$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: yAI8WAvpOqQYxt9PYAD9JUJp1s8TmDaSHusig9BrNl8= Subject key identifier: B6:45:C1:BF:00:08:35:83:F0:17:E1:7C:9C:A0:5D:FC:9F:8D:33:92 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 0216 Signing time: Sun 01 Mar 2026 03:39:21 +0000 Manifest this update: Sun 01 Mar 2026 03:39:20 +0000 Manifest next update: Sun 08 Mar 2026 03:39:20 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: rHYUtD+TZiZOsjRWr3SHx/Qf45sbCF4p95/BYqu5QQA=) 2: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: Wwngk0PhTjjlaVWZbm+erGU8S4svzLGsMCsoXoSIiNE=) 3: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: Rkwm42Vb05Pye3RGHBOFC1rkc6+xEeMKra2X3IcXiEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Mar 1 03:39:20 2026 GMT Not After : Mar 8 03:39:20 2026 GMT Subject: CN=69a3b4e8-8db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:6d:b8:57:6e:03:12:24:e9:4c:5a:20:2b: ca:73:88:b7:0e:04:61:b4:1a:f7:8e:e2:cc:cc:c2: d6:98:68:f9:af:cc:97:fb:a6:85:f6:86:2f:f0:1d: 13:7e:52:8c:b6:99:fc:ae:4c:83:35:5e:e5:cb:40: 53:a3:c2:a6:f2:cf:52:81:74:97:18:bc:c4:62:bc: 97:3f:40:1c:d4:d8:ff:6f:a5:9d:bc:10:bd:d5:81: 93:bb:ad:d4:1b:d9:6b:f3:69:6f:6d:c3:60:68:bc: da:79:ab:aa:60:c8:ed:00:57:d0:d7:17:b6:43:0e: fb:ec:34:8d:bd:e6:4b:ca:9b:c0:52:b2:89:15:25: 24:e0:64:5f:d2:27:0f:a6:ea:19:4b:3e:40:50:06: a7:be:26:94:c3:6d:0e:72:27:e8:ed:02:45:87:6f: 76:a3:e8:46:cd:ed:dc:0f:5d:0f:43:cf:42:43:d4: 5b:ac:df:16:fc:b1:21:68:06:f4:68:1b:fe:d5:cc: e5:2f:45:0a:b5:41:f2:24:ee:d7:4c:7c:c1:e6:28: 98:12:5a:08:dd:03:0b:93:46:a7:4f:69:9d:45:61: 1a:d2:a9:94:79:d8:e5:b6:86:bb:f4:97:15:6f:d2: 2f:74:44:3c:2e:c8:7b:ad:f0:8f:8d:69:11:e9:4e: 7c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:45:C1:BF:00:08:35:83:F0:17:E1:7C:9C:A0:5D:FC:9F:8D:33:92 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e0:79:05:5c:af:b6:36:aa:f7:58:90:af:6e:88:09:a4:3e: b3:2e:7d:07:20:d5:2c:89:f8:54:69:29:40:dd:0c:c1:17:ab: b7:11:18:b8:66:a3:c6:47:6f:19:67:b7:bd:68:8c:4f:5c:e8: e6:05:2f:85:c3:78:5d:3e:b9:85:b9:9f:5d:e3:24:4b:02:df: ee:ad:5e:8b:63:0e:c7:4f:fb:bd:bc:81:6d:94:fd:8e:a6:ba: bf:8e:45:96:b0:f9:42:ad:16:e5:8c:6c:f6:a5:5f:4e:36:8c: 64:72:07:db:e6:18:56:88:a5:0d:ba:21:b7:6f:d7:74:76:63: df:7d:ed:fe:d6:e1:af:aa:f2:f6:8b:bc:83:24:73:73:eb:db: 09:64:f8:df:31:75:2a:1a:d6:1d:4a:a9:62:6f:20:9c:f8:18: 00:67:db:2c:70:e8:d8:18:83:cd:43:1d:1c:76:44:e1:17:7b: 48:3b:0f:0e:0a:5e:81:66:fb:76:89:52:d9:a4:d8:8c:1b:d1: c0:ab:5e:7d:b6:1c:0e:4f:b7:ae:3b:bf:70:db:71:7f:09:58: a9:a9:9c:98:9c:9d:d6:e1:60:62:de:f0:cb:f1:2c:43:2b:00: 31:bf:44:a9:96:5e:b4:a4:a8:18:f6:84:ab:22:65:bd:b8:fd: 2d:38:b6:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjYwMzAxMDMzOTIwWhcNMjYwMzA4MDMzOTIwWjAYMRYwFAYD VQQDDA02OWEzYjRlOC04ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDxtuFduAxIk6UxaICvKc4i3DgRhtBr3juLMzMLWmGj5r8yX+6aF9oYv8B0T flKMtpn8rkyDNV7ly0BTo8Km8s9SgXSXGLzEYryXP0Ac1Nj/b6WdvBC91YGTu63U G9lr82lvbcNgaLzaeauqYMjtAFfQ1xe2Qw777DSNveZLypvAUrKJFSUk4GRf0icP puoZSz5AUAanviaUw20Ocifo7QJFh292o+hGze3cD10PQ89CQ9RbrN8W/LEhaAb0 aBv+1czlL0UKtUHyJO7XTHzB5iiYEloI3QMLk0anT2mdRWEa0qmUedjltoa79JcV b9IvdEQ8Lsh7rfCPjWkR6U58VQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLZFwb8A CDWD8BfhfJygXfyfjTOSMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbuB5BVyvtjaq91iQr26ICaQ+sy59ByDVLIn4VGkpQN0MwRertxEYuGajxkdv GWe3vWiMT1zo5gUvhcN4XT65hbmfXeMkSwLf7q1ei2MOx0/7vbyBbZT9jqa6v45F lrD5Qq0W5Yxs9qVfTjaMZHIH2+YYVoilDboht2/XdHZj333t/tbhr6ry9ou8gyRz c+vbCWT43zF1KhrWHUqpYm8gnPgYAGfbLHDo2BiDzUMdHHZE4Rd7SDsPDgpegWb7 dolS2aTYjBvRwKtefbYcDk+3rju/cNtxfwlYqamcmJyd1uFgYt7wy/EsQysAMb9E qZZetKSoGPaEqyJlvbj9LTi2hw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:42:59 2026 by rpki-client