$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: ZnmVgCzGkyFTuJzTKcTdOk7M8Q7bLkSSfwc+TrdXve0= Subject key identifier: 9C:B4:93:CD:79:9D:F3:DD:99:4A:AE:F8:55:CB:87:C0:3C:CF:2D:1A Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 0528 Signing time: Tue 24 Mar 2026 23:15:32 +0000 Manifest this update: Tue 24 Mar 2026 23:15:32 +0000 Manifest next update: Tue 31 Mar 2026 23:15:32 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: Tqcd3onz6RfQmCdXDouSCeF4JKYIfewHfBq/yUk12Es=) 2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: tETiEeczeTi6RVos7PRLZrM1yj4bO0TaBc4BLbzROio=) 3: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: 7U90fAJm9Jprxru+K/b/WXWkFIPppoovbosNTZikpMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Mar 24 23:15:32 2026 GMT Not After : Mar 31 23:15:32 2026 GMT Subject: CN=69c31b14-cedb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:54:15:f3:c9:26:31:9b:c6:9e:e5:98:82:e5: df:e8:d1:5c:25:98:3e:c4:bd:7f:07:83:08:bd:17: 16:f8:a8:c4:7e:4c:4b:3d:05:60:42:98:b4:ee:e3: 64:cf:5d:07:ed:36:d9:ee:ca:7f:7e:80:58:6a:81: 83:fb:39:a8:5c:5c:ce:fe:d7:10:e1:71:60:8b:85: 5f:68:a1:bf:10:d5:5d:f0:9b:b9:ec:a1:8e:10:f0: bf:d9:ab:0b:da:35:8b:17:d5:b2:25:a8:ee:0a:f7: 41:2d:0d:b8:82:7c:6c:33:09:0b:01:ec:98:3f:12: 61:d6:7f:c8:db:8c:fb:20:36:4d:1c:b7:f7:97:83: 22:35:00:a0:75:df:aa:54:ed:40:d0:ea:52:89:3c: 4e:08:a9:2d:ee:7f:37:52:00:f8:1c:b9:38:f5:b8: 2a:9a:08:5d:93:73:9d:29:51:30:21:86:00:c5:82: f5:70:73:e5:13:f4:cc:13:f9:af:cb:ac:d1:36:01: 5c:e0:ce:ed:15:96:60:10:b7:2f:4e:bc:b9:43:ee: ca:9c:60:fb:ec:9a:bb:07:95:9a:f8:21:50:78:90: 1e:ee:35:0e:c4:b5:e1:33:3d:81:9f:43:63:37:6b: d6:f4:90:74:c0:53:0d:d4:34:02:12:ab:67:7f:cb: 57:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B4:93:CD:79:9D:F3:DD:99:4A:AE:F8:55:CB:87:C0:3C:CF:2D:1A X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:66:c5:50:b5:f2:fe:69:6e:3f:87:fa:a7:f2:dd:d1:fd:46: d1:11:6e:db:6b:c8:2c:9d:72:33:4b:82:81:ec:06:ec:88:ab: 8c:d4:7e:9d:35:be:0f:46:eb:ae:7e:d7:1b:1d:49:eb:21:6f: 8b:fc:6f:65:f1:7e:a8:df:1a:41:bc:4d:cd:b5:a5:29:53:d1: ed:50:ee:d0:b2:79:a8:c5:83:e5:51:5a:2c:07:03:2e:2b:68: 5a:56:fa:da:7a:fa:7c:d9:86:87:fd:19:b2:ed:1e:b2:e7:f7: bd:6d:47:d1:ba:45:5e:a4:6a:49:60:2f:19:39:28:8f:ce:f5: 60:84:bf:31:ad:16:aa:ba:bc:a5:11:30:88:73:b4:06:f8:26: 7f:94:b9:a4:59:9c:24:1e:74:e6:a3:0d:c5:8e:47:c1:be:9f: 34:20:d0:19:1a:9d:38:74:6b:9e:cd:7e:a9:08:55:7e:2c:64: 67:2b:87:86:a6:34:a9:da:5c:05:bb:d5:f2:e0:4f:6d:81:55: cb:1b:c5:58:57:a3:1b:5b:3e:ea:b8:83:30:df:a6:ad:f7:9f: 05:e5:a5:05:25:01:20:37:28:5f:95:aa:7e:97:7d:af:79:28: 28:ed:0d:bf:49:5e:65:b4:eb:27:a8:d4:b2:01:0d:f2:e3:8d: 4b:97:40:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjYwMzI0MjMxNTMyWhcNMjYwMzMxMjMxNTMyWjAYMRYwFAYD VQQDEw02OWMzMWIxNC1jZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11QV88kmMZvGnuWYguXf6NFcJZg+xL1/B4MIvRcW+KjEfkxLPQVgQpi07uNk z10H7TbZ7sp/foBYaoGD+zmoXFzO/tcQ4XFgi4VfaKG/ENVd8Ju57KGOEPC/2asL 2jWLF9WyJajuCvdBLQ24gnxsMwkLAeyYPxJh1n/I24z7IDZNHLf3l4MiNQCgdd+q VO1A0OpSiTxOCKkt7n83UgD4HLk49bgqmghdk3OdKVEwIYYAxYL1cHPlE/TME/mv y6zRNgFc4M7tFZZgELcvTry5Q+7KnGD77Jq7B5Wa+CFQeJAe7jUOxLXhMz2Bn0Nj N2vW9JB0wFMN1DQCEqtnf8tXZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJy0k815 nfPdmUqu+FXLh8A8zy0aMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARWbFULXy/mluP4f6p/Ld0f1G0RFu22vILJ1yM0uCgewG7IirjNR+nTW+D0br rn7XGx1J6yFvi/xvZfF+qN8aQbxNzbWlKVPR7VDu0LJ5qMWD5VFaLAcDLitoWlb6 2nr6fNmGh/0Zsu0esuf3vW1H0bpFXqRqSWAvGTkoj871YIS/Ma0Wqrq8pREwiHO0 Bvgmf5S5pFmcJB505qMNxY5Hwb6fNCDQGRqdOHRrns1+qQhVfixkZyuHhqY0qdpc BbvV8uBPbYFVyxvFWFejG1s+6riDMN+mrfefBeWlBSUBIDcoX5Wqfpd9r3koKO0N v0leZbTrJ6jUsgEN8uONS5dAiw== -----END CERTIFICATE-----Generated at Thu Mar 26 21:38:03 2026 by rpki-client