$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: 4vLr79WKVKWKBRnuBfzfQzUh2BpUR5fB3jL75d5fOhQ= Subject key identifier: 48:38:E0:32:CD:54:13:94:B6:96:9F:78:2F:58:22:62:46:A4:16:5E Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: DD Signing time: Wed 25 Mar 2026 05:47:56 +0000 Manifest this update: Wed 25 Mar 2026 05:47:56 +0000 Manifest next update: Wed 01 Apr 2026 05:47:56 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: Mt/bqk5Gos2xUInVfbAGzNd6Fp7ap5+ASPfVgtp4inE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Mar 25 05:47:56 2026 GMT Not After : Apr 1 05:47:56 2026 GMT Subject: CN=69c3770c-b88a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:0a:74:8c:22:7b:5a:52:d5:68:5e:42:2f:b4: 28:f7:3e:a8:9d:52:18:6f:ee:06:87:b3:9d:45:d9: 6c:6c:03:d3:ba:5c:ab:0e:9d:d1:e0:a9:08:60:db: 86:81:9c:e4:88:15:94:66:d6:87:f7:a8:52:d4:4e: 93:53:9e:96:8c:79:e3:2f:76:4f:1d:f2:00:4b:4f: a0:94:34:b5:f2:f4:f5:a3:6a:bf:06:b9:46:7b:ba: 39:3e:4b:87:03:da:f9:c1:0c:b5:72:96:06:8d:a4: 9d:36:16:7e:02:cd:51:9c:91:c5:3b:ae:e7:2c:85: c2:75:17:4f:61:18:f2:9d:0d:4c:ff:1c:ca:05:90: 34:e3:9e:20:6d:10:bd:92:7c:a2:9a:e4:0c:fe:83: 38:a2:df:8f:3f:82:6d:91:95:01:b0:a8:12:d1:89: d6:b3:e7:dc:62:67:44:93:06:6e:96:03:16:90:84: b9:f3:98:50:45:3f:ad:39:65:3d:01:6b:e4:86:04: 6a:90:3f:6b:4e:01:e9:c4:4e:ca:8d:40:0c:7e:f4: 7c:6c:b1:1e:1c:98:04:86:72:5b:ef:04:70:87:5a: bf:02:d7:86:fc:e2:32:db:17:44:40:bc:3a:76:0d: 84:4d:4f:45:e0:53:74:d9:38:e2:ea:e1:e5:3c:46: 7b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:38:E0:32:CD:54:13:94:B6:96:9F:78:2F:58:22:62:46:A4:16:5E X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8b:8b:67:46:17:45:a7:39:ea:e3:88:96:0e:97:67:7e:8f: 30:1c:ec:01:29:f3:4b:ab:bb:73:73:11:5a:db:c1:42:49:79: d3:39:1e:56:f8:f7:f4:d2:81:8f:65:2a:20:b4:6e:fe:c1:4f: 7d:bc:8b:c5:e2:e2:f3:df:ce:84:43:90:07:63:1e:82:a4:1c: 76:5b:27:b5:4b:11:c1:36:60:50:8a:34:d6:5f:27:b4:a7:79: d5:be:fb:eb:5d:40:1f:7c:de:bb:82:74:ec:8b:ab:02:da:cb: 37:f8:8e:f5:49:7c:3f:4b:1f:04:74:aa:3a:40:b8:d9:51:c6: 6d:40:fc:c2:a3:c1:eb:c2:ab:fb:e3:37:57:89:08:9d:24:68: 5f:6d:1d:07:9d:c5:6d:74:33:c9:85:b7:55:df:80:ba:54:b1: 85:ef:44:29:d6:ce:51:e4:08:ad:30:fd:29:b8:6a:b5:b5:c6: 79:b7:7c:74:43:ed:4c:05:82:5b:87:5f:78:12:02:4a:3e:e1: 0e:ab:cc:7f:63:a5:d4:4e:41:e6:6f:99:8b:6d:1e:a2:5c:46: 34:34:ff:f2:41:37:0f:7f:99:ef:96:a6:3b:14:29:97:89:24: 70:ff:05:1d:9a:5f:7f:38:8a:88:25:6c:2e:f1:1d:57:6f:1e: 7c:fc:78:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY4NzAxMTAvBgNVBAUTKEQ4M0JEQzRGQUNDRDlEQjdBMEJDNDZCNDI0NEVBMzEw NzA2MDRCOTcwHhcNMjYwMzI1MDU0NzU2WhcNMjYwNDAxMDU0NzU2WjAYMRYwFAYD VQQDEw02OWMzNzcwYy1iODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gp0jCJ7WlLVaF5CL7Qo9z6onVIYb+4Gh7OdRdlsbAPTulyrDp3R4KkIYNuG gZzkiBWUZtaH96hS1E6TU56WjHnjL3ZPHfIAS0+glDS18vT1o2q/BrlGe7o5PkuH A9r5wQy1cpYGjaSdNhZ+As1RnJHFO67nLIXCdRdPYRjynQ1M/xzKBZA0454gbRC9 knyimuQM/oM4ot+PP4JtkZUBsKgS0YnWs+fcYmdEkwZulgMWkIS585hQRT+tOWU9 AWvkhgRqkD9rTgHpxE7KjUAMfvR8bLEeHJgEhnJb7wRwh1q/AteG/OIy2xdEQLw6 dg2ETU9F4FN02Tji6uHlPEZ7kwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEg44DLN VBOUtpafeC9YImJGpBZeMB8GA1UdIwQYMBaAFNg73E+szZ23oLxGtCROoxBwYEuX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Rjg3MC9EMkUyNEM5OEQ3 RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi8yRHZjVDZ6Tm5iZWd2RWEwSkU2akVIQmdT NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Rjg3MC9EMkUyNEM5OEQ3RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi8yRHZjVDZ6Tm5i ZWd2RWEwSkU2akVIQmdTNWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH4uLZ0YXRac56uOIlg6XZ36PMBzsASnzS6u7c3MRWtvBQkl50zkeVvj39NKB j2UqILRu/sFPfbyLxeLi89/OhEOQB2MegqQcdlsntUsRwTZgUIo01l8ntKd51b77 611AH3zeu4J07IurAtrLN/iO9Ul8P0sfBHSqOkC42VHGbUD8wqPB68Kr++M3V4kI nSRoX20dB53FbXQzyYW3Vd+AulSxhe9EKdbOUeQIrTD9KbhqtbXGebd8dEPtTAWC W4dfeBICSj7hDqvMf2Ol1E5B5m+Zi20eolxGNDT/8kE3D3+Z75amOxQpl4kkcP8F HZpffziKiCVsLvEdV28efPx4Eg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:45:36 2026 by rpki-client