$ rpki-client -vvf rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.mft File: Si40gGAMyq6JEirTWopQhmCKce0.mft (raw, json) Hash identifier: jzJCWxvAri0bKgYzip6Fv/tGLsPUYJjk9flgF+YAeD0= Subject key identifier: 0E:62:10:A5:EF:DE:03:C2:F5:F6:AA:20:B4:C0:72:B5:AB:9B:FD:14 Authority key identifier: 4A:2E:34:80:60:0C:CA:AE:89:12:2A:D3:5A:8A:50:86:60:8A:71:ED Certificate issuer: /CN=A919603C/serialNumber=4A2E3480600CCAAE89122AD35A8A5086608A71ED Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Si40gGAMyq6JEirTWopQhmCKce0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.mft Manifest number: 2A Signing time: Wed 25 Mar 2026 07:55:35 +0000 Manifest this update: Wed 25 Mar 2026 07:55:35 +0000 Manifest next update: Wed 01 Apr 2026 07:55:35 +0000 Files and hashes: 1: Si40gGAMyq6JEirTWopQhmCKce0.crl (hash: CvKw6z0i6m3y52cjbXajO8sSHuqZUE2dFFCZt9g0a40=) 2: 6D31F08EED3411F08AC2355C496F56BC.roa (hash: twXZ1+cMtQnbloMYaJZUKgoR86O6NyBBWpia0F1MIzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.crl rsync://rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Si40gGAMyq6JEirTWopQhmCKce0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919603C, serialNumber=4A2E3480600CCAAE89122AD35A8A5086608A71ED Validity Not Before: Mar 25 07:55:35 2026 GMT Not After : Apr 1 07:55:35 2026 GMT Subject: CN=69c394f7-bfa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:a7:e8:c0:4d:da:51:14:c0:30:ec:d0:21: 48:3d:98:1c:af:77:94:e9:97:2d:d1:ae:a1:3a:d3: d1:06:2a:81:59:4f:6a:c3:4f:f9:1f:e9:ce:65:2b: c9:37:88:88:70:7d:83:0d:1e:29:61:a7:d7:2c:2a: ff:64:74:56:3c:68:bb:93:dc:cd:9e:03:cd:91:f2: c8:37:62:a0:fb:af:c7:33:a0:dc:d1:90:2e:e9:f1: 52:60:83:3e:02:2c:f4:fc:27:73:34:cf:0f:bb:67: 9f:7d:f4:11:77:65:09:ea:d3:c8:54:77:ff:fe:a1: 9e:e8:fb:f1:ff:e7:f5:30:6d:b6:40:70:47:d4:d1: 62:81:52:f1:b7:9e:83:b5:48:f5:30:53:90:40:d0: 7a:33:2a:cd:eb:44:b0:2d:d3:23:c6:45:12:26:aa: c6:07:e3:ef:19:11:bb:7a:2c:7e:5a:f4:d5:88:6c: 97:df:e1:c4:47:d1:c2:e4:9a:16:83:f9:98:8d:58: 32:9b:19:00:ce:1a:5c:e0:a4:2c:38:e0:25:92:8a: f8:09:03:d0:fb:e6:22:de:44:cd:66:dd:c4:ee:ad: 2f:3f:ec:6e:1d:d2:b5:de:6e:64:6a:e2:f4:51:5f: a3:d1:b5:eb:4e:4a:91:a7:e4:94:cd:32:3b:e9:a9: 4a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:62:10:A5:EF:DE:03:C2:F5:F6:AA:20:B4:C0:72:B5:AB:9B:FD:14 X509v3 Authority Key Identifier: keyid:4A:2E:34:80:60:0C:CA:AE:89:12:2A:D3:5A:8A:50:86:60:8A:71:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Si40gGAMyq6JEirTWopQhmCKce0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919603C/D9BDF23AED3311F096BA5E0B496F56BC/Si40gGAMyq6JEirTWopQhmCKce0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:78:78:26:93:25:2e:29:9f:f3:dd:58:ac:d0:06:17:1b:84: