$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: ZDTnzv3ASDuhnyIpTPHulJspUrjKUilcTvbx90/GBZQ= Subject key identifier: 7F:B3:4B:8A:8C:E0:64:85:F2:B3:E5:1A:E6:E3:72:73:AF:0A:10:B7 Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 0232 Signing time: Wed 25 Mar 2026 01:59:26 +0000 Manifest this update: Wed 25 Mar 2026 01:59:26 +0000 Manifest next update: Wed 01 Apr 2026 01:59:26 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: FoUatDHL4kHq2COx8FCXHQLniBh4EIatoRusYCMJBIY=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: OmMxdAPnBhZTGqQOr8JuZaqqyL1RNUDNSiTMUXir/l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Mar 25 01:59:26 2026 GMT Not After : Apr 1 01:59:26 2026 GMT Subject: CN=69c3417e-a375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5b:85:cd:14:73:2b:91:08:7c:bb:9b:d7:66: 5d:61:06:43:88:ad:03:84:54:fe:e5:c9:bb:09:05: 43:ad:65:19:1d:ea:2f:f7:b0:9e:cb:79:cf:bf:2a: ab:e8:11:bc:c7:6f:2a:46:84:8f:97:fa:3f:42:bd: ca:cc:c2:1a:9c:62:85:6c:f7:3e:b8:bb:51:3d:2a: e5:b2:d3:b6:93:44:80:4e:d7:bd:96:11:0e:db:5f: 2c:79:70:2b:85:95:d6:ab:58:0c:87:fc:c7:6a:9b: 73:97:5b:a3:29:60:e7:67:4d:6e:c6:8e:08:b1:02: d1:58:ef:ca:b9:b2:8d:45:4a:f7:ac:92:a0:fa:1b: ef:69:af:82:ed:66:5a:07:05:7a:3d:e3:a3:d1:9c: 51:fe:60:1f:f8:fe:21:5b:a4:f3:ff:4c:5e:6f:97: 5e:15:df:73:c2:9c:2c:27:9d:ae:2b:55:b7:eb:04: fe:a4:27:f8:1f:60:5c:f7:a2:b5:c3:f9:e5:3c:8c: 6d:a5:3e:8c:77:b3:d0:ee:79:34:95:6a:6d:4d:d7: 3b:a4:d1:de:f5:8e:66:27:ab:0e:21:14:b5:7d:e2: 93:f4:5c:65:3e:01:98:18:ec:49:8b:37:d3:f1:b6: a5:26:5d:ac:ea:f9:90:49:66:b7:20:00:c3:1c:f3: d5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B3:4B:8A:8C:E0:64:85:F2:B3:E5:1A:E6:E3:72:73:AF:0A:10:B7 X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:21:9f:3a:15:e3:42:3e:52:6c:22:c5:0c:44:15:32:8d:b1: ce:e8:f4:62:c3:2b:1b:37:ca:76:cf:3b:a7:29:37:48:71:2f: f4:33:15:08:07:70:c1:c4:ce:8a:87:17:8e:8e:b2:b8:f5:e0: e0:a7:4a:01:bf:52:f0:95:7c:64:b7:16:d3:df:22:c0:14:e2: a3:ac:43:88:9b:44:c0:5a:77:a1:5c:4d:8c:14:57:d3:cf:1c: 37:75:9f:80:48:d9:31:f7:f8:c5:36:f5:fe:38:97:f5:3e:5c: e1:92:e9:c8:50:d0:cc:76:5b:3f:8b:28:d0:f2:e2:72:69:b6: d9:4c:6d:f5:de:eb:9d:cc:4d:44:2c:a5:e3:15:c3:0b:f4:43: a8:08:18:f4:4b:14:cb:c9:60:44:92:7f:23:2c:6b:5d:a5:15: 45:6a:0a:ca:eb:e9:35:0a:73:cb:a7:02:92:a1:49:1f:b9:58: 54:3a:5e:7e:06:21:c2:c8:7d:16:5d:b3:81:71:c1:06:44:37: 87:39:62:76:a2:0d:1b:e7:ea:43:b4:4f:01:f3:4b:a0:cb:f6: 77:7d:86:5b:d2:95:f0:0f:a3:23:e1:99:df:32:46:0d:ca:69: c1:e5:be:1f:1a:54:8b:ec:3d:db:48:0c:83:87:49:d5:37:27: 07:4b:78:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjYwMzI1MDE1OTI2WhcNMjYwNDAxMDE1OTI2WjAYMRYwFAYD VQQDEw02OWMzNDE3ZS1hMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFuFzRRzK5EIfLub12ZdYQZDiK0DhFT+5cm7CQVDrWUZHeov97Cey3nPvyqr 6BG8x28qRoSPl/o/Qr3KzMIanGKFbPc+uLtRPSrlstO2k0SATte9lhEO218seXAr hZXWq1gMh/zHaptzl1ujKWDnZ01uxo4IsQLRWO/KubKNRUr3rJKg+hvvaa+C7WZa BwV6PeOj0ZxR/mAf+P4hW6Tz/0xeb5deFd9zwpwsJ52uK1W36wT+pCf4H2Bc96K1 w/nlPIxtpT6Md7PQ7nk0lWptTdc7pNHe9Y5mJ6sOIRS1feKT9FxlPgGYGOxJizfT 8balJl2s6vmQSWa3IADDHPPViQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH+zS4qM 4GSF8rPlGubjcnOvChC3MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUyGfOhXjQj5SbCLFDEQVMo2xzuj0YsMrGzfKds87pyk3SHEv9DMVCAdwwcTO iocXjo6yuPXg4KdKAb9S8JV8ZLcW098iwBTio6xDiJtEwFp3oVxNjBRX088cN3Wf gEjZMff4xTb1/jiX9T5c4ZLpyFDQzHZbP4so0PLicmm22Uxt9d7rncxNRCyl4xXD C/RDqAgY9EsUy8lgRJJ/IyxrXaUVRWoKyuvpNQpzy6cCkqFJH7lYVDpefgYhwsh9 Fl2zgXHBBkQ3hzlidqING+fqQ7RPAfNLoMv2d32GW9KV8A+jI+GZ3zJGDcppweW+ HxpUi+w920gMg4dJ1TcnB0t4tg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:11:59 2026 by rpki-client