$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: S05h1+WW9i14A0lr1Wj9aVvGSWPlawp6MpuwABaXOp4= Subject key identifier: 4F:1D:8E:19:F5:9D:4D:77:8F:02:37:0D:36:75:C4:B7:12:6A:F3:A2 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 1166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 1148 Signing time: Sat 28 Mar 2026 17:10:49 +0000 Manifest this update: Sat 28 Mar 2026 17:10:49 +0000 Manifest next update: Sat 04 Apr 2026 17:10:49 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: L20H/gWvfbxjGPO++Ml42bS07a7yTKWWgr1FzcRKci8=) 2: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: gurfzZR1CXNhqkzRdnCry9CSRk7tzPLYC7aS4NwE5uc=) 3: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: thljpBcbTfFsywqUx5BbJ+XVWb8JNohUp1zcHq2Dk8Q=) 4: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: uxURuSX1zlkNuHZUlcFiKuQiaf7w3F7liJA01RSJG00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 17:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4454 (0x1166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D, serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Mar 28 17:10:49 2026 GMT Not After : Apr 4 17:10:49 2026 GMT Subject: CN=69c80b99-dfc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1b:e8:cd:6d:2c:62:6c:b8:ae:cb:5e:ef:14: 17:8e:03:d3:de:2f:7a:27:16:27:6c:0d:eb:44:64: c4:e8:26:2d:74:76:05:fc:59:af:c5:48:e7:10:7a: c4:e8:75:b2:66:19:c0:15:14:c0:3f:0f:0c:a5:ce: 02:72:92:c0:71:c4:38:3c:b7:69:c0:8c:3d:1b:73: e9:94:96:63:bc:93:90:38:a7:62:bc:49:7c:d1:ec: 9a:73:e4:ef:87:9f:ea:19:8b:9b:a7:54:ca:06:b7: 0c:76:2d:7e:d1:28:d2:32:51:14:82:88:d0:04:2c: 88:2a:40:87:24:39:ea:fe:e0:07:f4:83:a9:83:f2: 53:b2:f2:0c:67:dd:ed:a1:c1:02:1c:90:1f:a9:8c: 28:1e:c5:ad:a4:52:4a:8b:0b:47:99:77:aa:03:85: da:6d:6e:ba:a8:27:54:4f:76:7b:51:ee:65:06:42: ad:63:b9:d1:ef:51:1e:7d:30:ba:3d:89:88:92:ca: 25:80:57:8d:ed:12:92:f6:f5:95:5c:40:08:2b:69: 9c:8a:11:cc:f5:9a:41:e7:35:8f:ce:60:d5:df:1e: 57:c2:73:5e:9c:ec:5a:f1:ce:7b:09:17:f0:e2:54: e5:c7:33:43:cd:ef:62:25:88:90:64:33:7b:6c:52: 2e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1D:8E:19:F5:9D:4D:77:8F:02:37:0D:36:75:C4:B7:12:6A:F3:A2 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:15:50:fa:d7:5a:6c:2e:6c:f2:18:22:66:58:c9:40:06:fe: 6b:f8:26:fa:1c:60:2b:c3:25:8c:18:ca:39:64:d4:cb:6a:f6: 7b:8a:cd:d2:2f:c1:a2:8a:0e:d3:17:20:ba:95:6c:87:84:90: 88:63:5d:5e:9b:e4:45:88:fe:d0:0e:e6:69:c5:a2:8a:df:8e: 20:bb:0c:8b:de:99:79:e8:3d:15:56:8e:a4:b8:45:c5:4e:07: ac:a2:9b:16:05:74:a0:03:ea:81:52:3e:bf:d5:8a:47:ec:8a: 19:6b:92:8d:e6:63:13:c1:8d:bc:46:7d:58:c9:fa:e9:c2:09: 3a:5c:e1:d6:7a:8f:16:fa:55:94:97:b9:5d:b1:4d:49:03:d7: 28:59:4a:f6:e9:b0:06:49:ff:89:95:89:8b:a2:d4:f2:1f:2a: 1c:a3:14:53:d3:a0:27:24:5c:a8:c6:2d:ac:1f:a1:f1:d9:f9: ea:c7:df:ec:81:8c:40:df:38:a3:2a:19:f6:75:f7:39:07:49: 87:f6:70:25:64:64:df:13:c5:d8:10:01:bb:0b:0a:61:b3:ca: 27:bf:23:13:73:11:60:b6:d2:59:de:0d:5c:bc:18:fe:d4:b7: 77:c6:45:22:a1:74:10:4f:fb:7d:c1:09:85:5e:05:fe:ae:b6: 58:c3:5c:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjYwMzI4MTcxMDQ5WhcNMjYwNDA0MTcxMDQ5WjAYMRYwFAYD VQQDEw02OWM4MGI5OS1kZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRvozW0sYmy4rste7xQXjgPT3i96JxYnbA3rRGTE6CYtdHYF/FmvxUjnEHrE 6HWyZhnAFRTAPw8Mpc4CcpLAccQ4PLdpwIw9G3PplJZjvJOQOKdivEl80eyac+Tv h5/qGYubp1TKBrcMdi1+0SjSMlEUgojQBCyIKkCHJDnq/uAH9IOpg/JTsvIMZ93t ocECHJAfqYwoHsWtpFJKiwtHmXeqA4XabW66qCdUT3Z7Ue5lBkKtY7nR71EefTC6 PYmIksolgFeN7RKS9vWVXEAIK2mcihHM9ZpB5zWPzmDV3x5XwnNenOxa8c57CRfw 4lTlxzNDze9iJYiQZDN7bFIu1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE8djhn1 nU13jwI3DTZ1xLcSavOiMB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAhVQ+tdabC5s8hgiZljJQAb+a/gm+hxgK8MljBjKOWTUy2r2e4rN0i/BoooO 0xcgupVsh4SQiGNdXpvkRYj+0A7macWiit+OILsMi96Zeeg9FVaOpLhFxU4HrKKb FgV0oAPqgVI+v9WKR+yKGWuSjeZjE8GNvEZ9WMn66cIJOlzh1nqPFvpVlJe5XbFN SQPXKFlK9umwBkn/iZWJi6LU8h8qHKMUU9OgJyRcqMYtrB+h8dn56sff7IGMQN84 oyoZ9nX3OQdJh/ZwJWRk3xPF2BABuwsKYbPKJ78jE3MRYLbSWd4NXLwY/tS3d8ZF IqF0EE/7fcEJhV4F/q62WMNcVg== -----END CERTIFICATE-----Generated at Mon Mar 30 13:59:25 2026 by rpki-client