$ rpki-client -vvf rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft File: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft (raw, json) Hash identifier: 0f67q47JTR/jz6sRmPnm3dVM9B5lEM3uBdECyrbrFfw= Subject key identifier: 3D:3F:FD:20:BD:26:CA:6B:65:0E:2E:59:C5:07:24:4E:61:4B:2E:87 Authority key identifier: 84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A Certificate issuer: /CN=A918EC78/serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Certificate serial: 0B25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft Manifest number: 0B18 Signing time: Tue 24 Mar 2026 19:06:42 +0000 Manifest this update: Tue 24 Mar 2026 19:06:42 +0000 Manifest next update: Tue 31 Mar 2026 19:06:42 +0000 Files and hashes: 1: hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl (hash: MeQsyvqcOb59JmwnUv8JVtuC5wuB7e43Q/Q1a53d+zM=) 2: BF77D1785DCB11EA880A7643C4F9AE02.roa (hash: A0fYtG6N2BexE9W0qntrNVFN6Gcpgpfkbf4hLPy3YFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EC78, serialNumber=848A79AB5041E71CE62250B57FC1E0F54978C93A Validity Not Before: Mar 24 19:06:42 2026 GMT Not After : Mar 31 19:06:42 2026 GMT Subject: CN=69c2e0c2-30cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:e3:83:46:49:ac:18:1b:cf:c9:e9:a5:b3: 38:68:59:55:af:5a:48:58:94:6f:fb:22:9b:45:6e: b5:67:40:db:b9:6a:48:93:ca:49:3f:1d:a3:74:ca: 06:b7:c0:5c:3d:7d:28:12:ca:b6:51:cc:02:73:75: ac:15:1a:8e:d2:ec:08:30:21:11:de:99:bd:ce:ff: 00:97:33:a2:97:07:12:f0:15:a2:7b:ed:13:f3:49: 3d:92:ee:ed:54:5a:4f:45:ac:b3:ad:fc:de:26:65: aa:51:b5:ba:b6:5d:a6:c2:f6:8b:52:9a:f9:5e:91: ad:c2:89:4b:60:6e:79:17:24:0d:3d:93:d8:23:89: 42:bc:4a:b5:22:1e:2c:6a:a3:50:b8:44:eb:e7:08: c9:30:84:bc:86:43:b3:b2:b2:23:5f:12:73:9d:1e: 4a:1e:cb:48:31:7e:06:63:2b:d2:77:d7:b2:13:bf: e4:9b:f9:a1:a1:53:c5:4f:38:e2:82:97:ee:aa:9c: 1e:78:5a:46:09:9c:da:3e:8f:99:5c:93:ba:9a:2b: ad:f8:ab:5a:f2:28:3c:fc:04:49:95:5e:e1:95:b9: bc:2a:8e:64:f8:c1:43:db:60:30:81:e0:ad:4f:3c: dc:a9:70:b5:3a:21:a7:79:46:b4:a5:e5:63:81:91: 2d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:3F:FD:20:BD:26:CA:6B:65:0E:2E:59:C5:07:24:4E:61:4B:2E:87 X509v3 Authority Key Identifier: keyid:84:8A:79:AB:50:41:E7:1C:E6:22:50:B5:7F:C1:E0:F5:49:78:C9:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EC78/192EFF085DCB11EA84E02943C4F9AE02/hIp5q1BB5xzmIlC1f8Hg9Ul4yTo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:21:d4:bf:1c:b2:f4:5b:4e:d1:7d:f6:a4:89:5d:e9:49:f5: da:5b:ed:c4:af:ff:12:93:30:0c:2a:bf:6c:56:e4:a3:8e:fb: 03:76:5c:61:22:c0:a2:c1:4a:b4:48:79:ff:07:ad:e9:fa:00: 10:13:e2:02:b5:5c:1c:81:6a:4b:e8:ed:18:22:bb:dc:f9:86: 32:15:47:da:c4:0d:00:8d:db:a9:ef:9f:a6:a6:91:0c:1f:21: 5b:84:35:87:15:a3:93:19:1c:3b:bf:7b:40:c1:ae:83:23:7c: 87:48:ee:90:32:49:70:74:05:fe:ea:8e:37:e2:fd:34:96:d7: 5e:f3:07:31:11:26:c0:83:7e:91:89:1d:c2:79:0c:4e:1c:3b: 57:2f:b6:40:23:07:1e:a3:54:f0:36:97:17:0f:5b:f8:27:77: 22:a3:22:94:e9:88:81:bf:d0:e5:3d:80:fe:9a:fe:3a:31:e8: 3a:da:fd:20:b1:cd:75:8c:74:8f:c4:60:b5:2c:ff:70:1d:8e: 36:4b:d7:42:a6:c3:0a:da:be:87:7b:ec:6f:8d:54:73:4a:22: 68:c7:05:79:20:58:65:df:31:2a:f7:98:82:4d:75:fd:42:f1: 93:a2:2e:c2:81:e6:7e:61:98:e9:7b:db:21:37:ae:7a:af:bf: e0:f3:2d:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVDNzgxMTAvBgNVBAUTKDg0OEE3OUFCNTA0MUU3MUNFNjIyNTBCNTdGQzFFMEY1 NDk3OEM5M0EwHhcNMjYwMzI0MTkwNjQyWhcNMjYwMzMxMTkwNjQyWjAYMRYwFAYD VQQDEw02OWMyZTBjMi0zMGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFjjg0ZJrBgbz8nppbM4aFlVr1pIWJRv+yKbRW61Z0DbuWpIk8pJPx2jdMoG t8BcPX0oEsq2UcwCc3WsFRqO0uwIMCER3pm9zv8AlzOilwcS8BWie+0T80k9ku7t VFpPRayzrfzeJmWqUbW6tl2mwvaLUpr5XpGtwolLYG55FyQNPZPYI4lCvEq1Ih4s aqNQuETr5wjJMIS8hkOzsrIjXxJznR5KHstIMX4GYyvSd9eyE7/km/mhoVPFTzji gpfuqpweeFpGCZzaPo+ZXJO6miut+Kta8ig8/ARJlV7hlbm8Ko5k+MFD22AwgeCt TzzcqXC1OiGneUa0peVjgZEtfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD0//SC9 JsprZQ4uWcUHJE5hSy6HMB8GA1UdIwQYMBaAFISKeatQQecc5iJQtX/B4PVJeMk6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUM3OC8xOTJFRkYwODVE Q0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4em1JbEMxZjhIZzlVbDR5 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJcDVxMUJCNXh6bUlsQzFmOEhnOVVsNHlUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUM3OC8xOTJFRkYwODVEQ0IxMUVBODRFMDI5NDNDNEY5QUUwMi9oSXA1cTFCQjV4 em1JbEMxZjhIZzlVbDR5VG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfiHUvxyy9FtO0X32pIld6Un12lvtxK//EpMwDCq/bFbko477A3ZcYSLAosFK tEh5/wet6foAEBPiArVcHIFqS+jtGCK73PmGMhVH2sQNAI3bqe+fpqaRDB8hW4Q1 hxWjkxkcO797QMGugyN8h0jukDJJcHQF/uqON+L9NJbXXvMHMREmwIN+kYkdwnkM Thw7Vy+2QCMHHqNU8DaXFw9b+Cd3IqMilOmIgb/Q5T2A/pr+OjHoOtr9ILHNdYx0 j8RgtSz/cB2ONkvXQqbDCtq+h3vsb41Uc0oiaMcFeSBYZd8xKveYgk11/ULxk6Iu woHmfmGY6XvbITeueq+/4PMtVw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:44:37 2026 by rpki-client