$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: vzHGOg8I00NqgCnXtJiUG40XjWrDsmDDadvd2jOswZE= Subject key identifier: BB:94:89:B4:43:28:94:92:52:FF:FE:81:D7:F8:E6:FC:9F:17:88:B3 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 01A1 Signing time: Wed 25 Mar 2026 03:35:40 +0000 Manifest this update: Wed 25 Mar 2026 03:35:40 +0000 Manifest next update: Wed 01 Apr 2026 03:35:40 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: zjswxVN2QaNjxAtsKww7nwO6BmzSzsyZLC3y+GG048I=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: oI34aH3hpczf3eqTRk1pvaILPdvwF3ngOoufaFpS/RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Mar 25 03:35:40 2026 GMT Not After : Apr 1 03:35:40 2026 GMT Subject: CN=69c3580c-5544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:70:24:03:42:73:ae:00:8f:f7:c5:36:54:93: b8:67:79:ab:c3:ce:5d:1f:4c:db:f2:4c:89:a7:76: b2:ea:3e:54:86:e5:50:5a:d7:20:b7:d5:09:d6:7e: ca:ef:a3:95:bd:08:c1:c1:5e:f1:47:1f:ce:d6:6e: 8a:6f:b6:de:78:48:6c:cd:44:07:d6:82:28:6d:8d: 4a:91:cf:fb:4f:4a:18:5c:23:3e:f4:33:63:31:1b: 48:2c:ec:88:21:05:1a:04:87:9f:99:3a:92:83:84: 17:ee:52:fe:44:0a:15:1d:78:5f:7f:63:0b:b4:b5: ab:ff:c7:e3:4e:89:bf:76:a2:37:cd:50:0d:0e:f4: 0f:d2:5a:f8:6b:c1:9e:6a:e1:8e:a7:cf:30:8d:28: e1:32:33:87:3e:64:ac:b9:3d:c9:ac:af:71:8c:91: 7d:4f:d4:54:20:be:f8:84:99:52:b6:08:a1:36:6f: 05:4d:9a:bb:5d:f0:44:27:50:53:ce:9c:c1:7d:09: 50:81:74:5f:d2:8d:0a:94:ec:3e:c4:aa:b5:5a:66: 9d:19:2c:2f:3b:e9:1b:c2:90:d9:bb:69:1c:43:69: a3:f3:22:47:5e:14:ce:13:84:1e:5e:f9:36:6c:09: d5:b0:91:db:11:21:09:66:5e:e4:5d:c5:20:c9:b8: 36:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:94:89:B4:43:28:94:92:52:FF:FE:81:D7:F8:E6:FC:9F:17:88:B3 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c0:94:66:9a:ef:4e:04:6b:8c:f2:07:7e:28:51:a7:a2:a8: 4f:27:17:7d:aa:dd:78:0b:c3:86:2a:7c:65:06:e8:96:f1:ca: 6f:c0:27:b8:50:78:c0:de:31:ec:60:76:5e:3f:ca:da:0f:f5: d3:d0:fc:f0:00:e1:4b:10:bc:32:1c:88:5f:b3:8a:85:8a:84: 60:ee:8f:47:57:7d:07:61:a0:d5:64:08:db:21:9f:c0:01:28: 50:77:56:ce:63:1c:c5:3d:ea:6d:18:24:4b:02:70:18:58:7e: 1e:73:c6:31:b6:f8:0c:58:c0:b4:44:02:e6:54:97:2f:c3:fe: ac:05:af:1e:19:27:38:07:4e:3c:25:8f:4f:c5:75:03:bc:ba: aa:8b:93:6b:59:bb:d6:ba:24:fc:10:d2:dd:5c:f4:cc:13:a1: 50:6e:0c:3e:ad:53:20:bb:84:cc:77:e7:af:ce:7d:0c:fb:bf: 11:5a:a6:6b:31:49:4c:52:5e:72:30:0e:cb:78:c5:a6:c2:69: 5b:fe:7d:c4:69:e8:8f:54:74:e2:63:04:96:8b:87:3d:3e:a1: 06:bb:eb:7b:e4:8f:5f:7c:cb:be:1a:9e:36:1c:5f:f0:49:b5: 6d:3e:32:30:e5:63:45:67:99:64:78:9a:b2:d8:a5:d0:62:f5: d2:72:c1:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjYwMzI1MDMzNTQwWhcNMjYwNDAxMDMzNTQwWjAYMRYwFAYD VQQDEw02OWMzNTgwYy01NTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXAkA0JzrgCP98U2VJO4Z3mrw85dH0zb8kyJp3ay6j5UhuVQWtcgt9UJ1n7K 76OVvQjBwV7xRx/O1m6Kb7beeEhszUQH1oIobY1Kkc/7T0oYXCM+9DNjMRtILOyI IQUaBIefmTqSg4QX7lL+RAoVHXhff2MLtLWr/8fjTom/dqI3zVANDvQP0lr4a8Ge auGOp88wjSjhMjOHPmSsuT3JrK9xjJF9T9RUIL74hJlStgihNm8FTZq7XfBEJ1BT zpzBfQlQgXRf0o0KlOw+xKq1WmadGSwvO+kbwpDZu2kcQ2mj8yJHXhTOE4QeXvk2 bAnVsJHbESEJZl7kXcUgybg2RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLuUibRD KJSSUv/+gdf45vyfF4izMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGMCUZprvTgRrjPIHfihRp6KoTycXfardeAvDhip8ZQbolvHKb8AnuFB4wN4x 7GB2Xj/K2g/109D88ADhSxC8MhyIX7OKhYqEYO6PR1d9B2Gg1WQI2yGfwAEoUHdW zmMcxT3qbRgkSwJwGFh+HnPGMbb4DFjAtEQC5lSXL8P+rAWvHhknOAdOPCWPT8V1 A7y6qouTa1m71rok/BDS3Vz0zBOhUG4MPq1TILuEzHfnr859DPu/EVqmazFJTFJe cjAOy3jFpsJpW/59xGnoj1R04mMElouHPT6hBrvre+SPX3zLvhqeNhxf8Em1bT4y MOVjRWeZZHiastil0GL10nLBqw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:10:52 2026 by rpki-client