$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: SX4aVNt3rDYym6PWVrT5gzouP+Mfo4Jha26Pg+yHEb4= Subject key identifier: 40:2A:8F:92:96:37:53:0F:C7:F2:E7:14:C4:51:91:1E:42:05:B6:FA Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 0240 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 0238 Signing time: Wed 25 Mar 2026 01:57:41 +0000 Manifest this update: Wed 25 Mar 2026 01:57:40 +0000 Manifest next update: Wed 01 Apr 2026 01:57:40 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: EXnfOBxJtiF3xGUel6qa+BI47npLGuYKlU3hkp3Cj04=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: ZjWTn7RPw7EchMonKVaN+HGBpWShBdJZb78EKus3MRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Mar 25 01:57:40 2026 GMT Not After : Apr 1 01:57:40 2026 GMT Subject: CN=69c34114-5a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d2:e9:87:6f:c9:78:89:2f:fa:32:c9:86:47: fc:1c:2d:d9:3d:44:a2:93:c4:ca:9e:23:c1:34:e4: 43:df:1b:24:7e:85:c7:58:0e:ea:55:e7:66:b5:13: e0:5c:78:e0:bb:b7:8d:ae:d3:ab:a6:bd:a4:6c:01: 07:28:05:25:07:db:4c:3c:4f:f5:ac:96:ea:ec:ab: 5f:f4:1f:84:ac:bb:2f:c8:12:8a:99:64:c3:26:d6: d4:f2:5c:60:55:b8:a4:a4:9f:98:5c:9e:b3:d4:e4: ae:07:fd:82:48:9c:5d:9c:0b:e7:18:25:f8:e8:6e: 51:3d:84:5a:7d:b5:43:62:af:84:bc:73:13:bf:a2: 35:a9:eb:0e:e1:d7:5c:02:a5:84:c4:b5:98:1b:f4: b4:24:53:be:19:c7:a1:be:6c:60:be:29:98:3f:97: 43:34:54:a4:2a:3e:5a:59:e1:06:b1:22:44:8c:22: 32:31:05:15:6e:3a:71:4e:f5:63:ff:0f:b4:9a:86: 24:1c:6b:b0:fc:ce:69:3e:6a:16:83:2f:ec:7b:42: b1:46:10:4f:7b:ef:6b:25:29:57:e0:53:58:2b:b8: 3b:dd:1c:68:5a:ce:9c:bf:a8:c5:e0:32:c8:fc:b6: ac:0b:a9:25:3f:56:1c:07:f6:67:a9:3d:fb:b3:d6: c5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2A:8F:92:96:37:53:0F:C7:F2:E7:14:C4:51:91:1E:42:05:B6:FA X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:cd:70:48:19:43:c2:c6:db:9c:9e:da:37:e0:2c:a3:19:06: f9:fa:ef:5b:72:1a:10:59:d5:66:01:82:66:f1:50:2f:6f:14: e0:e7:68:2f:de:40:c9:e5:82:8e:c8:60:44:76:c8:e4:a7:29: 40:17:2b:05:7a:bc:54:98:8c:19:bf:81:49:b2:e8:69:06:e7: a8:16:2e:6e:f2:c0:ed:e5:09:42:73:74:e3:54:a6:d7:bb:49: 75:b1:a4:dd:64:fd:d8:b1:7e:0f:99:e4:fe:6b:6f:3f:1e:a6: 3a:21:49:61:3b:30:c6:29:c0:ad:a7:84:53:1c:8a:ed:81:76: 20:e5:88:0d:2f:ef:d6:09:dc:4e:ba:f4:9d:32:2d:6e:cb:bc: a5:7c:38:fc:bd:ee:a1:c4:f9:a6:64:5d:a6:e7:78:da:4f:d2: 8f:0e:80:87:84:63:4c:29:53:8d:cc:93:72:e4:56:76:4c:d9: c4:61:08:1c:da:f8:3f:4b:2f:16:89:3f:1b:48:28:1a:39:95: 55:35:51:fe:3b:d5:f3:72:d6:1b:bf:9d:ca:dc:d8:d4:72:a0: 86:3c:53:87:3c:8a:07:bf:03:a9:84:99:bf:9f:4f:cb:01:21: b5:5f:6e:14:a3:f7:12:9d:0b:e4:89:67:a8:fe:70:7c:69:14: cf:cd:f7:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjYwMzI1MDE1NzQwWhcNMjYwNDAxMDE1NzQwWjAYMRYwFAYD VQQDEw02OWMzNDExNC01YTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutLph2/JeIkv+jLJhkf8HC3ZPUSik8TKniPBNORD3xskfoXHWA7qVedmtRPg XHjgu7eNrtOrpr2kbAEHKAUlB9tMPE/1rJbq7Ktf9B+ErLsvyBKKmWTDJtbU8lxg VbikpJ+YXJ6z1OSuB/2CSJxdnAvnGCX46G5RPYRafbVDYq+EvHMTv6I1qesO4ddc AqWExLWYG/S0JFO+GcehvmxgvimYP5dDNFSkKj5aWeEGsSJEjCIyMQUVbjpxTvVj /w+0moYkHGuw/M5pPmoWgy/se0KxRhBPe+9rJSlX4FNYK7g73RxoWs6cv6jF4DLI /LasC6klP1YcB/ZnqT37s9bFGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEAqj5KW N1MPx/LnFMRRkR5CBbb6MB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfc1wSBlDwsbbnJ7aN+AsoxkG+frvW3IaEFnVZgGCZvFQL28U4OdoL95AyeWC jshgRHbI5KcpQBcrBXq8VJiMGb+BSbLoaQbnqBYubvLA7eUJQnN041Sm17tJdbGk 3WT92LF+D5nk/mtvPx6mOiFJYTswxinAraeEUxyK7YF2IOWIDS/v1gncTrr0nTIt bsu8pXw4/L3uocT5pmRdpud42k/Sjw6Ah4RjTClTjcyTcuRWdkzZxGEIHNr4P0sv Fok/G0goGjmVVTVR/jvV83LWG7+dytzY1HKghjxThzyKB78DqYSZv59PywEhtV9u FKP3Ep0L5IlnqP5wfGkUz833EA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:06:45 2026 by rpki-client