$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: jrgsF2tr9modc2/0QKU5YTNeO5drcLRnYP76mUHbt1U= Subject key identifier: 4C:E4:A1:58:88:12:72:B7:88:FC:91:FA:B9:1C:08:0D:51:DB:12:5E Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0B6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0B5D Signing time: Tue 24 Mar 2026 18:59:33 +0000 Manifest this update: Tue 24 Mar 2026 18:59:33 +0000 Manifest next update: Tue 31 Mar 2026 18:59:33 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: FiGqoupNqsdCuBudDkICVegUWP7X7LKHq8sCDEu4rCo=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: tMXWiHQDEYWjmb1rCm9pm1NKCjaTCYMsTjZBKr+rfEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Mar 24 18:59:33 2026 GMT Not After : Mar 31 18:59:33 2026 GMT Subject: CN=69c2df15-08ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:25:ca:5c:84:63:ec:90:68:f0:83:41:25:95: 70:1f:77:78:aa:04:b2:5b:0b:0a:17:86:ba:ff:b9: a6:05:84:bb:cf:c3:1c:b9:15:c3:ef:a3:9f:a1:c4: e3:71:b4:eb:5f:8c:81:9f:1b:ab:75:43:27:cd:83: b6:3c:7c:e2:8c:6b:cb:7b:c2:26:73:7b:8c:06:42: 44:4a:47:7b:dc:60:4b:ed:63:d3:9b:b2:b9:2e:87: 2b:f2:bd:d3:0c:c6:6f:3f:85:75:78:d6:ab:7d:b7: c2:92:74:12:73:9e:94:27:45:f2:a0:2b:60:be:ef: a2:5f:3c:ba:2e:5f:db:ab:9f:d3:13:40:2f:2b:c6: 9b:c2:a4:ca:cd:13:87:a3:5c:55:a6:16:db:65:9d: 61:0a:2c:a1:b1:2d:34:45:13:97:7b:fb:c2:cf:b1: 9e:39:76:72:83:f8:85:9b:13:12:34:71:c2:62:71: 1b:7b:8c:12:3f:fd:ee:4d:bb:01:f1:83:80:a7:5b: 88:23:d5:6b:33:17:89:d2:f1:e5:9c:9e:9a:d4:c2: 7a:17:1b:f1:6d:dd:2c:7e:04:55:a2:8f:31:2c:b5: 05:5e:9c:82:90:72:f2:a2:b6:e3:66:3e:2f:cb:30: 63:fa:0a:38:ac:fd:bc:57:22:77:cd:63:13:df:00: 1d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E4:A1:58:88:12:72:B7:88:FC:91:FA:B9:1C:08:0D:51:DB:12:5E X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:7a:de:7c:4a:9c:aa:83:6a:db:40:88:ec:50:0b:14:4b:60: a1:d6:c6:d5:fc:91:31:01:7b:88:15:3b:fb:07:c9:0f:a2:45: 8f:8f:ae:2b:86:d4:7c:10:d8:38:40:57:54:4d:4f:f8:c8:f9: 8d:fe:02:84:37:b6:60:53:69:0c:fc:3b:c2:25:b5:65:53:78: 8d:ab:92:4a:42:10:b2:02:23:bd:90:3f:ba:ba:00:2a:16:58: a3:52:94:30:f0:58:db:b7:d3:94:2e:7d:a7:45:eb:42:b9:f6: b5:55:f9:88:ed:ee:26:9f:7e:0b:f8:b1:81:4b:6a:33:f6:46: 81:98:7f:c2:d1:79:95:55:20:0d:ca:7a:b3:46:a9:17:6e:d1: 23:7a:86:b7:bd:b9:7d:ba:ee:ce:36:06:43:7d:cd:d2:d1:15: cd:d3:63:61:85:27:13:a2:7d:a4:91:b5:be:63:56:c8:b7:97: 17:8f:38:96:e7:4b:0e:6f:ed:9e:22:ed:db:c8:a2:2b:10:a0: ab:f1:59:98:70:d9:a7:b1:10:c3:72:5b:aa:b4:ae:29:99:41: 56:be:55:ab:28:2f:96:c6:81:04:a0:f6:41:4b:28:e9:a3:c0: 46:e4:98:d7:74:eb:74:cc:2b:62:82:0c:78:20:a5:0f:bd:fa: 3a:9f:8b:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjYwMzI0MTg1OTMzWhcNMjYwMzMxMTg1OTMzWjAYMRYwFAYD VQQDEw02OWMyZGYxNS0wOGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkiXKXIRj7JBo8INBJZVwH3d4qgSyWwsKF4a6/7mmBYS7z8McuRXD76OfocTj cbTrX4yBnxurdUMnzYO2PHzijGvLe8Imc3uMBkJESkd73GBL7WPTm7K5Locr8r3T DMZvP4V1eNarfbfCknQSc56UJ0XyoCtgvu+iXzy6Ll/bq5/TE0AvK8abwqTKzROH o1xVphbbZZ1hCiyhsS00RROXe/vCz7GeOXZyg/iFmxMSNHHCYnEbe4wSP/3uTbsB 8YOAp1uII9VrMxeJ0vHlnJ6a1MJ6Fxvxbd0sfgRVoo8xLLUFXpyCkHLyorbjZj4v yzBj+go4rP28VyJ3zWMT3wAdsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEzkoViI EnK3iPyR+rkcCA1R2xJeMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdXrefEqcqoNq20CI7FALFEtgodbG1fyRMQF7iBU7+wfJD6JFj4+uK4bUfBDY OEBXVE1P+Mj5jf4ChDe2YFNpDPw7wiW1ZVN4jauSSkIQsgIjvZA/uroAKhZYo1KU MPBY27fTlC59p0XrQrn2tVX5iO3uJp9+C/ixgUtqM/ZGgZh/wtF5lVUgDcp6s0ap F27RI3qGt725fbruzjYGQ33N0tEVzdNjYYUnE6J9pJG1vmNWyLeXF484ludLDm/t niLt28iiKxCgq/FZmHDZp7EQw3JbqrSuKZlBVr5VqygvlsaBBKD2QUso6aPARuSY 13TrdMwrYoIMeCClD736Op+L9A== -----END CERTIFICATE-----Generated at Thu Mar 26 06:22:33 2026 by rpki-client