$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: OQCMo6LTH4HyvWnjWOqSl7hGmqHq8fQ4OH2sv9mle+o= Subject key identifier: 24:D8:07:40:A0:49:3D:4B:28:18:D1:2D:CB:B2:E2:5A:CE:F9:74:3F Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 02B5 Signing time: Wed 25 Mar 2026 01:06:37 +0000 Manifest this update: Wed 25 Mar 2026 01:06:37 +0000 Manifest next update: Wed 01 Apr 2026 01:06:37 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: 9x/hW1nccB0THWt05xVoCxwnZoOOintEoxwH5PEvg2o=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: 1AILx3io2TpfX7hUWzuL2pU58QXDn9h+uBSyFOkdjjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Mar 25 01:06:37 2026 GMT Not After : Apr 1 01:06:37 2026 GMT Subject: CN=69c3351d-8805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:78:a4:5d:6e:ea:38:16:f3:f2:17:7f:5d:92: d9:0f:66:50:9b:42:03:8b:44:b3:01:19:d9:eb:15: 81:b9:1d:0d:56:69:62:93:b9:8b:4a:98:0a:24:03: fe:7b:90:cb:98:8c:4c:70:73:36:b5:c7:a9:8c:f8: 9e:40:36:5c:93:75:16:e5:ab:ee:76:94:3f:34:2c: 2f:a8:e5:70:12:d6:39:62:52:3f:47:06:dd:99:41: 8f:32:f3:d3:34:cd:6a:f6:2b:bf:ac:ba:65:6d:3a: a3:51:d9:e5:f6:5c:8f:24:50:30:3f:bb:94:09:b2: b9:30:bb:84:2b:59:61:ac:2d:2b:e0:2c:2c:aa:dc: 0f:f5:c7:d0:af:4a:10:5f:96:bc:75:ed:41:9a:c5: a5:aa:5e:98:0e:a7:51:7a:4c:e3:74:99:5c:9e:2e: bd:75:25:03:f9:2f:38:13:20:62:cb:eb:2e:48:af: f8:87:3d:61:0f:0f:43:b3:c6:80:53:41:1a:a2:ad: b5:60:f0:e6:4e:b7:b1:0c:02:5f:c5:95:75:7a:25: 33:83:3a:47:f8:5e:37:8d:bd:68:22:7b:db:04:9f: 68:b7:d3:9c:6c:61:76:f8:b9:99:00:81:86:fe:dd: d9:87:34:bd:67:fc:06:e2:3d:e3:21:0e:89:4e:3b: 21:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D8:07:40:A0:49:3D:4B:28:18:D1:2D:CB:B2:E2:5A:CE:F9:74:3F X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:fb:3f:5f:32:09:63:f9:cb:1a:94:83:a5:39:fd:aa:96:2b: 83:8d:77:1c:3b:52:ea:77:94:d6:10:65:b9:b6:1b:0c:c0:31: ba:82:5b:b6:00:7b:82:26:2c:9a:95:2b:08:01:db:8f:19:32: d4:02:bc:1f:f0:ca:28:26:ac:c7:63:f4:16:a0:80:9d:f5:dd: 64:36:26:54:a0:37:11:95:80:39:29:46:1f:53:02:dd:5a:fc: 27:d4:dc:ef:1c:00:ab:5a:51:b5:4e:a4:8b:a1:0b:ef:0d:18: 71:94:b4:a0:e0:53:ca:cd:3c:97:6b:17:cf:fc:00:a4:1b:a9: ea:58:b4:d5:79:2c:a3:40:87:b9:bc:b1:c1:b7:87:de:07:96: 03:31:cc:88:c0:7d:09:4a:ef:10:e1:bf:42:68:6e:7e:e2:f7: b1:77:74:b8:62:0f:a3:52:04:dd:9b:10:35:71:6f:3e:6f:68: 1b:40:ba:b3:b3:e4:16:d2:4b:58:41:00:bd:d2:6a:8b:7f:21: 7d:6f:65:9a:5f:23:6e:b6:8b:f6:09:c6:1f:97:7f:55:3a:53: bc:45:54:1a:74:dd:67:74:3b:78:62:ab:27:48:5b:2a:5c:c4: 5c:e0:b1:5c:8e:eb:a2:63:08:8a:a4:8a:ef:b4:ea:f0:1e:6d: ef:5d:ed:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjYwMzI1MDEwNjM3WhcNMjYwNDAxMDEwNjM3WjAYMRYwFAYD VQQDEw02OWMzMzUxZC04ODA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHikXW7qOBbz8hd/XZLZD2ZQm0IDi0SzARnZ6xWBuR0NVmlik7mLSpgKJAP+ e5DLmIxMcHM2tcepjPieQDZck3UW5avudpQ/NCwvqOVwEtY5YlI/RwbdmUGPMvPT NM1q9iu/rLplbTqjUdnl9lyPJFAwP7uUCbK5MLuEK1lhrC0r4CwsqtwP9cfQr0oQ X5a8de1BmsWlql6YDqdRekzjdJlcni69dSUD+S84EyBiy+suSK/4hz1hDw9Ds8aA U0Eaoq21YPDmTrexDAJfxZV1eiUzgzpH+F43jb1oInvbBJ9ot9OcbGF2+LmZAIGG /t3ZhzS9Z/wG4j3jIQ6JTjshwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCTYB0Cg ST1LKBjRLcuy4lrO+XQ/MB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG/s/XzIJY/nLGpSDpTn9qpYrg413HDtS6neU1hBlubYbDMAxuoJbtgB7giYs mpUrCAHbjxky1AK8H/DKKCasx2P0FqCAnfXdZDYmVKA3EZWAOSlGH1MC3Vr8J9Tc 7xwAq1pRtU6ki6EL7w0YcZS0oOBTys08l2sXz/wApBup6li01Xkso0CHubyxwbeH 3geWAzHMiMB9CUrvEOG/QmhufuL3sXd0uGIPo1IE3ZsQNXFvPm9oG0C6s7PkFtJL WEEAvdJqi38hfW9lml8jbraL9gnGH5d/VTpTvEVUGnTdZ3Q7eGKrJ0hbKlzEXOCx XI7romMIiqSK77Tq8B5t713tEw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:39:12 2026 by rpki-client