$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: aj2WSyjwNJFJkxhw0rb0Xb0tNxkAJfoBvOuHL6JB/mU= Subject key identifier: C5:B3:1D:3E:C0:DA:2E:7D:3A:70:11:FE:CF:8B:96:C0:BA:E3:AC:8F Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 141A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 13DE Signing time: Tue 24 Mar 2026 16:52:00 +0000 Manifest this update: Tue 24 Mar 2026 16:51:59 +0000 Manifest next update: Tue 31 Mar 2026 16:51:59 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: aV3pbgGHF2z9r5lwhBF1H/T/V/FRWTdZTAfcKKoKDJ4=) 2: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: 388AG09rRUDKvKhyNmxbF15VLGsqHkKaZsreBoM4fr8=) 3: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: WY85OZSDqgP3JecVrbLGH7yASGCrRmcqJRott+5khbE=) 4: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: VFVTymwrp8V+E6BLs3C4Cm25rAuqTUZ0SRrvUpgChQk=) 5: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: Ip5tGE+xBmZzGbuYsKhlox7o+yVLz36sUIXrRO8cJe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5146 (0x141a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Mar 24 16:51:59 2026 GMT Not After : Mar 31 16:51:59 2026 GMT Subject: CN=69c2c130-f794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8d:ba:cc:fa:1c:3a:07:a2:a6:29:eb:27:33: 68:4d:e2:a7:47:37:b3:f5:6d:de:74:2c:5d:53:e6: d8:eb:7e:f9:ea:d5:37:e4:87:06:10:c0:a3:16:88: 99:d8:be:51:21:48:f9:f8:db:9d:2a:3f:3d:90:de: ef:19:b4:b5:bc:82:f8:6c:a3:01:f6:f1:d5:eb:40: 90:01:bb:11:98:45:fb:78:39:80:ed:89:f9:b0:75: e9:d2:eb:2b:e5:62:c5:ef:8c:49:45:24:23:93:c6: b8:86:40:b1:b2:b9:e5:90:ba:4e:ef:6d:23:f4:cb: 57:3e:6f:45:b1:bb:3c:b0:f4:60:ca:cf:94:29:7f: a3:fa:92:6c:05:9e:aa:7d:c3:bb:3e:ed:93:3e:b8: 89:1c:66:c9:8b:4d:f6:7c:51:3a:30:d5:f4:7f:49: db:25:92:5a:0a:7d:3d:f2:39:b9:22:d9:ce:40:17: 14:b6:72:ce:b2:14:fd:bc:1a:2f:cf:e6:e3:ca:61: ea:24:cc:1e:03:4c:01:4a:9d:10:b5:61:c6:40:33: 58:c8:bb:77:d6:ec:72:83:bf:24:0a:27:ee:cd:9f: 9a:c7:2a:5d:37:8e:fb:23:54:ed:06:ed:ef:01:92: 98:ac:57:bc:c0:6c:bb:64:6d:b8:55:17:7f:49:37: 6b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B3:1D:3E:C0:DA:2E:7D:3A:70:11:FE:CF:8B:96:C0:BA:E3:AC:8F X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:9d:9d:1a:f9:95:ea:cb:34:92:dc:c4:5a:4e:71:90:5a:53: 2b:90:ab:d3:bb:4b:a8:99:80:55:8e:4b:6f:58:6e:f4:60:1a: 32:4b:44:24:5a:1a:02:ea:99:e3:63:09:e3:ad:fd:95:ea:e9: 1c:4a:b7:7a:fa:00:b0:5d:9b:eb:f8:88:33:47:34:d1:05:36: 63:96:b4:7a:94:78:cc:01:01:8d:ed:36:68:fa:e9:2c:f7:47: 31:7e:e2:86:11:67:b9:82:59:39:c3:c1:28:d1:04:a3:04:d3: d8:3e:1f:46:10:c7:89:46:14:03:67:13:3f:94:19:41:97:a9: cf:74:2b:67:4f:c3:db:71:2e:96:18:9f:5b:83:7c:7c:4e:1f: 9a:c0:cf:8b:51:67:c4:61:1f:e8:7d:58:0d:6f:8b:37:13:08: 9a:b7:76:fe:f9:98:d2:77:b3:6e:e6:ff:3b:88:c5:7c:06:1e: f8:e9:78:56:62:9e:c6:73:97:eb:b4:c6:c7:ae:c3:2a:ce:a6: 77:c9:95:31:7f:d3:07:ad:a3:cc:3f:c0:58:8b:b4:db:38:78: 31:e0:85:99:3c:d3:08:08:33:8e:91:a0:af:b3:13:c2:12:62: 8e:7f:cb:de:a0:ee:39:b2:80:a6:79:53:bc:8a:b0:1a:d1:22: b9:2e:ae:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjYwMzI0MTY1MTU5WhcNMjYwMzMxMTY1MTU5WjAYMRYwFAYD VQQDEw02OWMyYzEzMC1mNzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz426zPocOgeipinrJzNoTeKnRzez9W3edCxdU+bY63756tU35IcGEMCjFoiZ 2L5RIUj5+NudKj89kN7vGbS1vIL4bKMB9vHV60CQAbsRmEX7eDmA7Yn5sHXp0usr 5WLF74xJRSQjk8a4hkCxsrnlkLpO720j9MtXPm9Fsbs8sPRgys+UKX+j+pJsBZ6q fcO7Pu2TPriJHGbJi032fFE6MNX0f0nbJZJaCn098jm5ItnOQBcUtnLOshT9vBov z+bjymHqJMweA0wBSp0QtWHGQDNYyLt31uxyg78kCifuzZ+axypdN477I1TtBu3v AZKYrFe8wGy7ZG24VRd/STdrrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMWzHT7A 2i59OnAR/s+LlsC646yPMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfZ2dGvmV6ss0ktzEWk5xkFpTK5Cr07tLqJmAVY5Lb1hu9GAaMktEJFoaAuqZ 42MJ4639lerpHEq3evoAsF2b6/iIM0c00QU2Y5a0epR4zAEBje02aPrpLPdHMX7i hhFnuYJZOcPBKNEEowTT2D4fRhDHiUYUA2cTP5QZQZepz3QrZ0/D23EulhifW4N8 fE4fmsDPi1FnxGEf6H1YDW+LNxMImrd2/vmY0nezbub/O4jFfAYe+Ol4VmKexnOX 67TGx67DKs6md8mVMX/TB62jzD/AWIu02zh4MeCFmTzTCAgzjpGgr7MTwhJijn/L 3qDuObKApnlTvIqwGtEiuS6uFQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:34:08 2026 by rpki-client