$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft File: 0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json) Hash identifier: zgNt0CimXgMYSmKFng2YlMmnPyKcVsvSY4e5D37bMXM= Subject key identifier: 0B:D3:78:A6:ED:A2:80:F7:E3:05:C5:69:6C:75:B8:4D:1F:F0:E5:A8 Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF Certificate issuer: /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft Manifest number: 7E Signing time: Wed 25 Mar 2026 06:57:13 +0000 Manifest this update: Wed 25 Mar 2026 06:57:12 +0000 Manifest next update: Wed 01 Apr 2026 06:57:12 +0000 Files and hashes: 1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: qgwjWOQ0G2WnKO7uK4ICycTagodrtbbHurFemNyVv18=) 2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: +DP6MilESaiHYhOyYqOuZcz5QFs57aj6iwKoYbBinoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Validity Not Before: Mar 25 06:57:12 2026 GMT Not After : Apr 1 06:57:12 2026 GMT Subject: CN=69c38749-b8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:74:b2:be:ef:54:ca:fd:dd:64:e2:11:7b: be:23:43:4a:f3:d4:92:ca:e0:17:5b:16:c3:85:00: 74:9b:b0:41:0c:5a:a3:aa:bb:97:e3:2f:6d:03:a2: 1a:d4:a0:82:0b:da:c4:d1:35:b7:49:46:8b:7d:48: 5f:2d:f4:4e:5b:a7:47:e8:33:75:ec:d6:58:6c:ab: 03:ae:15:f6:e8:fa:79:2e:a6:e3:41:cf:18:c3:9b: 75:6c:a7:cf:00:4e:4e:37:fa:70:8d:2c:c9:0f:3e: 79:7b:00:64:fd:b8:41:e3:28:90:f0:29:9f:01:4c: 39:1c:71:28:bc:b3:3c:02:f0:36:10:ee:33:d8:c1: 43:b8:98:1f:a2:fb:46:c4:dd:b1:ca:91:d6:79:44: 54:60:26:09:48:77:b5:85:9f:c5:93:d6:71:ea:9b: 40:65:eb:e2:75:69:35:fa:33:ce:b9:95:e8:00:20: 4a:47:ae:8b:77:80:05:2d:f3:75:c1:b8:f0:b9:87: 43:d3:d7:33:42:32:15:e2:5f:f0:0f:03:ea:ae:83: a9:88:de:9a:e6:a6:a0:fb:a4:4e:e6:41:19:6d:a0: fa:d0:0d:2d:53:f4:9a:15:0d:ce:6d:2a:9a:4d:79: 15:c8:39:cc:02:d3:1f:4f:44:72:cc:6f:15:6c:5d: 0d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D3:78:A6:ED:A2:80:F7:E3:05:C5:69:6C:75:B8:4D:1F:F0:E5:A8 X509v3 Authority Key Identifier: keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:74:f0:bf:ac:22:0d:1a:e3:13:d1:f0:aa:bf:98:b9:26:bd: 0e:30:85:9b:60:4e:37:1f:79:11:75:54:98:46:c8:8d:f1:f3: c2:76:d3:09:de:1d:f3:21:e6:83:4c:e0:8c:38:32:0f:b0:c6: 90:d0:5a:11:fa:59:46:40:6c:44:60:89:ad:17:34:11:e9:db: f8:6a:d7:eb:6a:f8:ac:61:f7:f6:ad:55:92:57:12:ce:ab:dd: f1:08:7c:a6:ae:6e:83:e6:88:6f:66:2f:90:9d:be:9b:be:05: 6b:22:e3:70:2c:6f:4d:f7:3f:04:d4:89:e0:b4:ac:a8:8d:cc: 3c:08:04:c8:d2:c7:c4:42:16:f0:2e:9d:35:7f:ca:30:34:2f: bd:25:f9:fd:8d:8a:1d:ea:eb:25:64:88:d7:2f:7a:20:e5:e7: 57:4c:89:a7:6b:e1:a4:d3:1f:99:2c:a8:91:c6:aa:43:cc:24: 40:15:aa:97:16:9a:d4:78:96:00:e6:70:e0:b8:4a:35:f1:52: 92:e0:60:e4:f9:05:2c:f0:59:a4:09:75:e5:87:6f:da:b6:b7: 11:da:49:6e:db:15:24:22:61:f6:a1:20:c9:c5:4a:f2:da:d2: b4:51:84:c2:45:7a:7b:b6:54:60:41:11:b8:80:1a:84:3f:55: f1:a1:cf:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZEQzAxMTAvBgNVBAUTKEQxRUMxOTdCREIwRDk1MTkzOEQxRUVGNTQ5NkExMUFD Q0EwMjg4RUYwHhcNMjYwMzI1MDY1NzEyWhcNMjYwNDAxMDY1NzEyWjAYMRYwFAYD VQQDEw02OWMzODc0OS1iOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8N0sr7vVMr93WTiEXu+I0NK89SSyuAXWxbDhQB0m7BBDFqjqruX4y9tA6Ia 1KCCC9rE0TW3SUaLfUhfLfROW6dH6DN17NZYbKsDrhX26Pp5LqbjQc8Yw5t1bKfP AE5ON/pwjSzJDz55ewBk/bhB4yiQ8CmfAUw5HHEovLM8AvA2EO4z2MFDuJgfovtG xN2xypHWeURUYCYJSHe1hZ/Fk9Zx6ptAZevidWk1+jPOuZXoACBKR66Ld4AFLfN1 wbjwuYdD09czQjIV4l/wDwPqroOpiN6a5qag+6RO5kEZbaD60A0tU/SaFQ3ObSqa TXkVyDnMAtMfT0RyzG8VbF0NhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAvTeKbt ooD34wXFaWx1uE0f8OWoMB8GA1UdIwQYMBaAFNHsGXvbDZUZONHu9UlqEazKAojv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkRDMC8yOTU0RDYyQTY5 RTkxMUYwODFCNjVCNjdDNEY5QUUwMi8wZXdaZTlzTmxSazQwZTcxU1dvUnJNb0Np TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBld1plOXNObFJrNDBlNzFTV29Sck1vQ2lPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkRDMC8yOTU0RDYyQTY5RTkxMUYwODFCNjVCNjdDNEY5QUUwMi8wZXdaZTlzTmxS azQwZTcxU1dvUnJNb0NpTzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACXTwv6wiDRrjE9Hwqr+YuSa9DjCFm2BONx95EXVUmEbIjfHzwnbTCd4d8yHm g0zgjDgyD7DGkNBaEfpZRkBsRGCJrRc0Eenb+GrX62r4rGH39q1VklcSzqvd8Qh8 pq5ug+aIb2YvkJ2+m74FayLjcCxvTfc/BNSJ4LSsqI3MPAgEyNLHxEIW8C6dNX/K MDQvvSX5/Y2KHerrJWSI1y96IOXnV0yJp2vhpNMfmSyokcaqQ8wkQBWqlxaa1HiW AOZw4LhKNfFSkuBg5PkFLPBZpAl15Ydv2ra3EdpJbtsVJCJh9qEgycVK8trStFGE wkV6e7ZUYEERuIAahD9V8aHPOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:46:02 2026 by rpki-client