$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: DKo/TNnyBOnILN/+EGRfjUStY0ctZsZ3f8YhHG/k+fk= Subject key identifier: 69:C8:94:22:F6:00:6D:98:87:FD:C8:0C:A1:5D:8F:B5:82:70:A1:A9 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A6C Signing time: Tue 24 Mar 2026 19:23:39 +0000 Manifest this update: Tue 24 Mar 2026 19:23:39 +0000 Manifest next update: Tue 31 Mar 2026 19:23:39 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: 9TMMi9fZ7cH6wM48rjVU+wAegdpyhlavNmUMNQ/CjOM=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: dvtbQl9WFxEalnHzoaHQdlGL9o00cBASyRMK3uXNSHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Mar 24 19:23:39 2026 GMT Not After : Mar 31 19:23:39 2026 GMT Subject: CN=69c2e4bb-0c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:07:43:8f:29:d3:2a:20:f1:c3:9f:20:9b:a7: 34:66:ee:4f:1a:d9:39:27:b0:90:37:5a:bb:94:31: 64:c2:36:9b:6e:39:c1:90:00:8c:00:ce:7f:96:c4: e6:54:38:e8:a5:19:43:20:4f:99:95:73:57:8b:10: 36:74:38:91:80:2f:be:39:a9:e4:79:8e:7c:fd:a9: a6:57:e3:46:de:57:13:ea:f9:e5:9e:91:c1:fc:61: d4:fa:e0:b6:3b:9c:73:13:46:8f:7a:da:c5:10:7b: 59:d6:b7:11:33:eb:65:92:91:c8:2a:c4:05:3c:e5: 79:75:bd:6a:11:e1:5b:8d:60:97:6c:09:e7:16:68: 6c:7b:32:1c:9f:72:dc:42:39:43:14:ad:af:10:6d: 82:e8:96:12:08:39:86:af:b1:a1:88:61:6a:a6:43: 0c:c3:34:fc:35:41:8c:89:4f:a8:50:c1:eb:70:14: ec:ba:4c:3e:ca:92:f6:fe:b7:40:d8:ed:e9:18:5e: 73:3e:ae:7b:02:0f:f4:e3:29:9d:eb:1f:1c:56:10: 8a:07:ed:43:83:25:25:5a:69:df:92:47:34:07:2b: ca:0e:6b:d4:43:6d:c2:a6:d2:45:6f:79:62:a5:32: ed:23:36:ed:0a:75:db:23:4c:c2:b9:68:60:97:f8: e7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C8:94:22:F6:00:6D:98:87:FD:C8:0C:A1:5D:8F:B5:82:70:A1:A9 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:63:85:45:93:a6:44:cb:00:b2:5b:0e:28:74:2d:55:97:02: d1:d8:ee:fa:0f:53:23:ad:6a:0d:05:66:f8:7d:ca:b4:09:ab: dc:33:dd:e4:a0:c0:46:c7:cf:d1:37:dd:e7:2d:e1:ff:02:3f: d1:04:42:f2:bd:41:bd:95:6b:f0:53:c7:be:2e:34:06:c0:1c: f7:04:a6:92:62:e8:ae:5d:0e:b1:6b:f2:3e:69:f1:31:f1:35: 9c:1d:60:49:14:dd:d1:fc:ee:67:d9:45:a9:7a:e8:80:64:8b: c6:f6:d0:bd:e7:0f:c9:7f:98:17:79:42:bf:ce:12:f7:d7:8e: 5d:ad:0a:f3:0e:2e:94:13:cd:ad:f2:c4:91:c2:c2:5d:53:d4: 64:a7:9a:d0:58:6b:5b:68:5d:84:e1:a8:1a:55:c4:aa:98:b7: 3b:90:f5:c7:cc:9e:55:f4:85:b7:28:52:57:0b:c8:ff:21:fe: 97:9a:3a:f5:e1:c6:6e:3c:58:c0:35:9d:16:6f:2a:29:ce:f1: 47:13:e6:a0:61:52:d2:e9:45:63:c6:6d:38:52:ce:af:a9:c5: b4:77:f2:0e:ff:e0:01:36:3f:be:8b:58:46:b3:c5:40:a0:4d: cf:82:c1:52:87:54:48:4e:3d:3a:d9:b2:d5:f0:69:05:98:ce: 91:54:a6:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjYwMzI0MTkyMzM5WhcNMjYwMzMxMTkyMzM5WjAYMRYwFAYD VQQDEw02OWMyZTRiYi0wYzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQdDjynTKiDxw58gm6c0Zu5PGtk5J7CQN1q7lDFkwjabbjnBkACMAM5/lsTm VDjopRlDIE+ZlXNXixA2dDiRgC++OankeY58/ammV+NG3lcT6vnlnpHB/GHU+uC2 O5xzE0aPetrFEHtZ1rcRM+tlkpHIKsQFPOV5db1qEeFbjWCXbAnnFmhsezIcn3Lc QjlDFK2vEG2C6JYSCDmGr7GhiGFqpkMMwzT8NUGMiU+oUMHrcBTsukw+ypL2/rdA 2O3pGF5zPq57Ag/04ymd6x8cVhCKB+1DgyUlWmnfkkc0ByvKDmvUQ23CptJFb3li pTLtIzbtCnXbI0zCuWhgl/jnBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGnIlCL2 AG2Yh/3IDKFdj7WCcKGpMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf2OFRZOmRMsAslsOKHQtVZcC0dju+g9TI61qDQVm+H3KtAmr3DPd5KDARsfP 0Tfd5y3h/wI/0QRC8r1BvZVr8FPHvi40BsAc9wSmkmLorl0OsWvyPmnxMfE1nB1g SRTd0fzuZ9lFqXrogGSLxvbQvecPyX+YF3lCv84S99eOXa0K8w4ulBPNrfLEkcLC XVPUZKea0FhrW2hdhOGoGlXEqpi3O5D1x8yeVfSFtyhSVwvI/yH+l5o69eHGbjxY wDWdFm8qKc7xRxPmoGFS0ulFY8ZtOFLOr6nFtHfyDv/gATY/votYRrPFQKBNz4LB UodUSE49Otmy1fBpBZjOkVSmyw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:55:43 2026 by rpki-client