d3:b1:bd:1d:25:4e:f4:d4:f8:b0:c5:00:fe:e4:6a:72:72:c2: ae:bc:c9:2c:b0:ab:ea:4f:89:6e:40:e7:de:ea:9d:66:7e:24: 73:a9:5b:2d:30:b8:c6:cd:56:ca:d0:3d:1f:6f:83:19:78:c2: 46:ee:29:3a:82:a0:1c:11:3e:40:ab:77:39:bf:17:eb:94:d8: 65:db:b1:4f:7d:76:4b:73:90:e2:ed:50:ec:2d:70:62:70:39: 44:a5:7e:0a:2a:e8:2d:f6:38:6e:00:d9:c7:cd:55:4e:c4:0b: 41:fc:26:45:e9:74:16:87:ab:29:61:3d:dc:c1:52:cd:4b:f8: 86:e9:ae:aa:98:8b:00:06:aa:4a:71:c5:be:a2:b4:f4:70:27: fc:33:60:f2:6b:88:8e:29:5a:f4:cf:64:9a:9d:05:69:a6:b7: b3:ef:52:29:6d:d0:13:50:bf:1a:ab:7e:78:65:ac:6b:1d:6a: 17:49:17:be:4f:70:62:0c:29:8e:a3:f9:f5:c4:9b:93:0a:67: c0:30:14:17:18:53:a0:fa:06:1f:48:a8:32:a7:7c:1d:a5:7b: 65:ec:52:31:9a:a6:6f:a2:6a:2f:03:b6:d6:a7:db:93:a7:20: 46:f6:7a:78 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjAzQzExMC8GA1UEBRMoNEEyRTM0ODA2MDBDQ0FBRTg5MTIyQUQzNUE4QTUwODY2 MDhBNzFFRDAeFw0yNjAzMjUwNzU1MzVaFw0yNjA0MDEwNzU1MzVaMBgxFjAUBgNV BAMTDTY5YzM5NGY3LWJmYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2nqfowE3aURTAMOzQIUg9mByvd5Tply3RrqE609EGKoFZT2rDT/kf6c5lK8k3 iIhwfYMNHilhp9csKv9kdFY8aLuT3M2eA82R8sg3YqD7r8czoNzRkC7p8VJggz4C LPT8J3M0zw+7Z5999BF3ZQnq08hUd//+oZ7o+/H/5/UwbbZAcEfU0WKBUvG3noO1 SPUwU5BA0HozKs3rRLAt0yPGRRImqsYH4+8ZEbt6LH5a9NWIbJff4cRH0cLkmhaD +ZiNWDKbGQDOGlzgpCw44CWSivgJA9D75iLeRM1m3cTurS8/7G4d0rXebmRq4vRR X6PRtetOSpGn5JTNMjvpqUoNAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUDmIQpe/e A8L19qogtMBytaub/RQwHwYDVR0jBBgwFoAUSi40gGAMyq6JEirTWopQhmCKce0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2MDNDL0Q5QkRGMjNBRUQz MzExRjA5NkJBNUUwQjQ5NkY1NkJDL1NpNDBnR0FNeXE2SkVpclRXb3BRaG1DS2Nl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU2k0MGdHQU15cTZKRWlyVFdvcFFobUNLY2UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 MDNDL0Q5QkRGMjNBRUQzMzExRjA5NkJBNUUwQjQ5NkY1NkJDL1NpNDBnR0FNeXE2 SkVpclRXb3BRaG1DS2NlMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA1eHgmkyUuKZ/z3Vis0AYXG4TTsb0dJU701PiwxQD+5GpycsKuvMkssKvqT4lu QOfe6p1mfiRzqVstMLjGzVbK0D0fb4MZeMJG7ik6gqAcET5Aq3c5vxfrlNhl27FP fXZLc5Di7VDsLXBicDlEpX4KKugt9jhuANnHzVVOxAtB/CZF6XQWh6spYT3cwVLN S/iG6a6qmIsABqpKccW+orT0cCf8M2Dya4iOKVr0z2SanQVpprez71IpbdATUL8a q354ZaxrHWoXSRe+T3BiDCmOo/n1xJuTCmfAMBQXGFOg+gYfSKgyp3wdpXtl7FIx mqZvomovA7bWp9uTpyBG9np4 -----END CERTIFICATE-----Generated at Thu Mar 26 14:36:51 2026 by rpki-client