$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: OnTaNSgsaCSV8CA+skxYx+KMAMBROLSSJacE0TfC4vU= Subject key identifier: 41:1E:5C:DA:66:8F:AA:CD:FC:D2:82:C9:9E:5B:21:DA:AD:14:93:D4 Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0B68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0B5E Signing time: Thu 26 Mar 2026 19:05:34 +0000 Manifest this update: Thu 26 Mar 2026 19:05:34 +0000 Manifest next update: Thu 02 Apr 2026 19:05:34 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: x+Sc84jCPUVmg8ADqv3HokT3DABeSd5zJohOflsk/1o=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: HwZqMM9CCAKrNJ/ljMcsv3VZ0uDCep1MPwtiH6UgXOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Mar 26 19:05:34 2026 GMT Not After : Apr 2 19:05:34 2026 GMT Subject: CN=69c5837e-28e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:06:27:ce:d1:64:c6:28:f1:03:78:9b:dc:ff: ef:77:dc:4f:ea:87:a5:84:1b:2b:ea:5a:2a:50:f2: a5:7b:7a:d4:e0:24:62:69:b4:71:ba:13:7f:7e:1b: 10:a6:04:48:47:f6:1e:cc:ee:cf:98:04:69:04:1b: 1a:c4:5b:ce:45:f6:c7:1b:92:ae:d8:a1:2f:2c:da: b5:57:a7:18:5a:dd:14:71:03:01:38:61:2d:e6:f2: 29:cb:fc:90:cc:a6:4e:48:76:32:b7:d8:92:a3:61: 71:92:28:3d:91:eb:ab:b4:b5:89:80:e5:af:db:01: 40:0d:d0:d7:99:db:72:8f:e5:b4:6c:f0:d0:13:f5: d7:98:16:2a:f1:62:eb:75:78:50:10:88:88:35:de: ac:38:2b:57:97:7d:73:fa:09:4f:49:b6:b4:f9:bf: 2b:af:a2:b5:42:e5:d6:20:2d:b3:87:83:80:d5:52: 8a:dc:94:df:dc:49:2d:d9:ed:8b:6b:11:95:4b:7e: 3d:4c:d1:70:43:7c:32:c2:9c:48:cd:6f:d5:e5:51: cb:d2:50:8d:f8:dc:93:89:2c:25:1c:6a:b7:a6:22: c4:38:42:4f:99:36:70:79:21:ce:3f:04:d7:77:f9: 17:08:13:fc:07:7f:9a:da:d4:ac:9e:d7:69:ee:ab: b7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1E:5C:DA:66:8F:AA:CD:FC:D2:82:C9:9E:5B:21:DA:AD:14:93:D4 X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:00:db:cb:de:48:da:7f:4e:c1:30:26:d9:8c:05:74:06:bf: c6:d5:7b:f8:2d:4f:06:3a:a4:90:ab:53:d6:d5:12:03:98:66: 09:03:e2:49:f3:09:2f:16:4a:95:5e:bd:9b:25:f4:9a:ec:a2: 13:93:cc:ed:f1:00:b2:01:cb:a5:5b:d3:2f:d7:81:e4:43:ad: de:0d:73:b2:57:14:3f:12:40:f7:1f:d1:e5:91:b8:6a:98:b7: 94:bc:19:d3:43:a8:e5:2c:75:44:f6:17:6e:ef:6c:af:2e:48: 79:d1:dc:e7:a4:f8:11:49:7f:a9:83:0e:75:f2:a6:1c:ea:66: 03:d7:d9:d1:cb:7d:70:b6:56:59:1d:3b:4d:29:68:fb:f0:53: 0f:0e:5e:da:89:25:ac:3f:54:59:0f:72:ba:fe:8e:b3:bb:74: aa:56:4f:e1:77:1a:f6:78:10:e5:e5:34:39:2c:2b:0d:aa:72: f5:34:c0:04:88:be:e7:5e:3a:eb:89:a6:7d:2a:9b:e9:ff:aa: 94:a5:f8:74:86:50:eb:10:30:a0:a9:fb:1a:fa:a6:08:c1:51: 30:35:c5:b1:a8:98:e4:53:d7:58:a7:9f:11:91:50:01:99:d9: 97:db:cc:3f:70:cc:83:07:df:63:7e:c3:25:30:f7:39:df:c5: f3:59:1a:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjYwMzI2MTkwNTM0WhcNMjYwNDAyMTkwNTM0WjAYMRYwFAYD VQQDEw02OWM1ODM3ZS0yOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAigYnztFkxijxA3ib3P/vd9xP6oelhBsr6loqUPKle3rU4CRiabRxuhN/fhsQ pgRIR/YezO7PmARpBBsaxFvORfbHG5Ku2KEvLNq1V6cYWt0UcQMBOGEt5vIpy/yQ zKZOSHYyt9iSo2Fxkig9keurtLWJgOWv2wFADdDXmdtyj+W0bPDQE/XXmBYq8WLr dXhQEIiINd6sOCtXl31z+glPSba0+b8rr6K1QuXWIC2zh4OA1VKK3JTf3Ekt2e2L axGVS349TNFwQ3wywpxIzW/V5VHL0lCN+NyTiSwlHGq3piLEOEJPmTZweSHOPwTX d/kXCBP8B3+a2tSsntdp7qu3/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEeXNpm j6rN/NKCyZ5bIdqtFJPUMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbgDby95I2n9OwTAm2YwFdAa/xtV7+C1PBjqkkKtT1tUSA5hmCQPiSfMJLxZK lV69myX0muyiE5PM7fEAsgHLpVvTL9eB5EOt3g1zslcUPxJA9x/R5ZG4api3lLwZ 00Oo5Sx1RPYXbu9sry5IedHc56T4EUl/qYMOdfKmHOpmA9fZ0ct9cLZWWR07TSlo +/BTDw5e2oklrD9UWQ9yuv6Os7t0qlZP4Xca9ngQ5eU0OSwrDapy9TTABIi+5146 64mmfSqb6f+qlKX4dIZQ6xAwoKn7GvqmCMFRMDXFsaiY5FPXWKefEZFQAZnZl9vM P3DMgwffY37DJTD3Od/F81kaAw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:37 2026 by rpki-client