$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: r22LZJN2KEvwJf+yzuWP7MnhiRNscFK/rMdf3PZh/kM= Subject key identifier: EF:37:DC:1F:26:68:E5:D0:AC:B5:0F:54:85:C5:97:D2:7F:0A:78:6A Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0528 Signing time: Tue 24 Mar 2026 16:23:49 +0000 Manifest this update: Tue 24 Mar 2026 16:23:49 +0000 Manifest next update: Tue 31 Mar 2026 16:23:49 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: kNunb1gUsjSFdCW9ZM8tB8yOG75FPpI8HWKhraro9vE=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pPVg90RNjRjphrQIpFi1Dtq7Yfiqt2CKG2uE/Sw0pBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Mar 24 16:23:49 2026 GMT Not After : Mar 31 16:23:49 2026 GMT Subject: CN=69c2ba95-8add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:53:25:e5:1e:4b:96:0a:6b:22:4f:e3:85:f0: 4a:0b:e6:32:5d:42:a2:ab:65:95:b8:d6:11:a0:51: d3:b0:de:a3:33:b7:82:2e:83:21:2e:10:dd:c3:09: a5:6c:1f:6a:66:58:98:04:2b:81:61:5b:ab:dc:4c: b4:67:89:cb:1b:f2:74:45:37:90:34:8a:2a:e7:33: fe:d2:36:a6:e0:38:f3:33:43:0a:6d:d7:ac:37:3e: fb:02:72:fb:49:82:33:9d:04:37:85:2a:06:4a:10: 31:48:cd:69:45:f3:4d:3e:99:41:0f:69:8c:82:0f: 54:28:f9:fd:ea:1d:2a:52:b4:3f:a4:48:59:34:9f: 92:16:30:e6:d4:64:e3:d7:88:f4:43:26:62:7d:63: b8:27:76:e4:b1:85:ef:fd:cd:fa:97:26:eb:a3:79: 67:39:2e:88:e0:3d:4f:33:83:14:c7:e3:f9:18:08: 3e:1f:3d:67:c3:4b:75:f6:91:9e:f9:9f:91:1d:d6: 00:51:7f:58:cf:5d:28:d2:ea:8e:78:21:7d:d0:30: 0f:07:3c:c3:f0:6b:af:76:fe:3a:e0:19:b8:2b:94: d8:ec:54:10:73:1f:04:0a:e5:08:52:49:f4:33:17: 15:72:58:75:fb:23:87:6f:e5:c0:18:31:c7:53:41: a7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:37:DC:1F:26:68:E5:D0:AC:B5:0F:54:85:C5:97:D2:7F:0A:78:6A X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ab:63:1a:45:f9:91:68:6a:c6:db:96:91:04:cf:51:f3:8f: 9b:2a:f2:58:8a:ac:b0:6d:17:47:ea:40:7e:85:a8:2a:bd:1c: bf:a9:a3:48:47:27:32:c0:60:04:27:02:b6:67:3d:fc:08:17: 3a:6b:37:bc:3f:dc:8e:cc:0d:40:49:e6:6f:3d:e5:9d:24:8f: 2f:e9:95:dd:46:13:c6:a3:ce:b6:eb:c0:39:15:1a:4f:60:8a: 48:75:c0:92:de:99:e2:79:d7:92:1c:05:df:6d:a0:13:36:cb: 76:7d:1a:5a:1e:6a:4e:07:f5:7c:8a:5b:78:a6:3d:d2:9f:50: 63:2e:57:d2:dd:2f:13:30:ff:d5:07:32:7d:b9:e3:5e:fe:af: 35:d7:fc:11:0b:f1:e7:29:21:c8:f5:6c:cc:ec:29:2e:0c:d7: 5f:20:68:97:9a:00:00:8b:44:f6:2a:85:19:5f:b3:5a:66:e2: 75:47:5f:8c:56:d6:0f:ce:66:fc:00:6c:65:df:60:5a:dc:ec: 43:af:c6:d4:e0:b2:35:9d:a1:a0:38:54:6c:c0:b5:fa:57:41: dc:61:be:98:e0:dc:44:c0:5f:23:ed:47:a4:72:bc:3b:67:42: d7:13:88:27:dd:56:31:b2:15:5c:58:26:44:6b:ab:be:c0:b6: 53:a5:17:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjYwMzI0MTYyMzQ5WhcNMjYwMzMxMTYyMzQ5WjAYMRYwFAYD VQQDEw02OWMyYmE5NS04YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFMl5R5LlgprIk/jhfBKC+YyXUKiq2WVuNYRoFHTsN6jM7eCLoMhLhDdwwml bB9qZliYBCuBYVur3Ey0Z4nLG/J0RTeQNIoq5zP+0jam4DjzM0MKbdesNz77AnL7 SYIznQQ3hSoGShAxSM1pRfNNPplBD2mMgg9UKPn96h0qUrQ/pEhZNJ+SFjDm1GTj 14j0QyZifWO4J3bksYXv/c36lybro3lnOS6I4D1PM4MUx+P5GAg+Hz1nw0t19pGe +Z+RHdYAUX9Yz10o0uqOeCF90DAPBzzD8Guvdv464Bm4K5TY7FQQcx8ECuUIUkn0 MxcVclh1+yOHb+XAGDHHU0GnvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO833B8m aOXQrLUPVIXFl9J/CnhqMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA6tjGkX5kWhqxtuWkQTPUfOPmyryWIqssG0XR+pAfoWoKr0cv6mjSEcnMsBg BCcCtmc9/AgXOms3vD/cjswNQEnmbz3lnSSPL+mV3UYTxqPOtuvAORUaT2CKSHXA kt6Z4nnXkhwF322gEzbLdn0aWh5qTgf1fIpbeKY90p9QYy5X0t0vEzD/1Qcyfbnj Xv6vNdf8EQvx5ykhyPVszOwpLgzXXyBol5oAAItE9iqFGV+zWmbidUdfjFbWD85m /ABsZd9gWtzsQ6/G1OCyNZ2hoDhUbMC1+ldB3GG+mODcRMBfI+1HpHK8O2dC1xOI J91WMbIVXFgmRGurvsC2U6UXWw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:33:16 2026 by rpki-client