$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: VSH7rSzIsia4UnmNysnzDtrilxam6GySePI++ngRA3c= Subject key identifier: 29:B5:B4:E2:71:54:E8:27:3C:BC:F6:09:B7:AD:2B:D7:A8:E9:C9:62 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0A2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0A23 Signing time: Sat 28 Mar 2026 19:41:32 +0000 Manifest this update: Sat 28 Mar 2026 19:41:32 +0000 Manifest next update: Sat 04 Apr 2026 19:41:32 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: zbKBEni5eXik5CIjV6GeRbAlJ0gyLisBdOkO4FbouDM=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: Lmz5u1XQZ5pr8gx+0xG0dq5xcsKIBrpCQ17vf78quGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2607 (0xa2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Mar 28 19:41:32 2026 GMT Not After : Apr 4 19:41:32 2026 GMT Subject: CN=69c82eec-afe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:9a:45:6d:27:8a:1c:3c:ac:9c:0c:f1:53: 0a:cc:20:91:1b:46:42:c4:35:0f:23:6b:3a:f2:eb: a5:b9:df:28:af:5a:11:6c:66:7d:dd:fb:a3:eb:ea: 17:24:45:94:99:0a:89:66:c7:7d:01:ad:91:35:d7: 6a:a1:03:6a:a5:71:3d:ab:0c:79:26:40:a3:b4:c5: ba:c6:67:13:4d:2d:18:b2:d9:b3:f8:7b:1f:ac:53: 9d:c5:55:b6:12:fb:53:bb:25:2c:79:b8:50:51:d1: 9d:a7:6c:04:b3:8a:b5:27:da:4b:3e:44:c7:95:9a: ab:8a:f1:17:09:9c:0d:5e:06:5d:6e:0a:a4:c8:73: f9:ae:f2:e9:b1:47:f5:7a:5a:ec:e9:84:c8:81:5d: c2:30:3c:20:55:24:91:14:1b:bf:09:e6:5d:53:52: 5a:64:02:ff:a0:50:61:67:cc:b4:89:7d:1b:bf:d3: 24:59:6c:a5:47:9f:b4:28:73:48:8f:47:2d:2a:dd: 90:d8:7f:66:db:e0:53:4c:a2:f5:c6:6e:02:f5:19: 12:0d:d2:62:d1:8b:f2:5f:d7:02:d1:24:ca:d2:2c: f8:dc:0e:dc:76:00:9a:81:69:d8:7a:bd:03:4b:93: 3f:f6:29:e6:ce:fa:06:ee:54:4f:5f:07:3a:a7:d2: f8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B5:B4:E2:71:54:E8:27:3C:BC:F6:09:B7:AD:2B:D7:A8:E9:C9:62 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1c:fb:6b:4b:c6:79:ab:6d:44:05:a5:9f:4c:00:62:58:18: a6:ff:7d:67:94:77:25:ef:df:66:f1:a7:65:d9:e8:ab:6b:09: e7:66:3f:9e:74:73:5e:72:08:5d:6d:49:c4:3f:b3:a7:e5:b7: f1:f6:9c:fe:e5:f1:8b:2b:ad:b5:f7:27:fc:cb:ed:cd:40:99: d1:98:3c:14:41:ec:2d:8b:a9:8b:b1:1a:8e:92:6c:3e:9e:0e: c5:40:fa:0f:3d:2a:ab:51:0b:3c:a2:b9:fe:5d:60:af:08:db: 11:1a:94:a0:b4:7e:fe:68:b0:76:2f:a0:ad:13:ff:86:c3:c7: cb:b1:f3:0f:86:b2:ba:64:c2:15:e2:ba:ee:1b:23:28:64:a6: 74:78:9c:ec:6e:07:21:bd:dd:1e:da:33:a4:d6:75:16:51:93: cb:81:a2:cf:44:fe:90:ba:08:42:01:f9:d5:d3:47:b8:8e:06: 7b:e7:fc:c0:c7:34:61:7b:80:a2:6c:c1:73:94:55:dc:d8:fe: 6b:79:b0:5c:5b:42:40:b4:64:47:00:08:b5:52:7f:98:b0:d2: 3f:6b:c3:b7:9f:fc:60:bd:28:20:5a:65:95:0f:a4:1c:d0:44: 63:47:30:c5:35:3d:a9:e3:6e:3c:e8:ff:99:54:60:e4:84:ed: e1:8e:c6:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjYwMzI4MTk0MTMyWhcNMjYwNDA0MTk0MTMyWjAYMRYwFAYD VQQDEw02OWM4MmVlYy1hZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvWaRW0nihw8rJwM8VMKzCCRG0ZCxDUPI2s68uulud8or1oRbGZ93fuj6+oX JEWUmQqJZsd9Aa2RNddqoQNqpXE9qwx5JkCjtMW6xmcTTS0Ystmz+HsfrFOdxVW2 EvtTuyUsebhQUdGdp2wEs4q1J9pLPkTHlZqrivEXCZwNXgZdbgqkyHP5rvLpsUf1 elrs6YTIgV3CMDwgVSSRFBu/CeZdU1JaZAL/oFBhZ8y0iX0bv9MkWWylR5+0KHNI j0ctKt2Q2H9m2+BTTKL1xm4C9RkSDdJi0YvyX9cC0STK0iz43A7cdgCagWnYer0D S5M/9inmzvoG7lRPXwc6p9L4dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCm1tOJx VOgnPLz2CbetK9eo6cliMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYhz7a0vGeattRAWln0wAYlgYpv99Z5R3Je/fZvGnZdnoq2sJ52Y/nnRzXnII XW1JxD+zp+W38fac/uXxiyuttfcn/MvtzUCZ0Zg8FEHsLYupi7EajpJsPp4OxUD6 Dz0qq1ELPKK5/l1grwjbERqUoLR+/miwdi+grRP/hsPHy7HzD4ayumTCFeK67hsj KGSmdHic7G4HIb3dHtozpNZ1FlGTy4Giz0T+kLoIQgH51dNHuI4Ge+f8wMc0YXuA omzBc5RV3Nj+a3mwXFtCQLRkRwAItVJ/mLDSP2vDt5/8YL0oIFpllQ+kHNBEY0cw xTU9qeNuPOj/mVRg5ITt4Y7Gww== -----END CERTIFICATE-----Generated at Sun Mar 29 19:24:47 2026 by rpki-client