$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft File: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft (raw, json) Hash identifier: zwlwtJ/Tfx2mmxmyx1ZZt+MldHYRJI+KPnqip3QG2iY= Subject key identifier: 83:4C:7A:7D:F3:D1:2C:72:B5:6E:0D:A3:9B:2C:C7:05:A7:CB:B9:91 Authority key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 Certificate issuer: /CN=A919DC79/serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft Manifest number: 0C40 Signing time: Thu 26 Mar 2026 18:41:03 +0000 Manifest this update: Thu 26 Mar 2026 18:41:03 +0000 Manifest next update: Thu 02 Apr 2026 18:41:03 +0000 Files and hashes: 1: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl (hash: SaqSeoJynQSUKvZBLjfBMJjMChFgGAWgK9i9eyacjkE=) 2: 7AC6992E655411F088401528C4F9AE02.roa (hash: pTt0bboHk4i5KvWhd2IOroHa91kNethIzbOKv9fQupQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Validity Not Before: Mar 26 18:41:03 2026 GMT Not After : Apr 2 18:41:03 2026 GMT Subject: CN=69c57dbf-1fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:23:d2:fd:99:3e:ff:14:9a:cf:71:b2:a7:2e: ad:47:52:c5:f0:63:5b:3f:bc:c9:2a:17:49:01:cf: 39:f4:60:45:6a:05:d8:9b:ec:02:7d:9b:1f:74:bd: 27:d0:53:5f:d5:52:3d:cf:12:13:0a:21:55:c2:d8: cb:49:dc:26:11:33:e1:c3:80:71:ef:7c:cf:04:5d: 5b:ef:a1:3e:e9:ba:1f:a4:42:fd:6c:d5:95:64:a8: 79:89:5e:c8:cd:6f:64:dd:66:1a:15:35:ae:31:d1: ea:f3:a4:4c:54:f6:81:99:79:a3:8e:a3:f7:d3:57: 34:02:2b:14:dd:53:4e:44:b0:f7:64:a9:b2:9b:9d: ea:76:5e:cb:a3:f7:f5:3b:21:d9:9a:80:ce:6e:67: 67:3b:3b:7d:89:74:b8:d3:d9:43:db:b1:4a:1d:99: 75:60:50:39:91:5c:10:fe:46:b1:fa:56:38:ec:96: fb:6d:89:05:3d:88:08:d8:0d:96:69:92:21:c1:6b: 09:b7:d5:3e:5c:7e:d1:8e:53:a0:b6:bc:1a:06:8e: 97:8e:1e:d3:ce:b6:9e:36:d3:0d:71:40:f7:14:ef: fd:b3:36:30:3e:e0:13:fa:94:b7:62:c2:fe:58:f1: be:6c:9e:f4:3f:e9:0a:ff:1b:a6:37:32:ec:08:bc: 59:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4C:7A:7D:F3:D1:2C:72:B5:6E:0D:A3:9B:2C:C7:05:A7:CB:B9:91 X509v3 Authority Key Identifier: keyid:76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:7f:75:18:2f:78:24:45:2f:24:6a:eb:7a:02:28:ce:bb:d1: 69:aa:a0:d4:73:50:21:a0:74:60:7c:0e:37:93:36:df:db:c6: 74:e3:d5:d5:64:c1:ef:ee:09:9b:19:f3:52:13:bd:f1:de:3b: 57:db:49:88:7d:74:d3:6b:8e:75:7e:a3:e3:1d:6a:db:19:65: 98:d6:4f:2d:4d:e0:a8:3b:35:99:79:52:f7:d1:91:a6:51:6b: c8:16:1b:30:62:2c:d3:d9:0d:b2:e0:15:db:36:87:d5:a7:c2: b2:8d:e4:88:be:68:bd:1a:46:34:ae:cb:32:99:35:7d:f8:8d: 20:75:6b:95:70:83:da:13:ba:cc:28:6a:02:5f:72:66:bb:33: 30:11:43:0a:d9:38:74:1b:45:90:e6:92:8f:bc:72:65:b8:70: 74:d1:82:c1:7f:3c:fe:9b:eb:f1:b3:9e:3d:f1:95:95:54:cc: cd:f3:43:bb:7c:33:f1:58:8b:4a:49:aa:7c:47:c2:1e:38:c2: bb:9d:1c:9d:8a:21:a4:c7:bf:f6:32:97:93:3f:66:3c:06:1c: 81:03:42:a8:1c:e4:de:4e:1d:fc:c0:3f:d1:fa:e1:d1:4c:7b: 4f:8f:4a:01:76:21:76:90:fd:39:71:20:a7:46:ed:95:f3:d4: 37:b6:63:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzkxMTAvBgNVBAUTKDc2Q0QwMjFFMEMyODFEQTVGRTY0RDg3ODAzNTUzODA4 ODg5QTExNjcwHhcNMjYwMzI2MTg0MTAzWhcNMjYwNDAyMTg0MTAzWjAYMRYwFAYD VQQDEw02OWM1N2RiZi0xZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyPS/Zk+/xSaz3Gypy6tR1LF8GNbP7zJKhdJAc859GBFagXYm+wCfZsfdL0n 0FNf1VI9zxITCiFVwtjLSdwmETPhw4Bx73zPBF1b76E+6bofpEL9bNWVZKh5iV7I zW9k3WYaFTWuMdHq86RMVPaBmXmjjqP301c0AisU3VNORLD3ZKmym53qdl7Lo/f1 OyHZmoDObmdnOzt9iXS409lD27FKHZl1YFA5kVwQ/kax+lY47Jb7bYkFPYgI2A2W aZIhwWsJt9U+XH7RjlOgtrwaBo6Xjh7TzraeNtMNcUD3FO/9szYwPuAT+pS3YsL+ WPG+bJ70P+kK/xumNzLsCLxZYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFINMen3z 0SxytW4No5ssxwWny7mRMB8GA1UdIwQYMBaAFHbNAh4MKB2l/mTYeANVOAiImhFn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3OS9BNjNGOTNENjI3 Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hhWC1aTmg0QTFVNENJaWFF V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMENIZ3dvSGFYLVpOaDRBMVU0Q0lpYUVXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REM3OS9BNjNGOTNENjI3Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hh WC1aTmg0QTFVNENJaWFFV2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVH91GC94JEUvJGrregIozrvRaaqg1HNQIaB0YHwON5M239vGdOPV1WTB7+4J mxnzUhO98d47V9tJiH1002uOdX6j4x1q2xllmNZPLU3gqDs1mXlS99GRplFryBYb MGIs09kNsuAV2zaH1afCso3kiL5ovRpGNK7LMpk1ffiNIHVrlXCD2hO6zChqAl9y ZrszMBFDCtk4dBtFkOaSj7xyZbhwdNGCwX88/pvr8bOePfGVlVTMzfNDu3wz8ViL SkmqfEfCHjjCu50cnYohpMe/9jKXkz9mPAYcgQNCqBzk3k4d/MA/0frh0Ux7T49K AXYhdpD9OXEgp0btlfPUN7ZjoA== -----END CERTIFICATE-----Generated at Thu Mar 26 22:27:43 2026 by rpki-client