$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft File: aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft (raw, json) Hash identifier: Q1+ZfHgbjmZ9lOdOKu92LkQ8en47o6unuyi0b7kosF8= Subject key identifier: FC:A6:18:81:A6:63:4F:AC:D9:80:5B:50:AD:D2:7A:1E:09:EF:48:70 Authority key identifier: 68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 Certificate issuer: /CN=A915AF7A/serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Certificate serial: 06A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft Manifest number: 0864 Signing time: Tue 24 Mar 2026 22:16:36 +0000 Manifest this update: Tue 24 Mar 2026 22:16:36 +0000 Manifest next update: Tue 31 Mar 2026 22:16:36 +0000 Files and hashes: 1: aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl (hash: ICc6e+lF1KWrozUJXWez7YPwyMEDKhvuLuJbfEvQp/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AF7A, serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Validity Not Before: Mar 24 22:16:36 2026 GMT Not After : Mar 31 22:16:36 2026 GMT Subject: CN=69c30d44-cd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:be:b8:94:2c:fb:5c:da:17:1f:d1:97:82: 28:3a:83:dc:c3:f9:a5:dd:c8:e6:b7:55:5f:96:b0: b8:0c:13:d9:8d:7f:29:ea:f2:1f:c1:ca:ac:f3:12: 4d:22:71:90:99:e8:ca:54:12:71:22:84:bc:73:49: 05:1d:ef:24:12:0c:cb:02:9c:64:a3:25:3b:ef:c8: 67:b5:4e:d3:58:f0:e6:d0:c1:98:08:26:67:2a:8d: 6a:8e:9e:c4:44:c5:55:b2:e6:c2:ac:bb:c5:7e:f4: 9a:d6:22:a2:6e:85:0c:54:0e:a3:7d:b3:e1:05:6a: d8:bf:58:09:0c:b0:44:6e:e1:36:79:76:dc:cd:34: e1:0d:cd:3a:1a:36:92:c9:85:56:5f:7e:fd:80:50: a3:f3:bd:5f:cf:24:46:52:92:ee:ed:90:ca:9c:eb: 60:74:a4:26:b4:ee:6d:c7:a7:b2:41:9a:b4:18:14: 1b:16:41:ca:08:be:64:67:02:79:dd:1a:57:e0:4e: c1:98:92:49:75:03:e0:b6:af:7f:3e:41:5a:7c:94: 45:d1:17:f9:71:c5:ac:95:4c:34:1b:a1:ee:21:0b: 51:ed:08:da:68:21:59:8a:22:5a:a6:d1:c4:ac:e8: 70:e2:13:bf:c1:bb:21:f2:8d:56:7d:b2:98:12:1d: 93:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A6:18:81:A6:63:4F:AC:D9:80:5B:50:AD:D2:7A:1E:09:EF:48:70 X509v3 Authority Key Identifier: keyid:68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:c4:4d:19:f9:95:a3:61:ee:3e:4f:8c:35:ef:56:af:c5:20: d2:43:ed:aa:af:15:ef:eb:96:40:cb:74:b8:d7:5e:85:44:14: 17:60:a9:ec:84:15:9e:2f:e6:07:cf:d8:50:f2:c8:23:95:79: 66:08:be:62:be:8e:20:f1:ab:66:7f:ff:9b:83:c9:51:3d:47: 72:fb:cd:ef:bd:13:23:49:d7:c5:8f:bc:cb:c2:69:43:94:ca: f4:ae:12:27:a3:e3:87:0d:a9:05:f9:40:f4:b4:a7:5d:2d:e5: 15:5f:8c:7b:ce:e9:14:80:73:00:2f:a2:1b:43:64:ec:01:ac: c9:b0:ce:16:bd:11:2b:34:51:0f:df:43:a9:6e:c6:d2:0f:06: 2c:fb:90:25:71:f0:47:53:c5:58:b0:e6:20:16:35:a5:1e:d4: 8f:b3:53:cc:41:ae:6e:02:aa:e9:ac:a4:45:95:d2:72:2c:8e: 81:46:0c:fb:47:7a:1d:68:f3:88:7f:1c:b0:f9:57:8c:e4:cc: bc:76:98:1e:c0:27:54:d3:fb:64:f8:11:f1:a5:7d:f2:e5:94: 3e:e4:44:ae:0d:5d:dd:06:dd:bd:9e:c8:4f:a6:fa:c0:da:4c: ee:99:64:06:4e:b0:6e:a0:32:02:04:11:cc:c8:6e:90:44:1f: 73:3a:12:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFGN0ExMTAvBgNVBAUTKDY4ODBEMzIzQUEzRjJENTE0NjA1MDY0MEYzMjFBNjEy OTAwMERGMDMwHhcNMjYwMzI0MjIxNjM2WhcNMjYwMzMxMjIxNjM2WjAYMRYwFAYD VQQDEw02OWMzMGQ0NC1jZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEu+uJQs+1zaFx/Rl4IoOoPcw/ml3cjmt1VflrC4DBPZjX8p6vIfwcqs8xJN InGQmejKVBJxIoS8c0kFHe8kEgzLApxkoyU778hntU7TWPDm0MGYCCZnKo1qjp7E RMVVsubCrLvFfvSa1iKiboUMVA6jfbPhBWrYv1gJDLBEbuE2eXbczTThDc06GjaS yYVWX379gFCj871fzyRGUpLu7ZDKnOtgdKQmtO5tx6eyQZq0GBQbFkHKCL5kZwJ5 3RpX4E7BmJJJdQPgtq9/PkFafJRF0Rf5ccWslUw0G6HuIQtR7QjaaCFZiiJaptHE rOhw4hO/wbsh8o1WfbKYEh2TSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPymGIGm Y0+s2YBbUK3Seh4J70hwMB8GA1UdIwQYMBaAFGiA0yOqPy1RRgUGQPMhphKQAN8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUY3QS9FMDUzMzMzNkJB QzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xWRkdCUVpBOHlHbUVwQUEz d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJRFRJNm9fTFZGR0JRWkE4eUdtRXBBQTN3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUY3QS9FMDUzMzMzNkJBQzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xW RkdCUVpBOHlHbUVwQUEzd00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzMRNGfmVo2HuPk+MNe9Wr8Ug0kPtqq8V7+uWQMt0uNdehUQUF2Cp7IQVni/m B8/YUPLII5V5Zgi+Yr6OIPGrZn//m4PJUT1HcvvN770TI0nXxY+8y8JpQ5TK9K4S J6Pjhw2pBflA9LSnXS3lFV+Me87pFIBzAC+iG0Nk7AGsybDOFr0RKzRRD99DqW7G 0g8GLPuQJXHwR1PFWLDmIBY1pR7Uj7NTzEGubgKq6aykRZXSciyOgUYM+0d6HWjz iH8csPlXjOTMvHaYHsAnVNP7ZPgR8aV98uWUPuRErg1d3QbdvZ7IT6b6wNpM7plk Bk6wbqAyAgQRzMhukEQfczoSNQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:57:15 2026 by rpki-client