$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft File: pAislKDTNvRzJJBakYrySQLw3os.mft (raw, json) Hash identifier: /hBryiuyUY8TtoaPJmlZ89eNr7fQvOSnZQbmKnenuZg= Subject key identifier: 5E:60:BB:E3:55:F5:CB:6F:22:C9:1F:8A:84:67:F3:CC:9C:54:E3:29 Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft Manifest number: 01CA Signing time: Mon 23 Mar 2026 03:08:07 +0000 Manifest this update: Mon 23 Mar 2026 03:08:06 +0000 Manifest next update: Mon 30 Mar 2026 03:08:06 +0000 Files and hashes: 1: pAislKDTNvRzJJBakYrySQLw3os.crl (hash: cAtdr1wyiif7Lxue0LxeZ1eNUt45HOLw5rgz462V0lc=) 2: 31A1996898F711EEB7B27877C4F9AE02.roa (hash: hHCyyzGsEC8V5KG9Wg3TJOVPDzSEhYHLIpTWQTIziHs=) 3: 62258D42C93A11EEA1A4CA4FC4F9AE02.roa (hash: NrIYNnpiRgoM0pEu2ChgWZkIBgkpnd90Qm1TMb1PFZI=) 4: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (hash: I40Mjxu1ZcWd2eWAmdNiVDMFDrp/6Wro4hhomYDrrYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Mar 2026 03:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Mar 23 03:08:06 2026 GMT Not After : Mar 30 03:08:06 2026 GMT Subject: CN=69c0ae97-218b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:be:2f:50:a0:17:1c:22:12:8b:32:f9:d4:c2: 97:3e:dc:1d:6c:90:a7:28:b7:ee:71:a2:80:5a:7a: 27:e4:16:44:41:b7:7a:b0:c8:1a:6e:d6:98:f3:c8: 0d:10:98:47:d6:2d:40:27:fb:63:91:d4:61:26:0b: 70:bf:7a:b8:60:a9:6a:7a:4d:61:98:38:7d:00:24: 97:84:80:82:14:8e:4f:dd:46:3b:9b:ee:4f:56:7f: 95:5d:4b:9c:b5:ad:6e:9c:bf:f6:b1:77:6c:84:1b: f8:4e:16:ff:a4:33:3b:46:61:b8:49:51:5c:ef:c0: d1:94:06:bf:f4:f4:24:b8:f9:28:75:4d:df:3c:1f: 8e:bd:d8:b5:f9:06:fb:cc:f8:b0:50:83:38:de:38: 07:e1:7f:7f:62:97:d5:fa:93:ee:f6:3d:eb:fb:72: 18:50:bb:0f:27:be:b3:31:40:1a:3c:21:8a:13:3b: a8:62:f3:b0:6e:f6:5f:39:19:bf:dd:23:d7:eb:69: 70:08:fe:de:67:3b:a8:5f:6c:45:74:e9:a9:98:3c: 7b:be:61:4b:05:f2:8d:4d:87:f6:fb:d1:19:41:5e: 15:b4:96:1f:4c:6f:2e:cc:91:65:f4:07:ab:02:7b: 25:34:a4:48:d9:08:f4:a6:0e:cf:91:b7:a7:20:3d: d5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:60:BB:E3:55:F5:CB:6F:22:C9:1F:8A:84:67:F3:CC:9C:54:E3:29 X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:52:33:57:20:be:29:74:7a:9a:88:d2:a0:af:df:a7:e2:6d: 3e:05:1d:96:5d:34:f4:fd:08:50:b6:5a:e6:ca:48:07:89:bb: 87:ea:6a:5d:41:be:f1:b8:52:00:50:9a:67:9e:bc:db:3f:96: ce:64:35:59:e1:dd:6b:c9:21:fe:e7:ce:b5:cb:2a:ba:1e:57: f0:2a:eb:dd:3f:0f:ea:36:30:e4:7b:72:92:b2:7a:2a:44:c8: 8e:5f:11:70:77:74:d4:65:d7:77:70:06:1d:7a:1d:ab:11:48: 59:b2:49:73:35:60:cc:bc:68:a4:71:d6:b8:f4:0d:f8:df:8d: 58:ab:a0:92:ba:6d:ec:93:0c:5a:14:14:dd:6b:31:0f:3b:f3: 48:9d:52:dd:59:92:70:3b:18:05:72:65:61:f1:40:15:74:7d: 6d:58:54:62:4f:9a:c1:b4:ca:b4:9b:da:f4:6a:e4:f5:38:d1: ce:2f:e6:1d:c8:37:9b:1e:6b:97:1b:10:6e:30:5e:30:06:45: 93:dc:84:c7:18:80:8b:74:fa:9e:ae:23:50:fc:58:46:03:5b: 08:9b:87:7e:a0:1d:1d:90:5b:51:16:ca:64:d8:f2:a1:27:6c: 18:d6:b4:83:41:3a:50:21:2f:08:0e:f8:bf:05:f6:aa:78:4d: 49:00:d8:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjYwMzIzMDMwODA2WhcNMjYwMzMwMDMwODA2WjAYMRYwFAYD VQQDEw02OWMwYWU5Ny0yMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb4vUKAXHCISizL51MKXPtwdbJCnKLfucaKAWnon5BZEQbd6sMgabtaY88gN EJhH1i1AJ/tjkdRhJgtwv3q4YKlqek1hmDh9ACSXhICCFI5P3UY7m+5PVn+VXUuc ta1unL/2sXdshBv4Thb/pDM7RmG4SVFc78DRlAa/9PQkuPkodU3fPB+Ovdi1+Qb7 zPiwUIM43jgH4X9/YpfV+pPu9j3r+3IYULsPJ76zMUAaPCGKEzuoYvOwbvZfORm/ 3SPX62lwCP7eZzuoX2xFdOmpmDx7vmFLBfKNTYf2+9EZQV4VtJYfTG8uzJFl9Aer AnslNKRI2Qj0pg7PkbenID3VYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5gu+NV 9ctvIskfioRn88ycVOMpMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52 UnpKSkJha1lyeVNRTHczb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlVIzVyC+KXR6mojSoK/fp+JtPgUdll009P0IULZa5spIB4m7h+pqXUG+8bhS AFCaZ5682z+WzmQ1WeHda8kh/ufOtcsquh5X8Crr3T8P6jYw5HtykrJ6KkTIjl8R cHd01GXXd3AGHXodqxFIWbJJczVgzLxopHHWuPQN+N+NWKugkrpt7JMMWhQU3Wsx DzvzSJ1S3VmScDsYBXJlYfFAFXR9bVhUYk+awbTKtJva9Grk9TjRzi/mHcg3mx5r lxsQbjBeMAZFk9yExxiAi3T6nq4jUPxYRgNbCJuHfqAdHZBbURbKZNjyoSdsGNa0 g0E6UCEvCA74vwX2qnhNSQDYRA== -----END CERTIFICATE-----Generated at Mon Mar 23 15:47:55 2026 by rpki-client