$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: IoXVUXs6AMihZIKGWgqAiKz9dIC8MVGL5pEP9NqO6gE= Subject key identifier: 90:02:B7:6F:4F:AB:5F:1C:73:B1:7D:79:C4:C8:4E:37:A6:BC:46:1F Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0BC5 Signing time: Tue 24 Mar 2026 18:46:59 +0000 Manifest this update: Tue 24 Mar 2026 18:46:58 +0000 Manifest next update: Tue 31 Mar 2026 18:46:58 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: 1BO5TRBOB+sS4oGACJQDuIQvkbq1ajpibDd5DAeNQRw=) 2: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: avhdzluktcTaPNlKm0CJ2cLBjs4VkOW1cKeJBnenY/0=) 3: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: 4Z5iYLEtKBfjWooahsTM+JCERTIB6b3TIat4TqCaYIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: Mar 24 18:46:58 2026 GMT Not After : Mar 31 18:46:58 2026 GMT Subject: CN=69c2dc23-55eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a0:44:be:de:bb:2d:3a:4d:60:5b:94:2f:67: 07:9d:6f:a1:d3:c8:10:65:7c:3b:68:46:be:85:e0: e8:db:68:b2:71:2c:cf:3f:09:ca:aa:b7:97:5b:e0: 26:9c:06:eb:e8:88:c2:e7:ae:29:4d:61:1e:a1:ac: 12:40:36:e5:cf:ca:80:f4:c5:a5:8c:04:30:22:91: 4a:de:b7:51:9d:68:1f:dd:a6:b7:42:04:d3:8b:3f: c8:72:fb:cf:9a:18:c4:d5:e3:ad:af:61:95:d9:09: 8c:22:7a:55:dd:8e:bf:e7:19:77:44:bc:ff:ac:3f: bc:93:a8:2a:6d:33:74:9b:f7:6c:64:6b:4b:72:5f: 63:bf:ce:31:a9:37:3e:70:a5:e6:d9:73:18:1b:98: 9b:29:c9:4a:48:df:02:d7:17:ae:0a:62:29:e0:08: 3f:9e:2d:6e:d5:ad:01:07:27:3e:6e:a1:b1:cf:06: ab:15:a4:96:56:3d:cd:76:8b:1c:9f:66:1b:4c:25: 97:e9:29:1f:7c:32:46:32:f2:fa:be:e5:20:66:51: 36:fb:ab:e4:e6:f0:8e:77:da:01:d0:a2:10:68:05: db:10:04:4f:63:bd:ac:b7:10:47:1e:f0:61:74:6a: f6:e5:d7:89:70:3b:7c:d5:8d:0c:84:10:66:f5:8d: 5d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:02:B7:6F:4F:AB:5F:1C:73:B1:7D:79:C4:C8:4E:37:A6:BC:46:1F X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:cd:ad:4a:b6:2d:10:aa:c0:39:ab:50:96:ff:c6:fa:87:b5: 9f:2c:8b:d1:fd:19:03:46:5f:94:3e:c3:9e:d5:89:75:3a:0a: 5b:f6:70:b9:87:48:a4:0a:3e:10:bb:7e:30:02:d3:bb:fd:4c: c1:27:4f:cf:22:ef:e1:a9:66:8b:be:0c:bf:67:9d:e3:1b:01: f5:3b:b1:a0:85:f0:a4:55:a8:e4:45:22:93:a0:07:e3:6c:f0: 23:9d:c4:f5:dd:16:a0:9b:a0:94:01:c8:ac:cc:54:76:41:3f: 62:a2:d7:a8:c7:5a:8c:4a:90:71:0d:a7:56:43:d1:0a:03:f8: 0c:5e:59:16:0f:22:59:d8:b4:3f:76:18:4a:0e:cb:7f:31:0c: 1d:54:a3:fe:bc:99:25:96:30:dd:a7:cd:b7:04:7d:4d:c8:26: fd:47:15:ec:8a:16:0a:89:10:e2:c6:08:db:4d:29:ef:c2:cf: 92:1f:8d:05:85:c5:a3:d8:38:a5:40:3a:c2:40:ef:f8:1e:a1: 41:ec:a2:70:fa:16:b8:74:67:28:d4:6b:35:01:61:3b:28:a1: 28:b5:48:5b:98:af:06:7b:f9:71:f3:da:e0:e3:d4:4b:be:ab: ce:a0:2d:01:1e:43:0b:d0:33:63:8b:12:b4:18:49:e8:04:47: 2f:71:7b:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjYwMzI0MTg0NjU4WhcNMjYwMzMxMTg0NjU4WjAYMRYwFAYD VQQDEw02OWMyZGMyMy01NWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqBEvt67LTpNYFuUL2cHnW+h08gQZXw7aEa+heDo22iycSzPPwnKqreXW+Am nAbr6IjC564pTWEeoawSQDblz8qA9MWljAQwIpFK3rdRnWgf3aa3QgTTiz/IcvvP mhjE1eOtr2GV2QmMInpV3Y6/5xl3RLz/rD+8k6gqbTN0m/dsZGtLcl9jv84xqTc+ cKXm2XMYG5ibKclKSN8C1xeuCmIp4Ag/ni1u1a0BByc+bqGxzwarFaSWVj3Ndosc n2YbTCWX6SkffDJGMvL6vuUgZlE2+6vk5vCOd9oB0KIQaAXbEARPY72stxBHHvBh dGr25deJcDt81Y0MhBBm9Y1d6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJACt29P q18cc7F9ecTITjemvEYfMB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARc2tSrYtEKrAOatQlv/G+oe1nyyL0f0ZA0ZflD7DntWJdToKW/ZwuYdIpAo+ ELt+MALTu/1MwSdPzyLv4almi74Mv2ed4xsB9TuxoIXwpFWo5EUik6AH42zwI53E 9d0WoJuglAHIrMxUdkE/YqLXqMdajEqQcQ2nVkPRCgP4DF5ZFg8iWdi0P3YYSg7L fzEMHVSj/ryZJZYw3afNtwR9Tcgm/UcV7IoWCokQ4sYI200p78LPkh+NBYXFo9g4 pUA6wkDv+B6hQeyicPoWuHRnKNRrNQFhOyihKLVIW5ivBnv5cfPa4OPUS76rzqAt AR5DC9AzY4sStBhJ6ARHL3F7oA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:25 2026 by rpki-client