$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: jF6y6xLqcy4/xwPgfrJVI3L1Ii/Hwh/bEryDTGa+FpA= Subject key identifier: DE:B1:03:99:9E:04:61:1F:8E:46:56:1E:69:52:10:2D:42:33:9E:2D Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 35DC Signing time: Tue 24 Mar 2026 14:59:04 +0000 Manifest this update: Tue 24 Mar 2026 14:59:04 +0000 Manifest next update: Tue 31 Mar 2026 14:59:04 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: hNwIYiEQvT49/IsIlYHzIs14XF+SOEwT1piJMHpR44A=) 2: 7E9AB614268F11F1809EA271B6833773.roa (hash: LfL1qgct7s9A78jWSOYPbYR71D4pCSzR81xKFvr3q4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13922 (0x3662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Mar 24 14:59:04 2026 GMT Not After : Mar 31 14:59:04 2026 GMT Subject: CN=69c2a6b8-ff99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:6e:4f:73:d9:83:80:8d:26:22:72:14:48: 19:07:58:92:af:c0:eb:d5:a7:a9:44:10:7c:bd:a3: ab:8c:03:d2:31:80:73:7d:04:0f:df:3a:7f:8f:e4: cc:28:48:6a:42:2a:b6:8d:14:b6:e0:92:76:5e:a9: 1c:1a:3f:b9:b0:51:cd:03:d0:b3:4d:3c:e3:43:12: fd:68:2e:ba:04:70:6e:ae:97:5e:b7:9f:40:35:50: 76:bd:60:a4:c3:58:aa:5a:67:8f:71:c8:16:a9:f1: 1b:9f:6f:47:65:a3:85:7a:07:4e:8b:0e:08:c4:fa: 9d:87:14:33:2d:c8:da:73:a1:e6:89:1f:05:4a:fa: e1:92:32:a3:31:19:a8:21:0d:21:b8:45:11:8f:fd: c1:f0:72:8a:de:08:cf:a3:de:64:56:d3:4c:50:9a: 02:7b:96:cf:ba:4c:83:ee:61:25:39:48:74:49:a3: 7c:96:74:f4:07:b7:41:fb:80:e6:9f:9e:f2:e1:1a: 32:0b:52:4d:50:f6:56:c6:33:49:45:83:4a:17:eb: 16:a3:cf:1c:00:89:06:e0:2f:2c:c9:fd:46:85:b3: d9:3e:ff:8d:5a:66:02:76:1e:a2:b3:05:92:e2:5b: cc:9f:e3:1b:14:a2:37:d6:76:60:02:61:8c:fd:63: 17:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B1:03:99:9E:04:61:1F:8E:46:56:1E:69:52:10:2D:42:33:9E:2D X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:0f:75:03:ab:3c:cf:d4:ce:66:a8:0c:10:b3:10:d6:e5:49: ae:a2:43:38:06:50:e6:4d:ab:eb:88:b2:88:03:89:e8:fa:30: 67:b9:00:af:59:e3:8c:81:e8:32:0e:2b:a8:14:1c:f7:18:de: 08:eb:3a:61:a9:ee:6e:43:88:24:11:b8:df:58:21:4f:0c:b1: 76:cb:78:f0:3c:8e:d5:51:21:d5:ac:df:81:34:b4:94:56:c0: 3a:62:0e:96:2e:42:aa:f7:fc:e2:9e:26:a2:17:be:94:b2:46: b3:79:e2:82:6b:5a:97:b6:0a:9d:37:c9:c1:a9:51:8a:70:59: 1b:53:18:e7:fc:4f:44:c8:d5:cb:a6:93:22:a8:90:5d:b9:97: f5:bb:96:5b:6f:a8:14:b3:07:a8:9f:52:af:f2:b9:c3:3a:47: 2c:7c:b8:7f:e9:8e:ab:1a:4b:9c:f2:aa:a8:ef:c3:77:3f:15: 5a:6d:7d:6b:65:47:6c:13:f9:4a:b2:c6:5b:9d:a7:df:0c:fd: af:f0:cb:8e:a6:2d:96:ad:d5:b3:8f:53:ea:1c:09:ad:0c:a8: ad:ee:9e:fd:df:fc:82:66:66:5c:1e:30:81:b8:1e:92:4a:18: 3b:83:39:78:cf:c1:c7:97:8e:67:7a:f3:b2:ad:f8:11:7d:92: 2c:af:7f:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjYwMzI0MTQ1OTA0WhcNMjYwMzMxMTQ1OTA0WjAYMRYwFAYD VQQDEw02OWMyYTZiOC1mZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0etuT3PZg4CNJiJyFEgZB1iSr8Dr1aepRBB8vaOrjAPSMYBzfQQP3zp/j+TM KEhqQiq2jRS24JJ2XqkcGj+5sFHNA9CzTTzjQxL9aC66BHBurpdet59ANVB2vWCk w1iqWmePccgWqfEbn29HZaOFegdOiw4IxPqdhxQzLcjac6HmiR8FSvrhkjKjMRmo IQ0huEURj/3B8HKK3gjPo95kVtNMUJoCe5bPukyD7mElOUh0SaN8lnT0B7dB+4Dm n57y4RoyC1JNUPZWxjNJRYNKF+sWo88cAIkG4C8syf1GhbPZPv+NWmYCdh6iswWS 4lvMn+MbFKI31nZgAmGM/WMXVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN6xA5me BGEfjkZWHmlSEC1CM54tMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWA91A6s8z9TOZqgMELMQ1uVJrqJDOAZQ5k2r64iyiAOJ6PowZ7kAr1njjIHo Mg4rqBQc9xjeCOs6YanubkOIJBG431ghTwyxdst48DyO1VEh1azfgTS0lFbAOmIO li5Cqvf84p4mohe+lLJGs3nigmtal7YKnTfJwalRinBZG1MY5/xPRMjVy6aTIqiQ XbmX9buWW2+oFLMHqJ9Sr/K5wzpHLHy4f+mOqxpLnPKqqO/Ddz8VWm19a2VHbBP5 SrLGW52n3wz9r/DLjqYtlq3Vs49T6hwJrQyore6e/d/8gmZmXB4wgbgekkoYO4M5 eM/Bx5eOZ3rzsq34EX2SLK9/Pw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:27:19 2026 by rpki-client