$ rpki-client -vvf rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft File: idaQRux8ca1__5jk_Zu5iB8pnIk.mft (raw, json) Hash identifier: PrM7JtYnQY6T4bx1Gry6thCfC4ZlSO+49EYY5CuFzg8= Subject key identifier: B8:E8:E8:C2:D9:87:99:54:59:C4:F3:BE:1D:6F:62:7F:7A:A5:38:56 Authority key identifier: 89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 Certificate issuer: /CN=A914D648/serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft Manifest number: 20 Signing time: Sun 29 Mar 2026 08:32:07 +0000 Manifest this update: Sun 29 Mar 2026 08:32:06 +0000 Manifest next update: Sun 05 Apr 2026 08:32:06 +0000 Files and hashes: 1: idaQRux8ca1__5jk_Zu5iB8pnIk.crl (hash: Jvdeo1h7YniF7synMmjcxQzSOuVzl5RrR9kw+j1PMv0=) 2: 4A5A1A32001211F1BC55B3C9406F56BC.roa (hash: hV/jnLK+I5DqGVULzWJLe2aTFemY0+Rn6OMG26sgrM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 08:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D648, serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Validity Not Before: Mar 29 08:32:06 2026 GMT Not After : Apr 5 08:32:06 2026 GMT Subject: CN=69c8e387-6761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:83:ca:44:31:4a:ef:4f:1f:94:fb:05:fc:e5: c6:b1:db:5e:41:8e:f2:86:bf:ab:f6:9f:9e:04:87: ae:b0:b0:07:1c:6b:a8:e6:71:ef:14:1f:bf:9a:9d: 74:44:7b:04:36:e2:39:90:a1:c0:8d:8b:fa:43:3e: 79:47:e4:93:eb:0b:2a:44:a7:a1:28:bd:82:65:aa: 6a:64:7a:c9:8b:06:a5:b9:08:29:22:0a:af:c3:ca: 7a:be:48:02:79:aa:61:64:6a:ff:33:3d:2d:86:14: d5:bc:e5:25:b6:53:31:96:f0:cb:6a:80:02:88:db: 77:d2:c2:93:39:19:00:0f:34:2c:d0:1e:e2:3b:04: 7a:32:aa:8c:f1:bd:10:03:73:d3:ff:ed:30:da:68: cf:e4:5e:b8:b3:39:66:f5:39:7a:97:65:13:cb:e5: 54:65:12:3b:bb:6c:59:d6:4e:ea:ca:91:aa:57:69: e1:02:87:61:9c:6b:e6:78:47:98:ae:cd:91:7d:e7: 13:69:39:55:c3:0c:bb:1d:7c:fa:38:ef:a3:64:f6: 58:81:5a:68:3c:fa:dc:88:66:1c:63:33:ad:be:02: c7:d2:fa:b2:4d:21:f8:39:75:4e:a9:b5:97:b2:59: 74:1c:97:6f:a6:85:15:0c:3d:74:48:79:6c:70:8e: 68:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E8:E8:C2:D9:87:99:54:59:C4:F3:BE:1D:6F:62:7F:7A:A5:38:56 X509v3 Authority Key Identifier: keyid:89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:10:7a:14:33:11:d4:5b:5a:2c:1b:c8:bc:bc:d5:dc:5d:50: e4:e6:9f:af:10:ba:3b:24:dd:99:ca:82:7f:cb:ad:95:5d:3f: 06:7c:f1:95:eb:cd:bd:cb:e6:58:6f:33:cd:83:03:fe:8c:74: b7:2b:f4:f6:c4:06:43:4f:af:72:c7:c3:65:44:91:2c:36:1a: 9c:3d:a5:74:36:3e:9a:c9:44:1a:ed:0e:e6:8b:03:00:03:9b: 16:d1:36:b3:5f:a5:2b:cb:f6:2e:fe:f4:d7:de:52:fa:cd:73: c1:9e:67:49:87:9d:45:4c:44:63:f7:1c:74:4e:b3:bf:d2:27: 4b:4a:c7:1a:17:44:8e:6b:89:c5:27:8e:01:7f:92:d3:4f:51: ec:7c:f6:a6:07:65:77:68:e2:0f:cd:1e:e7:42:bd:6e:81:5a: 67:cf:47:2b:33:4b:c0:d4:e5:51:f8:90:9d:76:63:79:57:b4: 2b:0a:8f:c3:f0:bd:f7:be:6f:52:1a:86:da:d6:30:f2:5d:76: 14:a1:79:0b:e8:95:5e:1b:d4:ea:4a:db:b0:03:59:d0:44:cc: c7:9c:e7:3e:a1:89:c9:85:81:5e:c1:42:a6:34:ee:46:32:4f: 39:9c:fc:c7:d9:e5:8f:65:aa:5d:97:17:87:52:a1:b4:55:c5: aa:1c:77:58 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDY0ODExMC8GA1UEBRMoODlENjkwNDZFQzdDNzFBRDdGRkY5OEU0RkQ5QkI5ODgx RjI5OUM4OTAeFw0yNjAzMjkwODMyMDZaFw0yNjA0MDUwODMyMDZaMBgxFjAUBgNV BAMTDTY5YzhlMzg3LTY3NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcg8pEMUrvTx+U+wX85cax215BjvKGv6v2n54Eh66wsAcca6jmce8UH7+anXRE ewQ24jmQocCNi/pDPnlH5JPrCypEp6EovYJlqmpkesmLBqW5CCkiCq/Dynq+SAJ5 qmFkav8zPS2GFNW85SW2UzGW8MtqgAKI23fSwpM5GQAPNCzQHuI7BHoyqozxvRAD c9P/7TDaaM/kXrizOWb1OXqXZRPL5VRlEju7bFnWTurKkapXaeECh2Gca+Z4R5iu zZF95xNpOVXDDLsdfPo476Nk9liBWmg8+tyIZhxjM62+AsfS+rJNIfg5dU6ptZey WXQcl2+mhRUMPXRIeWxwjmgtAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUuOjowtmH mVRZxPO+HW9if3qlOFYwHwYDVR0jBBgwFoAUidaQRux8ca1//5jk/Zu5iB8pnIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRENjQ4LzAxRjcwMkYwMDAx MjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2ExX181amtfWnU1aUI4cG5J ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWRhUVJ1eDhjYTFfXzVqa19adTVpQjhwbklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE NjQ4LzAxRjcwMkYwMDAxMjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2Ex X181amtfWnU1aUI4cG5Jay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAxEHoUMxHUW1osG8i8vNXcXVDk5p+vELo7JN2ZyoJ/y62VXT8GfPGV6829y+ZY bzPNgwP+jHS3K/T2xAZDT69yx8NlRJEsNhqcPaV0Nj6ayUQa7Q7miwMAA5sW0Taz X6Ury/Yu/vTX3lL6zXPBnmdJh51FTERj9xx0TrO/0idLSscaF0SOa4nFJ44Bf5LT T1HsfPamB2V3aOIPzR7nQr1ugVpnz0crM0vA1OVR+JCddmN5V7QrCo/D8L33vm9S Goba1jDyXXYUoXkL6JVeG9TqStuwA1nQRMzHnOc+oYnJhYFewUKmNO5GMk85nPzH 2eWPZapdlxeHUqG0VcWqHHdY -----END CERTIFICATE-----Generated at Mon Mar 30 13:18:33 2026 by rpki-client