$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: GIF7ZPxoTs+q3ut/QhXgKvMZcRrVROWoQwlzEqLgJmQ= Subject key identifier: 64:37:ED:04:2B:AF:F9:20:0F:8D:CB:16:42:D3:EA:CD:7F:CE:CF:12 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0824 Signing time: Tue 24 Mar 2026 20:44:04 +0000 Manifest this update: Tue 24 Mar 2026 20:44:04 +0000 Manifest next update: Tue 31 Mar 2026 20:44:04 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: cu/WOid/Z52T6s2KYujXb2frL3JfVzf8JJT4WIgvwS4=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: Ca1sU4x07vR9ic014MfkvHriHHtFXo0Z6p1sbkhlP4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A, serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Mar 24 20:44:04 2026 GMT Not After : Mar 31 20:44:04 2026 GMT Subject: CN=69c2f794-88d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f0:1d:80:b4:07:b3:d6:c3:1e:62:a5:70:6f: 92:df:e4:a9:b2:97:75:07:fc:a3:4a:9e:97:76:2e: 11:11:dd:c8:79:bb:09:5d:b0:5a:4b:8e:94:95:10: 86:d4:96:87:e3:1d:ce:b2:24:35:d8:f8:30:25:3d: 7f:03:4c:6e:25:c3:1a:56:59:9a:be:04:83:3a:80: 9c:b7:39:40:20:c5:69:ef:dd:8e:92:83:de:d8:df: 1f:19:dd:b5:da:82:9d:89:33:cb:c1:e3:69:63:4e: 03:63:45:d8:d2:1d:cb:55:76:47:06:09:ad:21:a4: 15:ed:a6:c0:4a:f0:68:b8:70:96:88:51:68:68:f6: cf:0a:79:85:42:ca:9a:11:dd:56:ef:51:45:02:4e: bc:1c:f3:2e:4b:16:8f:07:d4:78:91:9c:b9:09:f6: da:0a:a4:70:44:e9:a7:42:46:9d:29:93:b9:3b:5e: fd:a7:a1:d7:e1:30:20:99:8d:4a:8a:69:5a:aa:fe: e8:9f:d6:01:83:96:f9:79:dd:33:3a:2c:72:2c:03: f9:b0:26:3b:02:ce:35:4c:78:46:ad:b9:77:85:00: af:0b:56:c1:45:29:31:51:ca:a2:e5:54:5a:48:7e: ce:dc:af:dc:9a:a8:6b:94:44:09:d1:ff:b5:75:05: bf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:37:ED:04:2B:AF:F9:20:0F:8D:CB:16:42:D3:EA:CD:7F:CE:CF:12 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f2:d1:0f:40:c9:9c:67:ac:bc:09:46:bc:39:48:c1:66:0a: ab:15:d2:45:f6:0b:29:75:9b:a4:7a:f1:4c:d7:8a:35:11:d3: 1a:07:1c:62:be:05:1d:6e:89:97:97:eb:60:64:e0:75:f0:fc: 16:11:21:ba:a4:1d:66:8c:0a:be:17:c4:35:49:6a:78:3d:d5: c4:2c:97:ee:45:bf:79:9f:a7:53:d8:89:98:6b:81:82:c1:06: d9:8d:e7:4a:40:71:11:9d:b7:3d:94:db:20:e5:86:57:fa:e7: 12:53:71:19:f9:b5:5e:c5:15:48:f9:8d:18:1e:b0:8a:cd:ce: 21:6e:47:e5:6c:2c:76:78:2f:0c:e5:85:a1:85:45:fa:7e:97: 7a:f4:de:51:22:22:05:4a:f6:67:ea:2e:85:b7:ff:f7:e0:27: 84:20:c5:f4:82:db:6a:aa:d1:07:82:c1:1e:e2:ca:78:69:ae: 31:2d:0c:53:15:d7:9c:80:c2:39:4f:3c:e7:b7:79:0f:0b:aa: 3d:3a:c0:a1:10:4f:a3:0c:d6:d6:39:dd:39:56:58:04:a1:22: c2:9d:43:06:cd:05:03:c7:a0:47:c8:d9:08:47:d7:37:12:30: 1c:a8:87:b4:5e:82:b9:ec:ea:54:7d:2d:08:dc:18:bc:ed:db: af:09:6c:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjYwMzI0MjA0NDA0WhcNMjYwMzMxMjA0NDA0WjAYMRYwFAYD VQQDEw02OWMyZjc5NC04OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/AdgLQHs9bDHmKlcG+S3+Spspd1B/yjSp6Xdi4REd3IebsJXbBaS46UlRCG 1JaH4x3OsiQ12PgwJT1/A0xuJcMaVlmavgSDOoCctzlAIMVp792OkoPe2N8fGd21 2oKdiTPLweNpY04DY0XY0h3LVXZHBgmtIaQV7abASvBouHCWiFFoaPbPCnmFQsqa Ed1W71FFAk68HPMuSxaPB9R4kZy5CfbaCqRwROmnQkadKZO5O179p6HX4TAgmY1K imlaqv7on9YBg5b5ed0zOixyLAP5sCY7As41THhGrbl3hQCvC1bBRSkxUcqi5VRa SH7O3K/cmqhrlEQJ0f+1dQW/WwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGQ37QQr r/kgD43LFkLT6s1/zs8SMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjfLRD0DJnGesvAlGvDlIwWYKqxXSRfYLKXWbpHrxTNeKNRHTGgccYr4FHW6J l5frYGTgdfD8FhEhuqQdZowKvhfENUlqeD3VxCyX7kW/eZ+nU9iJmGuBgsEG2Y3n SkBxEZ23PZTbIOWGV/rnElNxGfm1XsUVSPmNGB6wis3OIW5H5WwsdngvDOWFoYVF +n6XevTeUSIiBUr2Z+ouhbf/9+AnhCDF9ILbaqrRB4LBHuLKeGmuMS0MUxXXnIDC OU8857d5DwuqPTrAoRBPowzW1jndOVZYBKEiwp1DBs0FA8egR8jZCEfXNxIwHKiH tF6CuezqVH0tCNwYvO3brwls6Q== -----END CERTIFICATE-----Generated at Thu Mar 26 18:12:43 2026 by rpki-client