$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: x1UrFaoG2eZRXlUijux5iPl7t9bxYYdKknXq23E5cFU= Subject key identifier: A3:41:EB:16:5E:E2:98:6B:D9:5C:9F:3E:15:46:DE:B5:8F:2A:F7:82 Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 04E1 Signing time: Sat 28 Mar 2026 23:40:49 +0000 Manifest this update: Sat 28 Mar 2026 23:40:48 +0000 Manifest next update: Sat 04 Apr 2026 23:40:48 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: Q9WaiNmI/YCZC/ZqGiV06wNhWYvBbhQ7FC35V6i/4v0=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: IKkH75+WRK2fgAHZzJYi1Oy9QxIGYcWmXMPe96PnP4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 23:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D, serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: Mar 28 23:40:48 2026 GMT Not After : Apr 4 23:40:48 2026 GMT Subject: CN=69c86701-e6e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8b:3e:38:24:99:53:e0:07:dc:02:8d:ca:ad: 8e:74:20:ea:da:33:27:dd:59:55:46:25:d5:45:d5: 5a:59:3b:1f:20:d6:fa:7c:c5:34:b4:76:f2:c5:44: 06:9c:bd:77:42:82:e1:71:ab:02:e6:9d:9f:44:b8: a2:50:a9:44:aa:66:06:45:a9:4d:c6:3d:ae:ea:71: c3:6e:3e:8e:97:42:85:4f:f4:24:78:2e:5d:a0:22: 17:e4:f5:e3:ae:f6:61:72:9c:5f:24:77:45:52:63: 79:16:ca:fe:fb:4b:b8:4d:48:ef:aa:47:aa:b8:a7: 1a:e4:27:54:ba:a0:df:09:0e:d4:9d:a7:c8:6b:cf: 7c:43:cf:47:5d:cd:0a:70:9a:3f:ff:3b:2a:a1:4e: 89:19:49:2b:b2:fd:32:68:d2:18:de:47:9c:47:50: 5a:b4:da:b7:ad:3d:8a:74:63:94:0a:c4:3b:43:99: e7:1e:f3:6c:89:7d:c7:b5:1a:a3:21:62:bf:74:b6: b4:51:4c:ae:e1:59:25:57:24:46:c6:91:ed:b9:40: 50:e8:5c:1a:63:01:1b:33:63:4e:03:ea:d9:5b:0a: 85:04:10:46:a4:3a:10:66:43:f8:59:8c:a0:5b:ab: 17:e9:40:f5:10:5a:6c:d3:19:25:83:65:0c:f4:2c: 07:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:41:EB:16:5E:E2:98:6B:D9:5C:9F:3E:15:46:DE:B5:8F:2A:F7:82 X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:7a:b9:03:61:0e:c1:50:b6:a8:c5:53:35:e9:72:92:b9:9f: c2:11:96:78:e2:33:43:c6:cd:b6:65:9c:59:92:70:09:7d:31: ef:1a:f4:fe:90:9f:80:90:2a:a5:56:7a:8a:02:7e:03:5f:dc: 6c:eb:f2:b4:cf:c5:f9:fc:f4:62:c6:ea:f7:3f:7c:93:73:ee: 79:2e:b9:e9:25:35:58:b4:52:4b:28:08:58:c0:c1:47:aa:0c: e7:1e:41:76:74:5d:dc:de:e5:b0:7c:79:76:06:9a:b7:3a:e4: 7c:07:77:1d:94:b0:82:84:bd:47:93:70:bb:f3:1d:07:65:dc: 51:66:c6:19:23:54:f2:9d:c4:4e:35:43:77:df:cb:a2:d5:ff: 76:eb:71:dc:17:8e:59:23:97:1d:04:c0:a8:10:d0:9e:da:3f: 47:84:d5:11:1e:d3:e7:70:66:db:1b:06:01:c4:92:59:97:b0: 1a:8f:e9:87:4d:06:7b:22:18:59:be:99:7f:d5:dd:c6:b2:c1: de:94:63:f0:81:42:f8:0b:5a:a6:cb:69:72:06:8f:cf:c4:bf: 30:d8:1f:9b:e5:d7:55:34:07:b1:22:45:a9:e3:b8:e2:18:d1: ae:6a:69:06:be:c5:c1:b7:df:15:92:0b:37:3f:72:cb:2c:8c: bd:ea:fe:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjYwMzI4MjM0MDQ4WhcNMjYwNDA0MjM0MDQ4WjAYMRYwFAYD VQQDEw02OWM4NjcwMS1lNmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIs+OCSZU+AH3AKNyq2OdCDq2jMn3VlVRiXVRdVaWTsfINb6fMU0tHbyxUQG nL13QoLhcasC5p2fRLiiUKlEqmYGRalNxj2u6nHDbj6Ol0KFT/QkeC5doCIX5PXj rvZhcpxfJHdFUmN5Fsr++0u4TUjvqkequKca5CdUuqDfCQ7UnafIa898Q89HXc0K cJo//zsqoU6JGUkrsv0yaNIY3kecR1BatNq3rT2KdGOUCsQ7Q5nnHvNsiX3HtRqj IWK/dLa0UUyu4VklVyRGxpHtuUBQ6FwaYwEbM2NOA+rZWwqFBBBGpDoQZkP4WYyg W6sX6UD1EFps0xklg2UM9CwHIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKNB6xZe 4phr2VyfPhVG3rWPKveCMB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApHq5A2EOwVC2qMVTNelykrmfwhGWeOIzQ8bNtmWcWZJwCX0x7xr0/pCfgJAq pVZ6igJ+A1/cbOvytM/F+fz0Ysbq9z98k3PueS656SU1WLRSSygIWMDBR6oM5x5B dnRd3N7lsHx5dgaatzrkfAd3HZSwgoS9R5Nwu/MdB2XcUWbGGSNU8p3ETjVDd9/L otX/dutx3BeOWSOXHQTAqBDQnto/R4TVER7T53Bm2xsGAcSSWZewGo/ph00GeyIY Wb6Zf9XdxrLB3pRj8IFC+AtapstpcgaPz8S/MNgfm+XXVTQHsSJFqeO44hjRrmpp Br7FwbffFZILNz9yyyyMver+rg== -----END CERTIFICATE-----Generated at Mon Mar 30 01:04:45 2026 by rpki-client