$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: tAFxoQ139YvffSHQ0jY3Kmohlw1XU7WhECcy77C1jAs= Subject key identifier: 9A:DF:46:D0:E9:AD:94:AF:E9:34:27:18:29:D3:D9:C9:79:6A:F6:B4 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 0445 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 0434 Signing time: Sun 22 Mar 2026 23:51:10 +0000 Manifest this update: Sun 22 Mar 2026 23:51:10 +0000 Manifest next update: Sun 29 Mar 2026 23:51:10 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: eXJesq8amps4LvWfUvEp3eXf52RgBz90j35g6uQK0iI=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: Yp8vQRRn+1isdhS7HH7fMBWq8BHFrYVDOBpfy5O1p3A=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: cVYpcEpLmW3gYRT3SsW9LPnpjNMLZz8OsKdq5PALSk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1093 (0x445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A, serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: Mar 22 23:51:10 2026 GMT Not After : Mar 29 23:51:10 2026 GMT Subject: CN=69c0806e-7b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:34:a5:85:f3:72:32:bb:4a:ea:1a:c2:71:b6: 80:d6:ff:2c:fe:0c:06:6c:c3:54:07:0b:e5:2b:ae: 2d:99:51:7f:fe:54:c4:15:24:c9:2a:2a:29:c6:1b: be:14:cf:d7:86:13:d0:93:de:c8:47:c0:59:3a:17: e8:14:8c:d5:db:f0:3f:ce:01:10:b0:84:16:62:7d: 86:2a:25:a0:31:89:7b:90:16:92:17:03:62:c3:7e: 4a:d6:fe:35:3a:98:20:e5:bd:da:7d:bb:e1:6a:db: e9:65:c2:c2:a7:53:f7:df:a3:76:4b:71:10:29:cf: 05:0c:ee:41:f6:ce:73:11:63:49:3b:f3:a7:a9:07: f4:38:fe:a6:1b:5e:7a:19:3d:1b:88:14:15:65:fa: 33:bb:ec:0a:20:dc:0f:48:72:ea:6a:4c:79:94:42: d6:41:a9:86:2d:95:81:94:0c:f8:53:47:bf:8a:1e: 17:0c:53:72:74:0f:2b:a0:56:4c:fb:67:44:55:ac: 2c:8d:3e:51:1e:7f:04:82:2e:58:61:60:3d:04:e1: 42:11:68:fc:7f:bd:84:2d:d5:8e:98:c3:5c:45:1f: 8b:da:b3:94:5a:45:55:a8:d8:3c:17:27:7e:a9:52: 4c:a2:ee:58:c3:97:7f:33:25:ba:db:bf:c5:ae:40: 08:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DF:46:D0:E9:AD:94:AF:E9:34:27:18:29:D3:D9:C9:79:6A:F6:B4 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:71:94:d4:58:4e:96:12:cf:27:b1:35:49:29:59:a3:e5:1d: 97:42:e1:51:b6:32:18:4d:5b:d1:1e:b3:4e:e8:1b:5b:17:33: 98:fe:35:6c:cf:e3:75:3c:9e:9a:30:e4:a1:04:77:21:27:40: 44:df:2a:d2:ea:c7:e4:64:13:ee:42:5d:f4:a4:45:c4:5a:76: f3:9f:9d:a7:58:35:70:8d:ab:59:de:83:b4:15:94:08:23:e4: b3:65:39:17:3b:eb:c1:2a:8e:65:2b:fe:92:3d:9f:5e:56:27: 68:d4:e7:a1:82:d1:52:06:a9:ee:46:4e:69:31:b8:c2:68:95: 01:9a:86:cb:2a:82:eb:29:ca:ea:aa:a5:14:ca:51:cb:57:4c: 8d:1c:4f:36:d2:52:b9:7a:08:99:a5:e4:78:5d:87:b7:ca:07: 70:44:02:9c:51:23:ef:7c:29:0a:bf:ac:60:a6:44:73:cf:69: e6:dc:d7:33:31:b1:2c:b4:2b:76:10:63:6a:7d:4d:02:d4:82: b5:28:00:51:96:66:4d:61:22:b0:f5:69:11:b6:48:ce:7c:28: c3:7a:d9:13:77:88:b2:16:51:98:a3:c4:4c:ab:cf:2f:ed:b1: c4:d0:24:39:48:bf:58:15:a8:b6:18:d4:87:4a:f0:f2:48:cb: 1f:1f:99:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjYwMzIyMjM1MTEwWhcNMjYwMzI5MjM1MTEwWjAYMRYwFAYD VQQDEw02OWMwODA2ZS03YjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TSlhfNyMrtK6hrCcbaA1v8s/gwGbMNUBwvlK64tmVF//lTEFSTJKiopxhu+ FM/XhhPQk97IR8BZOhfoFIzV2/A/zgEQsIQWYn2GKiWgMYl7kBaSFwNiw35K1v41 Opgg5b3afbvhatvpZcLCp1P336N2S3EQKc8FDO5B9s5zEWNJO/OnqQf0OP6mG156 GT0biBQVZfozu+wKINwPSHLqakx5lELWQamGLZWBlAz4U0e/ih4XDFNydA8roFZM +2dEVawsjT5RHn8Egi5YYWA9BOFCEWj8f72ELdWOmMNcRR+L2rOUWkVVqNg8Fyd+ qVJMou5Yw5d/MyW627/FrkAIwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJrfRtDp rZSv6TQnGCnT2cl5ava0MB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFHGU1FhOlhLPJ7E1SSlZo+Udl0LhUbYyGE1b0R6zTugbWxczmP41bM/jdTye mjDkoQR3ISdARN8q0urH5GQT7kJd9KRFxFp285+dp1g1cI2rWd6DtBWUCCPks2U5 FzvrwSqOZSv+kj2fXlYnaNTnoYLRUgap7kZOaTG4wmiVAZqGyyqC6ynK6qqlFMpR y1dMjRxPNtJSuXoImaXkeF2Ht8oHcEQCnFEj73wpCr+sYKZEc89p5tzXMzGxLLQr dhBjan1NAtSCtSgAUZZmTWEisPVpEbZIznwow3rZE3eIshZRmKPETKvPL+2xxNAk OUi/WBWothjUh0rw8kjLHx+ZLg== -----END CERTIFICATE-----Generated at Tue Mar 24 14:45:24 2026 by rpki-client