:6e:52:6e:dc:79:4a:de:41:50:fa:a4: 97:8c:aa:c5:52:ef:b6:44:b3:21:5b:18:93:15:7d:41:a8:39: eb:08:cd:67:d5:02:2b:79:78:13:77:1b:09:b8:f1:13:ec:65: f3:96:ba:6c:05:9e:33:f4:99:9b:94:4e:37:36:90:4f:bd:97: 41:56:f3:6d:ed:a1:04:14:c5:82:a3:b3:d1:a1:f1:d6:be:76: 48:71:7f:38:86:b3:0d:55:fb:f8:a5:13:52:90:73:a4:fc:30: b0:b6:95:c3:58:43:a6:b5:47:66:c1:c7:72:6b:b9:08:3e:ca: 47:9d:7e:24:2c:9f:0d:b6:a6:ea:88:56:6b:66:6a:35:b1:c3: 66:61:6e:37:e6:90:2a:45:ba:71:6d:5f:87:eb:5d:c5:a4:be: b1:cf:a1:db:ab:8e:0e:45:92:cc:6f:cd:63:98:1a:ef:59:af: f1:80:9d:07:1e:eb:22:ee:86:e1:30:3f:7a:56:fd:95:45:4d: 68:28:e9:91:76:d4:b4:38:48:98:d2:c8:7c:bb:7d:9e:64:a2: 10:a5:a7:02:52:62:61:f4:00:4d:c2:d3:0e:e3:69:97:62:d1: 90:77:64:de:0e:7c:ed:a2:0a:a7:bb:6a:f5:2e:43:53:13:d5: d3:30:84:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjYwMzI0MTgyNzMzWhcNMjYwMzMxMTgyNzMzWjAYMRYwFAYD VQQDEw02OWMyZDc5NS1kNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QXvwyfc6qEH2Fk660VTbwTBgDZakcxPQCIWuI3fkKChdvQs5Ewut5GoZTrl 6/zF0a1rR6IA3fAhst3rP5C7HXtKTzrW+CMA4MS4fjOQ63UwQ37G/AMlA0Cu+Cle kqLQOdAH/N41P9cl2Tbp7OU4ALDMb0lPQZliJ+qHlVYilw+DVEryCd+9NmySV9sa XqCs6R9wopyFi+NkBGtSHcuh2rH88frEpFzTdugsyrqOyYMqLp43Nmm15yfWjCq2 da+rRg9M/3AlMtSva3mMNpX4GR0fwRy6uBa8C9eVsOcFgSzHzYyaHwZOkxcaATM6 v6JcuOQyzar628DDdSg8N2vw+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE4IKVNc OdNjcPYG8UukM0vauDJMMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwuPw3HXiR25Sbtx5St5BUPqkl4yqxVLvtkSzIVsYkxV9Qag56wjNZ9UCK3l4 E3cbCbjxE+xl85a6bAWeM/SZm5RONzaQT72XQVbzbe2hBBTFgqOz0aHx1r52SHF/ OIazDVX7+KUTUpBzpPwwsLaVw1hDprVHZsHHcmu5CD7KR51+JCyfDbam6ohWa2Zq NbHDZmFuN+aQKkW6cW1fh+tdxaS+sc+h26uODkWSzG/NY5ga71mv8YCdBx7rIu6G 4TA/elb9lUVNaCjpkXbUtDhImNLIfLt9nmSiEKWnAlJiYfQATcLTDuNpl2LRkHdk 3g587aIKp7tq9S5DUxPV0zCEGQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:58:37 2026 by rpki-client