$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: CEFxbq/Fwp3e7su3PBgz86hwNLGFluwUG9Gc4mVVUC8= Subject key identifier: 1C:2D:9F:39:62:B9:31:78:2C:41:A7:EC:DE:FE:F9:B9:69:F0:43:5C Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03E2 Signing time: Sun 29 Mar 2026 00:27:16 +0000 Manifest this update: Sun 29 Mar 2026 00:27:15 +0000 Manifest next update: Sun 05 Apr 2026 00:27:15 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: AzrC3nN6oFXK3EOGduSQBuMAwz8FehPReZG26eHMgPQ=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: 1651DDZqfZG0+Q1CtVyAE69Gh2+OtTkbKUiK/1/L4rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 00:27:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Mar 29 00:27:15 2026 GMT Not After : Apr 5 00:27:15 2026 GMT Subject: CN=69c871e4-29f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:89:f8:94:62:44:a8:4c:86:dd:f5:a0:52:d5: 1d:65:77:84:71:42:46:f4:03:6b:4b:a6:f8:86:e2: 92:6d:ed:83:53:d1:78:fa:cf:ff:8b:94:53:33:e3: c4:b5:19:19:2a:ca:9f:35:87:53:80:ab:62:54:6c: de:77:13:54:bf:a3:6d:ee:28:f3:4e:c2:79:0b:51: a8:13:02:3b:38:4e:16:f4:16:c0:a7:3a:b7:a8:ee: 67:15:ee:15:52:09:78:3c:ff:34:00:d7:35:f8:15: 41:58:72:8b:cf:98:a2:b8:42:29:34:c7:e1:fa:10: c8:16:d9:28:bb:5c:6b:b3:87:2a:72:c9:d4:bc:12: 81:06:53:66:e6:3c:9f:93:58:3d:78:1b:bf:69:88: e8:e1:2d:3b:b3:ff:53:a3:5c:93:8c:88:c2:af:bc: d3:14:1b:52:69:70:71:73:65:08:c6:07:1f:79:36: 72:36:6c:b6:98:fd:ae:ac:96:fb:26:54:e4:8d:41: d5:c7:15:61:79:bf:8d:95:b2:3d:01:6b:a6:7f:b5: 40:89:05:f2:fe:0d:01:06:6e:c8:2c:d8:6a:64:8b: 52:51:aa:97:f1:f8:f4:5d:83:db:fa:bb:be:9e:7e: e9:c6:aa:99:2c:63:0b:8d:09:83:28:fb:77:ab:44: 65:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2D:9F:39:62:B9:31:78:2C:41:A7:EC:DE:FE:F9:B9:69:F0:43:5C X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:94:c5:87:18:6b:fc:c5:b9:7c:4a:d9:11:38:59:a2:b5:60: e9:83:fb:7f:9d:7c:98:72:fa:59:81:4e:dc:fc:61:a3:81:43: 5d:3e:5d:79:b0:81:ed:23:69:6d:92:eb:de:c0:e4:cb:9f:58: da:28:da:01:d0:af:32:b9:1a:2a:48:62:f9:74:b5:9b:39:44: b7:c5:73:8e:48:e8:c3:9a:91:c6:a5:a1:08:ef:c1:0e:f5:93: 98:22:4a:28:cd:c3:7f:4a:ba:bc:f7:72:08:29:61:71:76:22: 2d:16:9f:bc:76:5d:c6:df:1d:b7:ea:30:8e:50:7b:b3:f8:e7: b9:93:a4:41:9f:a6:71:2f:a9:50:fd:9d:85:da:6f:9c:f3:85: 31:d0:ab:83:d7:18:2a:46:9a:69:9f:97:77:8e:eb:41:56:b7: 39:53:9a:6d:f4:da:e6:3a:0c:9b:53:ac:35:7b:3f:4b:96:70: 43:f3:82:08:4d:60:3e:dd:75:a6:bf:1e:0a:d0:00:ef:37:e6: fc:30:c7:b5:45:f9:16:d2:64:9b:59:a3:4e:5e:20:1f:0c:cc: c3:4d:f5:54:2c:d3:03:99:78:09:14:be:e4:47:88:2c:b7:37: 69:ac:ad:0c:da:1c:2b:07:98:e7:92:5b:54:26:ed:95:7d:20: 63:b2:22:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjYwMzI5MDAyNzE1WhcNMjYwNDA1MDAyNzE1WjAYMRYwFAYD VQQDEw02OWM4NzFlNC0yOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlIn4lGJEqEyG3fWgUtUdZXeEcUJG9ANrS6b4huKSbe2DU9F4+s//i5RTM+PE tRkZKsqfNYdTgKtiVGzedxNUv6Nt7ijzTsJ5C1GoEwI7OE4W9BbApzq3qO5nFe4V Ugl4PP80ANc1+BVBWHKLz5iiuEIpNMfh+hDIFtkou1xrs4cqcsnUvBKBBlNm5jyf k1g9eBu/aYjo4S07s/9To1yTjIjCr7zTFBtSaXBxc2UIxgcfeTZyNmy2mP2urJb7 JlTkjUHVxxVheb+NlbI9AWumf7VAiQXy/g0BBm7ILNhqZItSUaqX8fj0XYPb+ru+ nn7pxqqZLGMLjQmDKPt3q0Rl1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBwtnzli uTF4LEGn7N7++blp8ENcMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaJTFhxhr/MW5fErZEThZorVg6YP7f518mHL6WYFO3Pxho4FDXT5debCB7SNp bZLr3sDky59Y2ijaAdCvMrkaKkhi+XS1mzlEt8Vzjkjow5qRxqWhCO/BDvWTmCJK KM3Df0q6vPdyCClhcXYiLRafvHZdxt8dt+owjlB7s/jnuZOkQZ+mcS+pUP2dhdpv nPOFMdCrg9cYKkaaaZ+Xd47rQVa3OVOabfTa5joMm1OsNXs/S5ZwQ/OCCE1gPt11 pr8eCtAA7zfm/DDHtUX5FtJkm1mjTl4gHwzMw031VCzTA5l4CRS+5EeILLc3aayt DNocKweY55JbVCbtlX0gY7IixA== -----END CERTIFICATE-----Generated at Mon Mar 30 01:26:24 2026 by rpki-client