$ rpki-client -vvf rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft File: cHDFVlzC_kVsMWBAi25_toDAjBk.mft (raw, json) Hash identifier: zUpHJEddXl2DBe/KXhY8UjiIxqbw3DclBYxw33XuM6U= Subject key identifier: C5:6D:B8:75:87:D5:09:AB:85:27:6C:1B:CF:72:CA:8C:F6:4C:02:8B Authority key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 Certificate issuer: /CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Certificate serial: 0B04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft Manifest number: 0AEC Signing time: Tue 31 Mar 2026 19:32:01 +0000 Manifest this update: Tue 31 Mar 2026 19:32:01 +0000 Manifest next update: Tue 07 Apr 2026 19:32:01 +0000 Files and hashes: 1: cHDFVlzC_kVsMWBAi25_toDAjBk.crl (hash: hvIF4GkHFaODbLF71FrK25H3U8SDn2vHBHgaXu15mt8=) 2: 96ACE9CE8E8F11EE8915FE78C4F9AE02.roa (hash: m6x4cKoG0z5IGxS+jgyTdR66s445veI9JdXQ3dKCikw=) 3: 6EA165728E8F11EEA8A9EE68C4F9AE02.roa (hash: 8RfREkb1TfRtm9mZNRjcCr0gSCyT+B9RHPPp4JceAOY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2820 (0xb04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Validity Not Before: Mar 31 19:32:01 2026 GMT Not After : Apr 7 19:32:01 2026 GMT Subject: CN=69cc2131-4a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:14:07:83:b0:b8:b6:66:ee:e5:5d:d6:6c:cf: 03:e8:c6:3e:ac:ba:56:d7:93:46:45:50:6a:ef:42: 59:7f:47:a0:48:31:f4:61:45:6d:5d:37:29:24:33: 70:5d:f4:db:5b:6d:65:bc:48:f9:37:84:16:9e:44: 7d:83:81:b9:51:df:3f:e0:27:0c:64:68:9d:20:53: 1c:d8:78:f6:16:a7:51:38:61:f0:0f:dd:4e:00:09: 74:ba:a4:86:0e:15:f2:05:7f:d7:de:5a:ad:34:33: 61:20:93:73:db:64:cf:06:17:53:9b:c5:6f:5e:cc: 6f:3f:ba:16:3b:8b:42:17:92:a4:04:54:e3:0f:b8: 55:a8:9e:7a:26:31:ba:f6:21:67:66:3a:48:7e:49: 02:a1:78:42:d9:51:09:65:8e:ce:41:cb:d2:9d:b7: 49:86:4a:f6:10:97:99:b8:85:82:c3:87:74:9a:6f: 8a:d7:79:44:3e:c0:e7:b6:9a:f0:8c:ea:4f:d8:32: c9:14:2c:45:0c:d0:2e:79:f1:55:dd:11:d3:35:ce: 8b:54:cb:23:b7:d9:68:8a:0f:96:1c:90:8a:58:96: 50:fa:27:63:2c:52:d1:d7:93:07:bd:7f:96:30:71: c7:ef:b6:8b:f3:f9:90:af:02:2e:0f:63:d8:cb:d7: 1e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6D:B8:75:87:D5:09:AB:85:27:6C:1B:CF:72:CA:8C:F6:4C:02:8B X509v3 Authority Key Identifier: keyid:70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d0:35:74:8b:25:bb:91:cd:f7:4b:72:72:f9:2f:4a:a7:9f: 87:03:e9:19:a4:0f:3e:93:8b:a5:85:93:1a:b7:14:87:66:8e: 2e:c3:f9:d4:c9:35:d8:b8:e8:e2:06:d7:81:07:86:c1:a3:bf: 7e:5e:24:f3:35:3e:36:51:44:bf:8c:2a:cc:a1:57:a0:6b:45: 41:4d:b3:5c:a4:13:6c:1a:53:00:6c:ea:43:fa:4d:d9:f7:22: 73:bd:32:a5:02:20:3c:53:a3:09:ed:26:38:80:aa:e6:7a:de: 36:d1:4c:e8:ca:6a:43:e2:62:ce:33:5f:b3:c0:01:b7:65:bd: 76:de:4f:fc:e5:dd:71:d9:c9:68:29:c8:de:62:f8:32:c8:c7: f9:b8:17:d4:30:e7:6a:c5:aa:96:f6:2e:fa:1d:67:f5:33:b9: 1b:50:8c:1c:52:17:d3:5d:41:25:97:5e:35:c7:80:19:96:06: 08:34:6e:ab:7f:9a:65:6f:a9:60:76:7d:08:e8:49:9b:6f:47: 3c:fa:f7:1b:6f:ce:ca:f3:56:1e:a8:b4:5a:b8:91:24:9b:d0: 33:55:a2:c2:f6:1c:dd:53:c9:8e:e1:90:fb:74:8d:f3:d4:32: d8:2b:05:90:d0:19:6b:58:0b:f7:df:77:3a:c1:12:7f:cc:e6: cc:33:1e:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI3N0MxMTAvBgNVBAUTKDcwNzBDNTU2NUNDMkZFNDU2QzMxNjA0MDhCNkU3RkI2 ODBDMDhDMTkwHhcNMjYwMzMxMTkzMjAxWhcNMjYwNDA3MTkzMjAxWjAYMRYwFAYD VQQDEw02OWNjMjEzMS00YTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBQHg7C4tmbu5V3WbM8D6MY+rLpW15NGRVBq70JZf0egSDH0YUVtXTcpJDNw XfTbW21lvEj5N4QWnkR9g4G5Ud8/4CcMZGidIFMc2Hj2FqdROGHwD91OAAl0uqSG DhXyBX/X3lqtNDNhIJNz22TPBhdTm8VvXsxvP7oWO4tCF5KkBFTjD7hVqJ56JjG6 9iFnZjpIfkkCoXhC2VEJZY7OQcvSnbdJhkr2EJeZuIWCw4d0mm+K13lEPsDntprw jOpP2DLJFCxFDNAuefFV3RHTNc6LVMsjt9loig+WHJCKWJZQ+idjLFLR15MHvX+W MHHH77aL8/mQrwIuD2PYy9ceAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMVtuHWH 1QmrhSdsG89yyoz2TAKLMB8GA1UdIwQYMBaAFHBwxVZcwv5FbDFgQItuf7aAwIwZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjc3Qy8yODE0Rjc3QTY5 QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19rVnNNV0JBaTI1X3RvREFq QmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIREZWbHpDX2tWc01XQkFpMjVfdG9EQWpCay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjc3Qy8yODE0Rjc3QTY5QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19r VnNNV0JBaTI1X3RvREFqQmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY9A1dIslu5HN90tycvkvSqefhwPpGaQPPpOLpYWTGrcUh2aOLsP51Mk12Ljo 4gbXgQeGwaO/fl4k8zU+NlFEv4wqzKFXoGtFQU2zXKQTbBpTAGzqQ/pN2fcic70y pQIgPFOjCe0mOICq5nreNtFM6MpqQ+JizjNfs8ABt2W9dt5P/OXdcdnJaCnI3mL4 MsjH+bgX1DDnasWqlvYu+h1n9TO5G1CMHFIX011BJZdeNceAGZYGCDRuq3+aZW+p YHZ9COhJm29HPPr3G2/OyvNWHqi0WriRJJvQM1WiwvYc3VPJjuGQ+3SN89Qy2CsF kNAZa1gL9993OsESf8zmzDMeYQ== -----END CERTIFICATE-----Generated at Wed Apr 1 14:03:05 2026 by rpki-client