$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: kHwLKyJ5r/MRuh9M5asjnoHag3BY3DYtwCd8eTdgIiE= Subject key identifier: A7:EE:28:59:01:85:B0:35:E0:EC:1B:D4:32:B9:E1:FE:63:8E:ED:CF Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 078C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 0756 Signing time: Tue 24 Mar 2026 21:28:09 +0000 Manifest this update: Tue 24 Mar 2026 21:28:08 +0000 Manifest next update: Tue 31 Mar 2026 21:28:08 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: hzu2qXM4kRJZiwoX3G0KVVYes4xOtZ7iRfHtSJ44HbA=) 2: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: hn072ZUt0QkiLvSmGaoI0bZ5eHexJ3APJASDMCiyA2M=) 3: 05F05106586011EE9399A92EC4F9AE02.roa (hash: d5Czd9F+MkzuB9PBir/JbWAghXpmJN+auVy0L4FfZfQ=) 4: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: mr8KwOkVa8RAea/BYVd3YUG6na4L4IGVAN/w6VWKUIw=) 5: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: phlxZambGxwdatRQWNb2Yjt/alGa6e8xzyqiiNU2+mQ=) 6: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: JyT9d9OOCJrRzpFBrxSBmC+CtEx3ZAy2eSQHymf45+s=) 7: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: aSxgIlw8nZiN+6lgLNU5XvZ1FdnFtkSevs0pTTJMvJY=) 8: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: GtRv2G1MeWMHZlw+kEpfpaWB79CdGXzgFC1k73nj5d0=) 9: 34956990D75511EF80E68A39C4F9AE02.roa (hash: t2VblrPsPkg3OLGXiwM69R4XdRcwB3mySF4/73qDgbo=) 10: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: vtp4YKFz/A5Vi0zg64GLZs1k3ocvwIIzZCuiJxmejGs=) 11: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 4thkndOJT3+vXRn8C465Fs6jq2L+GeTYNEVafFWoUXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1932 (0x78c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Mar 24 21:28:08 2026 GMT Not After : Mar 31 21:28:08 2026 GMT Subject: CN=69c301e9-6df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:88:a3:de:2d:2f:76:8c:eb:8a:4c:4c:9e:bc: a7:71:ab:a8:a4:ad:42:90:56:28:80:52:fc:73:ec: c9:55:c7:e1:e3:9c:37:05:3e:40:72:82:0a:5a:63: df:6b:6f:cc:cd:37:68:9b:46:bc:cc:0e:30:17:c1: 76:0c:57:eb:f4:fc:10:12:37:61:32:e6:74:75:1c: 12:8c:d3:8e:84:af:b0:08:da:09:2a:4e:28:57:26: e1:b0:a2:fe:e5:b9:6c:9e:25:e7:91:02:8f:54:df: de:23:a4:27:a3:a1:85:08:97:81:fb:eb:e2:06:5b: 0e:52:5c:75:01:0d:f8:62:67:5b:ab:dc:30:f6:02: 0b:06:75:48:ec:2f:93:98:ff:dd:6a:8b:31:8c:cc: dc:0b:f7:72:7d:1d:e5:54:57:bc:29:a9:98:f6:14: b7:e9:75:55:03:0c:db:8d:4d:2a:3e:4f:89:90:c6: 01:2d:e7:75:28:7c:2d:fe:ec:5e:c3:4e:54:11:40: 4a:38:82:e9:40:1f:63:a4:75:ed:39:52:e6:84:10: 2c:ec:98:f8:b1:a6:c5:d4:aa:e6:85:23:c4:de:62: f9:e1:6f:78:b9:32:2f:9e:57:a2:97:7a:0d:22:b6: fa:ea:03:2b:72:fc:07:45:47:a8:2a:69:fe:1b:10: 18:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EE:28:59:01:85:B0:35:E0:EC:1B:D4:32:B9:E1:FE:63:8E:ED:CF X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b6:ea:25:44:83:a4:49:69:cc:d6:aa:51:b5:25:28:5e:bd: 92:2b:1f:34:8d:06:88:d8:03:93:d3:fe:00:39:05:71:a2:3e: 68:30:ed:5d:2e:15:f2:76:6c:a0:c1:d5:8d:29:14:0a:d4:18: 38:96:fc:b7:77:a9:08:fb:aa:e0:99:12:14:d1:1b:70:6d:7c: 37:22:3c:4e:3a:6e:f3:a0:4c:5a:33:ef:ef:ab:c6:e8:43:7d: 41:93:be:41:95:18:ab:26:09:86:86:66:68:e3:d5:bc:fb:7f: 53:d3:d6:5e:6a:f8:15:36:b3:6f:0a:2d:ef:0a:4e:47:5a:db: 0d:a8:c7:5f:14:9f:a2:51:c0:4a:0e:8b:60:c4:e4:11:03:d8: ee:b5:95:bc:09:62:3c:02:3d:50:99:4a:70:51:eb:68:c6:2a: be:2f:90:31:90:b6:e5:48:05:1c:b9:ef:78:aa:09:23:92:09: 8f:b6:5e:e0:b6:2f:db:76:09:ab:4f:4b:f5:70:4c:cd:bf:4e: 1e:a6:ef:e0:7d:d6:29:bf:6d:74:53:04:9f:e5:50:ff:8c:37: fb:82:18:94:b6:14:a8:3a:a3:b0:35:59:74:a8:27:ec:3c:e6: 0b:30:95:4b:17:97:4b:6d:93:c2:29:75:31:1d:3d:b2:f5:9b: c3:15:ca:5e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjYwMzI0MjEyODA4WhcNMjYwMzMxMjEyODA4WjAYMRYwFAYD VQQDEw02OWMzMDFlOS02ZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYij3i0vdozrikxMnryncauopK1CkFYogFL8c+zJVcfh45w3BT5AcoIKWmPf a2/MzTdom0a8zA4wF8F2DFfr9PwQEjdhMuZ0dRwSjNOOhK+wCNoJKk4oVybhsKL+ 5blsniXnkQKPVN/eI6Qno6GFCJeB++viBlsOUlx1AQ34Ymdbq9ww9gILBnVI7C+T mP/daosxjMzcC/dyfR3lVFe8KamY9hS36XVVAwzbjU0qPk+JkMYBLed1KHwt/uxe w05UEUBKOILpQB9jpHXtOVLmhBAs7Jj4sabF1KrmhSPE3mL54W94uTIvnleil3oN Irb66gMrcvwHRUeoKmn+GxAYnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKfuKFkB hbA14Owb1DK54f5jju3PMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyLbqJUSDpElpzNaqUbUlKF69kisfNI0GiNgDk9P+ADkFcaI+aDDtXS4V8nZs oMHVjSkUCtQYOJb8t3epCPuq4JkSFNEbcG18NyI8Tjpu86BMWjPv76vG6EN9QZO+ QZUYqyYJhoZmaOPVvPt/U9PWXmr4FTazbwot7wpOR1rbDajHXxSfolHASg6LYMTk EQPY7rWVvAliPAI9UJlKcFHraMYqvi+QMZC25UgFHLnveKoJI5IJj7Ze4LYv23YJ q09L9XBMzb9OHqbv4H3WKb9tdFMEn+VQ/4w3+4IYlLYUqDqjsDVZdKgn7DzmCzCV SxeXS22Twil1MR09svWbwxXKXg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:49:27 2026 by rpki-client