$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: OTB15SoVSPd2RMq2kdnCXXyALnIPVa+jS6t1MIBoTnw= Subject key identifier: 25:2E:79:E7:27:1B:1E:B1:91:B9:3B:A0:4D:66:EE:56:75:53:CF:DE Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 02DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 02D7 Signing time: Wed 25 Mar 2026 00:59:48 +0000 Manifest this update: Wed 25 Mar 2026 00:59:48 +0000 Manifest next update: Wed 01 Apr 2026 00:59:48 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: IxBcVYNrKH8qL3BTzjHoLVvF4BFw+91sBUbK+8Xxln4=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: poxNxsh/NQ9flBZ/dpDG7diY6MRCWombqXzCSooH5oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Mar 25 00:59:48 2026 GMT Not After : Apr 1 00:59:48 2026 GMT Subject: CN=69c33384-494f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:1f:0d:46:79:33:6d:1b:fa:53:bf:6c:9b: 10:3e:2a:92:76:fd:3f:55:de:fb:57:69:17:ed:f9: 98:8b:d2:da:9b:68:4e:f1:c8:14:0f:e5:63:33:70: 86:48:4b:b1:7c:7e:d9:96:19:8a:ed:7c:e7:71:40: 9e:e9:3a:4b:95:9e:6f:19:2a:48:22:74:af:7c:2e: 19:f3:44:72:4a:4e:1e:aa:a9:3e:28:bd:44:74:b8: 0e:6e:f1:32:aa:ef:9c:cd:9d:fe:cd:18:94:c4:ac: c5:1f:10:5d:37:b2:35:03:bf:e6:54:1d:9a:7e:1c: 06:cd:71:7b:ea:12:d7:77:3d:ba:a3:fb:d0:0f:0b: 94:36:78:83:b3:bc:47:cb:2f:ef:4b:b6:f5:fc:a7: 4f:35:94:8b:7a:7b:1f:b6:64:7a:20:ee:6d:04:09: aa:0b:d2:2a:fc:c1:b5:5c:94:c7:ef:83:00:91:b8: 1a:04:a9:a8:1f:77:b8:b8:71:45:8a:7a:13:7e:ca: 7d:9e:57:3b:2f:b9:d1:41:f0:be:47:57:a3:0b:10: 3f:30:a3:c8:b8:94:0c:c6:57:35:5f:cc:77:f4:1b: 24:58:92:4b:31:77:5d:9d:c4:d2:c6:03:10:50:7b: f7:ea:6d:9b:5e:b8:ee:68:5b:7c:7c:37:27:c4:3d: 64:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2E:79:E7:27:1B:1E:B1:91:B9:3B:A0:4D:66:EE:56:75:53:CF:DE X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:a3:24:b7:dd:a4:ea:68:94:fc:2e:55:28:c3:1c:63:82:35: 66:3d:7c:e9:28:67:a2:8e:2f:04:32:e1:02:aa:fb:68:17:fb: e6:e6:c0:d5:9f:70:94:06:b0:3d:32:56:6b:af:83:1b:03:9f: e6:49:a3:d1:df:77:26:d5:73:73:81:4c:56:7d:95:08:30:51: 7a:41:9b:c5:ff:5d:c5:c9:e2:f6:83:8a:44:2a:bb:ae:d6:6d: fb:18:8c:0a:6b:dc:3b:24:2c:10:94:59:a0:4d:d7:e7:0c:01: 69:55:c1:ff:45:41:8c:9a:3d:b7:a7:a0:78:40:1f:af:4f:c9: 7c:58:09:5a:37:30:d5:7d:bc:5b:a8:d7:80:75:47:d3:40:48: 33:93:8c:c3:25:59:76:c4:67:cd:90:79:f4:e0:03:4f:e5:90: a9:3c:ba:8c:f6:a0:9a:a1:0b:2a:0b:13:c4:67:f9:9a:95:3a: 2d:77:30:42:4d:66:86:94:e4:ea:67:65:69:e0:96:25:00:60: 79:9e:04:8a:dc:31:38:e2:6a:d4:f1:f7:aa:82:a3:48:78:0e: 09:5b:8e:bc:01:bd:7f:9a:18:47:32:b8:8b:d4:dc:a5:be:ae: 3c:14:b4:ad:93:80:b1:4b:5a:ed:92:52:be:c0:f7:7c:45:b4: 93:71:d8:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjYwMzI1MDA1OTQ4WhcNMjYwNDAxMDA1OTQ4WjAYMRYwFAYD VQQDEw02OWMzMzM4NC00OTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUkfDUZ5M20b+lO/bJsQPiqSdv0/Vd77V2kX7fmYi9Lam2hO8cgUD+VjM3CG SEuxfH7ZlhmK7XzncUCe6TpLlZ5vGSpIInSvfC4Z80RySk4eqqk+KL1EdLgObvEy qu+czZ3+zRiUxKzFHxBdN7I1A7/mVB2afhwGzXF76hLXdz26o/vQDwuUNniDs7xH yy/vS7b1/KdPNZSLensftmR6IO5tBAmqC9Iq/MG1XJTH74MAkbgaBKmoH3e4uHFF inoTfsp9nlc7L7nRQfC+R1ejCxA/MKPIuJQMxlc1X8x39BskWJJLMXddncTSxgMQ UHv36m2bXrjuaFt8fDcnxD1kSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCUueecn Gx6xkbk7oE1m7lZ1U8/eMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASqMkt92k6miU/C5VKMMcY4I1Zj186Shnoo4vBDLhAqr7aBf75ubA1Z9wlAaw PTJWa6+DGwOf5kmj0d93JtVzc4FMVn2VCDBRekGbxf9dxcni9oOKRCq7rtZt+xiM CmvcOyQsEJRZoE3X5wwBaVXB/0VBjJo9t6egeEAfr0/JfFgJWjcw1X28W6jXgHVH 00BIM5OMwyVZdsRnzZB59OADT+WQqTy6jPagmqELKgsTxGf5mpU6LXcwQk1mhpTk 6mdlaeCWJQBgeZ4EitwxOOJq1PH3qoKjSHgOCVuOvAG9f5oYRzK4i9Tcpb6uPBS0 rZOAsUta7ZJSvsD3fEW0k3HYvQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:51 2026 by rpki-client