$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: n3CRMUj9liYfhrtK0Y4heI9uUvM76ynLZLNgQfJqopA= Subject key identifier: 8E:77:4F:D3:E4:22:E2:BD:65:A4:B1:CE:88:75:61:12:1A:D8:59:19 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 13AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1396 Signing time: Wed 25 Mar 2026 10:25:39 +0000 Manifest this update: Wed 25 Mar 2026 10:25:39 +0000 Manifest next update: Wed 01 Apr 2026 10:25:39 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: ObvkDYgRvJxqRE+r6OfbWgrC+lVTu+Xp7MPmxFXGwJk=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: jPVq1FqdO/7Sa1Zo63l4DDlY46514aXTAgnERyot6WE=) 3: F5B633B2283411F1B1D7DF7FCA833773.roa (hash: phJRFQUQr06dG7WdiHLLqzvwwFNfxlyvNnaDszHIaEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 10:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5034 (0x13aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Mar 25 10:25:39 2026 GMT Not After : Apr 1 10:25:39 2026 GMT Subject: CN=69c3b823-ab3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6e:2c:81:88:39:27:e2:69:22:89:8d:a5:e0: 18:83:00:f4:87:e5:ad:2a:11:69:23:bf:29:5b:4b: a0:3f:15:8d:a2:fe:ec:e1:d8:ee:1b:aa:8e:7f:81: ed:bd:6f:63:f8:cc:44:a4:10:72:14:0f:cd:ce:1c: 8c:5c:62:c9:8f:51:22:f3:cd:8a:cd:ea:3d:b1:04: 2d:88:f2:ea:b4:c3:6c:9f:54:79:91:f8:17:06:3a: 4b:39:14:92:2f:12:14:47:c1:ee:a4:92:9a:1b:06: 62:12:f0:37:e8:04:ed:76:c4:c4:7f:56:b5:0f:5c: b3:ff:92:e4:0e:9b:b3:ff:85:ec:c7:f3:da:77:d3: d5:be:02:aa:fb:fb:c8:90:7c:0c:52:64:78:0a:d5: 22:df:f7:f3:4f:1a:98:67:2d:0e:57:ab:33:c5:59: 37:ab:cf:9e:80:f1:a6:54:0e:5f:5f:f5:79:25:2c: b8:98:3c:4b:25:ea:e2:e1:7c:8e:70:e8:a8:9f:0f: c7:b3:46:e9:52:09:da:51:3d:d1:52:2c:4f:38:b9: 1c:31:c8:a4:56:ff:2c:bb:79:0b:ca:86:ac:73:74: 3d:ad:ff:5a:91:8e:b4:b0:74:b8:4b:70:e2:4f:a6: ee:e6:fd:3d:30:c7:82:d7:d9:ef:97:f4:69:f4:ab: 9a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:77:4F:D3:E4:22:E2:BD:65:A4:B1:CE:88:75:61:12:1A:D8:59:19 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:03:a4:6c:2e:72:b7:85:56:a9:76:4c:4f:f9:cd:5a:9e:54: 06:7d:d7:22:71:7e:26:80:c6:4e:a4:91:79:29:90:5d:8b:2b: bf:fb:e6:1d:b0:11:b7:76:58:64:5a:99:cd:2f:96:cb:5f:1e: 77:b7:14:01:9a:94:a6:d9:28:10:72:f0:5a:22:80:27:c4:b3: 9f:b6:b3:fa:76:56:dc:4c:27:78:ea:89:30:23:7f:2d:39:f9: b6:34:62:f7:16:f0:dd:58:d6:b6:5a:19:87:be:3e:f6:80:d7: 6d:95:ec:51:f8:ac:ec:b1:0d:9a:95:1a:40:63:41:78:87:1f: 63:26:8a:a0:8f:fb:0e:25:56:50:00:98:ae:c6:89:4e:c2:2f: cd:38:d6:58:a2:5d:ee:bd:9a:db:37:51:b2:20:a9:f3:d1:91: d5:41:3b:f2:e4:5e:fc:e3:fb:47:11:bf:84:80:76:85:23:d0: 1e:f0:e7:30:6e:0b:4d:59:58:13:3c:3b:e4:7c:05:b2:02:cd: 98:4d:16:07:69:e8:69:8a:b6:70:a1:b1:a3:1d:95:3e:fa:d4: e9:1f:d8:96:05:00:5f:8e:91:f6:43:d9:80:f8:a0:8a:fe:61: 0e:05:d4:36:c8:17:27:58:ce:80:b9:89:2c:b5:ea:43:dd:31: 84:3a:58:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjYwMzI1MTAyNTM5WhcNMjYwNDAxMTAyNTM5WjAYMRYwFAYD VQQDEw02OWMzYjgyMy1hYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm24sgYg5J+JpIomNpeAYgwD0h+WtKhFpI78pW0ugPxWNov7s4djuG6qOf4Ht vW9j+MxEpBByFA/NzhyMXGLJj1Ei882Kzeo9sQQtiPLqtMNsn1R5kfgXBjpLORSS LxIUR8HupJKaGwZiEvA36ATtdsTEf1a1D1yz/5LkDpuz/4Xsx/Pad9PVvgKq+/vI kHwMUmR4CtUi3/fzTxqYZy0OV6szxVk3q8+egPGmVA5fX/V5JSy4mDxLJeri4XyO cOionw/Hs0bpUgnaUT3RUixPOLkcMcikVv8su3kLyoasc3Q9rf9akY60sHS4S3Di T6bu5v09MMeC19nvl/Rp9KuazQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI53T9Pk IuK9ZaSxzoh1YRIa2FkZMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoQOkbC5yt4VWqXZMT/nNWp5UBn3XInF+JoDGTqSReSmQXYsrv/vmHbARt3ZY ZFqZzS+Wy18ed7cUAZqUptkoEHLwWiKAJ8Szn7az+nZW3EwneOqJMCN/LTn5tjRi 9xbw3VjWtloZh74+9oDXbZXsUfis7LENmpUaQGNBeIcfYyaKoI/7DiVWUACYrsaJ TsIvzTjWWKJd7r2a2zdRsiCp89GR1UE78uRe/OP7RxG/hIB2hSPQHvDnMG4LTVlY Ezw75HwFsgLNmE0WB2noaYq2cKGxox2VPvrU6R/YlgUAX46R9kPZgPigiv5hDgXU NsgXJ1jOgLmJLLXqQ90xhDpYew== -----END CERTIFICATE-----Generated at Thu Mar 26 12:57:31 2026 by rpki-client