$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: eHRav/eozWcqpG5pxAIdiuJoogyvRzHmWL2twAvzLvM= Subject key identifier: A7:B9:7E:5D:08:8D:4A:05:B3:1F:29:4C:EA:66:D2:9B:4A:88:9C:13 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 0786 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 0750 Signing time: Thu 12 Mar 2026 21:23:06 +0000 Manifest this update: Thu 12 Mar 2026 21:23:05 +0000 Manifest next update: Thu 19 Mar 2026 21:23:05 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: 01IfO21jQ56odvH+YOR8GxKFtBMmSiCvw0dln1paBIs=) 2: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: aSxgIlw8nZiN+6lgLNU5XvZ1FdnFtkSevs0pTTJMvJY=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: vtp4YKFz/A5Vi0zg64GLZs1k3ocvwIIzZCuiJxmejGs=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: t2VblrPsPkg3OLGXiwM69R4XdRcwB3mySF4/73qDgbo=) 5: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (hash: phlxZambGxwdatRQWNb2Yjt/alGa6e8xzyqiiNU2+mQ=) 6: 8065DE3E355D11F0A8C7F559C4F9AE02.roa (hash: JyT9d9OOCJrRzpFBrxSBmC+CtEx3ZAy2eSQHymf45+s=) 7: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: hn072ZUt0QkiLvSmGaoI0bZ5eHexJ3APJASDMCiyA2M=) 8: 05F05106586011EE9399A92EC4F9AE02.roa (hash: d5Czd9F+MkzuB9PBir/JbWAghXpmJN+auVy0L4FfZfQ=) 9: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 4thkndOJT3+vXRn8C465Fs6jq2L+GeTYNEVafFWoUXs=) 10: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: mr8KwOkVa8RAea/BYVd3YUG6na4L4IGVAN/w6VWKUIw=) 11: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: GtRv2G1MeWMHZlw+kEpfpaWB79CdGXzgFC1k73nj5d0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1926 (0x786) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Mar 12 21:23:05 2026 GMT Not After : Mar 19 21:23:05 2026 GMT Subject: CN=69b32eba-3863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:9c:89:43:05:65:8e:27:bf:76:0f:67:9f: 4f:e6:67:96:c7:b5:0b:58:e7:cd:75:bc:75:97:b2: 42:fc:65:b6:cf:9a:9b:4b:15:0f:1e:8b:2a:82:6b: 8c:1a:1a:2f:a0:b6:ab:30:4b:e3:19:c3:01:91:2e: 25:c8:5c:78:06:84:a5:13:c3:a8:d0:5a:33:69:1f: de:7d:09:d2:13:f7:5e:1d:4a:d7:87:6a:d8:c3:ef: 41:33:19:fc:13:9a:21:6a:2f:9e:06:a7:db:52:fa: 0e:9d:f5:c9:fd:2f:f9:f6:c7:44:6e:da:f6:a2:3d: cb:79:54:c8:52:99:ee:35:a1:52:ad:4a:df:3f:38: e4:d8:d3:7b:fe:92:2b:89:b3:1e:4d:bc:89:52:36: 3d:39:a4:8a:48:83:3c:13:b3:e3:83:e9:a1:f1:2e: c5:0e:5c:80:4e:59:9d:8f:cb:4c:95:db:a9:9f:c4: 04:7f:a9:86:c1:9d:e2:85:ed:77:e0:d9:e4:dd:1b: c3:40:0d:70:b4:48:c6:5c:95:8f:0d:31:4d:3b:06: 3a:8f:c5:9f:0d:ba:32:cb:dc:e6:bf:d6:81:ff:87: f4:df:c4:e6:81:61:eb:22:f2:2b:f7:fa:41:4a:c3: d9:6d:f4:98:43:79:09:de:c9:7e:63:58:df:43:18: 79:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B9:7E:5D:08:8D:4A:05:B3:1F:29:4C:EA:66:D2:9B:4A:88:9C:13 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:10:70:6f:ea:e1:b4:c5:84:4d:37:6e:70:47:88:84:81:cf: 6f:ed:a7:ff:d8:57:98:c0:a6:2d:95:79:62:f3:60:68:e9:d5: 63:0b:38:db:c9:58:65:49:75:dc:cd:cf:77:3c:7f:ce:ac:55: d4:5b:48:30:74:30:ab:98:51:ac:fc:ea:82:67:f3:f3:42:cf: 40:fc:e0:75:2c:cf:01:4c:b9:b0:aa:74:56:61:8e:f9:ca:14: f5:bc:2f:9d:eb:47:3b:6e:7f:4d:ce:25:d5:55:1b:0e:4f:ce: 62:a0:d0:45:37:15:a6:0d:be:4a:9d:50:c6:c3:23:a1:79:78: 72:36:7a:7b:99:f9:2e:9e:95:42:5c:83:a0:4e:00:e2:5c:c2: 43:85:54:ef:59:c4:fd:0f:36:33:ed:2d:7f:ce:68:ff:fa:b2: d3:1b:28:9d:29:42:2f:c2:b2:4c:86:74:73:7e:9a:b1:da:92: 20:01:65:20:b4:fe:cf:50:f2:7e:68:a9:93:2a:b7:d4:4f:cd: 06:7d:90:5b:d3:be:43:f9:1c:76:06:ff:a4:03:fb:45:63:6c: 5b:a5:20:f6:9d:a2:36:7f:bc:1d:7b:e7:20:75:64:e2:cb:30: 1d:c2:f1:e0:13:4f:04:b5:0a:d4:3d:fe:a7:93:cd:73:7d:18: 5d:1e:24:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjYwMzEyMjEyMzA1WhcNMjYwMzE5MjEyMzA1WjAYMRYwFAYD VQQDEw02OWIzMmViYS0zODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyCciUMFZY4nv3YPZ59P5meWx7ULWOfNdbx1l7JC/GW2z5qbSxUPHosqgmuM GhovoLarMEvjGcMBkS4lyFx4BoSlE8Oo0FozaR/efQnSE/deHUrXh2rYw+9BMxn8 E5ohai+eBqfbUvoOnfXJ/S/59sdEbtr2oj3LeVTIUpnuNaFSrUrfPzjk2NN7/pIr ibMeTbyJUjY9OaSKSIM8E7Pjg+mh8S7FDlyATlmdj8tMldupn8QEf6mGwZ3ihe13 4Nnk3RvDQA1wtEjGXJWPDTFNOwY6j8WfDboyy9zmv9aB/4f038TmgWHrIvIr9/pB SsPZbfSYQ3kJ3sl+Y1jfQxh5bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKe5fl0I jUoFsx8pTOpm0ptKiJwTMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAehBwb+rhtMWETTducEeIhIHPb+2n/9hXmMCmLZV5YvNgaOnVYws428lYZUl1 3M3Pdzx/zqxV1FtIMHQwq5hRrPzqgmfz80LPQPzgdSzPAUy5sKp0VmGO+coU9bwv netHO25/Tc4l1VUbDk/OYqDQRTcVpg2+Sp1QxsMjoXl4cjZ6e5n5Lp6VQlyDoE4A 4lzCQ4VU71nE/Q82M+0tf85o//qy0xsonSlCL8KyTIZ0c36asdqSIAFlILT+z1Dy fmipkyq31E/NBn2QW9O+Q/kcdgb/pAP7RWNsW6Ug9p2iNn+8HXvnIHVk4sswHcLx 4BNPBLUK1D3+p5PNc30YXR4kvw== -----END CERTIFICATE-----Generated at Fri Mar 13 00:15:06 2026 by rpki-client