$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: p07HthxrjhsC3DlGcDBCRF6ixJJrIteydbW5RUrd6aE= Subject key identifier: 04:AC:F3:13:A3:4F:DF:15:D9:C1:AD:EF:E6:E8:66:CB:F2:0E:20:95 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C66 Signing time: Thu 12 Mar 2026 18:24:57 +0000 Manifest this update: Thu 12 Mar 2026 18:24:57 +0000 Manifest next update: Thu 19 Mar 2026 18:24:57 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: nIVXeRKc0VyDPMs62Z0q/9Sm2L7s+McLQDQf9Yv/cHg=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: jvXpWHuQMqZIyWCLt8zGlmD/EFuQwBIFv6UJxNzSdzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3185 (0xc71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Mar 12 18:24:57 2026 GMT Not After : Mar 19 18:24:57 2026 GMT Subject: CN=69b304f9-11d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:3b:63:0c:48:06:b1:24:fa:00:19:56:28: a3:af:a2:5f:65:e1:d2:b0:27:1a:9c:f6:b3:cc:37: ed:0a:c6:7d:e1:55:59:c8:29:1d:1e:61:0d:2d:aa: 5a:51:86:4c:d8:19:28:ea:42:a4:4d:7e:c5:1b:42: c0:d5:63:4c:0a:2d:97:f5:1f:68:1d:08:3d:d0:49: 07:f0:4b:bd:d2:97:01:47:7d:81:c7:fa:b1:6a:f6: b8:15:f5:33:11:b0:fb:15:4e:46:ae:86:5c:66:84: a2:5e:d7:28:ed:df:07:ad:f9:7b:a0:a2:da:94:e6: e4:60:7a:82:5a:33:3d:99:a2:67:ac:89:ec:3a:2a: bc:7c:4d:f4:36:56:83:5f:9d:17:f1:c0:2f:2b:22: 25:c5:26:6a:d4:a8:0d:29:a4:b4:42:f2:b3:57:05: 32:65:6c:e4:88:0b:f7:23:f8:78:0e:ee:67:b5:32: aa:e7:2d:d1:68:cb:71:8b:3e:b9:7c:6e:d6:26:cf: 8d:77:1c:eb:26:df:37:da:61:3a:57:d3:d3:33:96: 77:b6:9c:cf:0d:1c:9c:52:93:03:e1:bf:e9:87:4a: 52:12:34:c2:a0:8f:32:50:8e:42:d8:50:38:ac:24: 31:55:ab:d0:87:0a:30:b6:f7:12:5b:15:62:94:c0: 97:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AC:F3:13:A3:4F:DF:15:D9:C1:AD:EF:E6:E8:66:CB:F2:0E:20:95 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:a0:f6:ed:76:fb:c2:4c:95:2c:bb:b2:f5:e6:00:03:e3:e6: 2f:ec:c2:04:b1:63:21:2f:22:32:d7:93:65:4a:6c:ef:50:e9: ef:49:9c:d6:97:26:ea:51:f1:b5:8c:2b:d6:99:6f:52:9d:09: a9:c4:7e:ae:95:78:36:74:34:33:d0:8c:85:8a:b0:b1:c8:97: 23:d9:5e:fd:a0:00:da:d0:26:5f:4a:3a:71:34:b5:40:87:af: e2:12:9e:d2:fd:f0:83:f1:2b:21:41:c5:5c:33:cc:ae:d4:c4: a2:b1:fd:0d:c3:82:2f:38:67:40:62:88:bc:31:da:5e:fb:56: 44:85:bb:00:b9:62:c6:8c:df:dc:a6:f1:34:47:56:59:5a:3e: c3:7e:c0:d9:91:7e:2b:1c:ef:7f:35:13:08:63:ec:45:e6:cf: e7:d3:db:df:7c:18:27:fc:22:e4:c1:51:54:f5:80:5e:11:3d: d3:da:22:d0:df:8b:20:73:d7:c3:fd:83:94:80:e2:ca:b7:0b: 95:f8:1d:9d:e6:06:f4:5c:cd:c3:41:9e:59:57:73:35:a2:34: 5b:91:87:42:0f:ee:d1:6b:1a:80:9b:d2:02:b4:7c:89:04:29: 8a:55:35:42:b6:66:0e:aa:44:dc:45:c7:87:f1:ee:5b:c8:2c: 28:28:87:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjYwMzEyMTgyNDU3WhcNMjYwMzE5MTgyNDU3WjAYMRYwFAYD VQQDEw02OWIzMDRmOS0xMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArv87YwxIBrEk+gAZViijr6JfZeHSsCcanPazzDftCsZ94VVZyCkdHmENLapa UYZM2Bko6kKkTX7FG0LA1WNMCi2X9R9oHQg90EkH8Eu90pcBR32Bx/qxava4FfUz EbD7FU5GroZcZoSiXtco7d8Hrfl7oKLalObkYHqCWjM9maJnrInsOiq8fE30NlaD X50X8cAvKyIlxSZq1KgNKaS0QvKzVwUyZWzkiAv3I/h4Du5ntTKq5y3RaMtxiz65 fG7WJs+NdxzrJt832mE6V9PTM5Z3tpzPDRycUpMD4b/ph0pSEjTCoI8yUI5C2FA4 rCQxVavQhwowtvcSWxVilMCXKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFASs8xOj T98V2cGt7+boZsvyDiCVMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGqD27Xb7wkyVLLuy9eYAA+PmL+zCBLFjIS8iMteTZUps71Dp70mc1pcm6lHx tYwr1plvUp0JqcR+rpV4NnQ0M9CMhYqwsciXI9le/aAA2tAmX0o6cTS1QIev4hKe 0v3wg/ErIUHFXDPMrtTEorH9DcOCLzhnQGKIvDHaXvtWRIW7ALlixozf3KbxNEdW WVo+w37A2ZF+KxzvfzUTCGPsRebP59Pb33wYJ/wi5MFRVPWAXhE909oi0N+LIHPX w/2DlIDiyrcLlfgdneYG9FzNw0GeWVdzNaI0W5GHQg/u0WsagJvSArR8iQQpilU1 QrZmDqpE3EXHh/HuW8gsKCiHEg== -----END CERTIFICATE-----Generated at Fri Mar 13 02:42:19 2026 by rpki-client