$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: f6iWhsq83vRbUh1xwBId/1EOMRBhJWWJ4tbGEmOmw/Q= Subject key identifier: 72:53:5A:9D:DB:B0:9D:1D:77:EE:8F:0D:EA:E2:F9:47:33:67:4D:17 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0278 Signing time: Wed 25 Mar 2026 01:30:53 +0000 Manifest this update: Wed 25 Mar 2026 01:30:53 +0000 Manifest next update: Wed 01 Apr 2026 01:30:53 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: oOkgV1hR3EW3izEJ1QTY5QyroP/ubuK7IC6472icTjc=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: Rq+tZUOjeaItK065Mwn6s2PgGSWpFi22osco/w96fYU=) 3: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: D/XxgpTmAqVDQH9jHYni1JxMUh1+GB1xdzs9QThZoNk=) 4: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: PtDZ91mnT8EbY3+b/UvFfpQljI6ctCClP32Mn4w89n8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Mar 25 01:30:53 2026 GMT Not After : Apr 1 01:30:53 2026 GMT Subject: CN=69c33acd-adcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c9:22:3f:4a:bb:35:83:4f:84:f3:24:5e:84: 12:c9:9e:4b:64:3e:b4:16:6a:71:10:a1:33:8f:c3: 8a:98:21:b8:f1:66:40:3a:ce:7b:8e:67:c7:7c:b8: 36:db:de:83:35:47:56:87:87:e7:3d:e5:1d:10:f3: 51:35:1e:b3:65:89:e2:5f:48:d7:af:ca:12:62:f0: 5f:3c:f7:a0:a5:37:99:29:71:08:08:19:18:33:42: 74:1f:00:e1:15:0c:7c:88:4d:cd:08:c8:a2:be:92: e9:20:31:43:ca:29:b0:02:78:e9:96:6d:e5:65:4d: e6:db:d0:aa:55:2b:1b:21:56:35:03:38:ec:ce:b3: 93:e0:28:70:ef:ed:d3:34:f9:a3:03:0c:87:4b:49: 69:27:89:ea:d8:01:f1:1c:96:30:92:13:dc:4f:25: 40:93:3f:79:e0:4a:5e:f9:ec:fa:e5:da:ca:f2:bd: 06:4e:cf:fc:73:99:e7:3c:b7:e7:39:6e:e7:82:2b: 08:82:33:e5:e9:3c:a4:5c:cb:91:40:bf:d8:33:b2: c6:8d:dd:b2:15:58:d2:db:f5:d8:1d:b5:d8:90:3b: ec:e2:64:1f:31:61:b8:c2:7c:c4:3f:03:28:94:18: 8e:e7:5e:6d:58:1a:51:c1:d1:3e:f8:52:96:22:23: 67:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:53:5A:9D:DB:B0:9D:1D:77:EE:8F:0D:EA:E2:F9:47:33:67:4D:17 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:ed:67:9e:39:da:3f:32:71:e7:48:0e:2a:3e:aa:c7:a8:58: 6c:67:27:2e:d1:4c:f6:fe:2b:08:21:da:12:4e:c8:ff:a8:8f: 58:db:9f:da:e0:41:5e:a5:a6:c4:d2:e8:69:4c:97:d9:60:ea: b2:97:a7:e4:21:10:08:48:6b:b2:84:12:04:a1:7b:ad:97:3d: 34:c0:4c:0a:5e:06:aa:89:f3:41:c5:4c:53:a4:8d:15:5e:02: 3c:31:bf:53:4e:6b:22:a5:b7:63:39:a0:1b:4e:78:bd:2f:1b: d8:56:fe:4e:c3:58:b1:41:45:34:2a:91:87:c4:92:e5:76:4a: fc:6d:07:1b:1d:09:62:75:df:ac:35:10:5b:3a:79:74:6b:ce: e1:19:ce:7b:6c:0d:a5:73:f1:75:31:c1:ca:f1:c8:21:63:67: dc:75:72:bc:1f:ac:00:2f:a9:14:6e:7d:c5:37:ab:5a:4f:0f: f8:48:7a:3e:b2:a3:ba:d3:fa:c0:e0:86:b8:34:e2:80:37:65: 68:a9:96:d1:4e:02:56:95:79:9b:23:f1:34:9a:00:4a:b0:18: a2:f8:5d:26:c7:84:6f:c6:fb:d0:10:34:c0:68:c9:ed:80:a7: 61:c9:23:d1:d5:f8:ae:38:87:81:45:21:74:d8:e9:bb:94:a0: 3b:37:41:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjYwMzI1MDEzMDUzWhcNMjYwNDAxMDEzMDUzWjAYMRYwFAYD VQQDEw02OWMzM2FjZC1hZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn8kiP0q7NYNPhPMkXoQSyZ5LZD60FmpxEKEzj8OKmCG48WZAOs57jmfHfLg2 296DNUdWh4fnPeUdEPNRNR6zZYniX0jXr8oSYvBfPPegpTeZKXEICBkYM0J0HwDh FQx8iE3NCMiivpLpIDFDyimwAnjplm3lZU3m29CqVSsbIVY1AzjszrOT4Chw7+3T NPmjAwyHS0lpJ4nq2AHxHJYwkhPcTyVAkz954Epe+ez65drK8r0GTs/8c5nnPLfn OW7ngisIgjPl6TykXMuRQL/YM7LGjd2yFVjS2/XYHbXYkDvs4mQfMWG4wnzEPwMo lBiO515tWBpRwdE++FKWIiNn8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJTWp3b sJ0dd+6PDeri+UczZ00XMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIu1nnjnaPzJx50gOKj6qx6hYbGcnLtFM9v4rCCHaEk7I/6iPWNuf2uBBXqWm xNLoaUyX2WDqspen5CEQCEhrsoQSBKF7rZc9NMBMCl4GqonzQcVMU6SNFV4CPDG/ U05rIqW3YzmgG054vS8b2Fb+TsNYsUFFNCqRh8SS5XZK/G0HGx0JYnXfrDUQWzp5 dGvO4RnOe2wNpXPxdTHByvHIIWNn3HVyvB+sAC+pFG59xTerWk8P+Eh6PrKjutP6 wOCGuDTigDdlaKmW0U4CVpV5myPxNJoASrAYovhdJseEb8b70BA0wGjJ7YCnYckj 0dX4rjiHgUUhdNjpu5SgOzdB0A== -----END CERTIFICATE-----Generated at Thu Mar 26 11:24:10 2026 by rpki-client