$ rpki-client -vvf rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft File: idaQRux8ca1__5jk_Zu5iB8pnIk.mft (raw, json) Hash identifier: YLuDnHEy9FMuGFFCOFowuui0GRm22gitWw6sUxPiB9A= Subject key identifier: 8D:52:DE:BB:AB:20:B6:DA:18:BE:7B:AF:FA:4F:6E:36:2D:62:74:58 Authority key identifier: 89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 Certificate issuer: /CN=A914D648/serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft Manifest number: 12 Signing time: Sun 01 Mar 2026 10:33:23 +0000 Manifest this update: Sun 01 Mar 2026 10:33:23 +0000 Manifest next update: Sun 08 Mar 2026 10:33:23 +0000 Files and hashes: 1: idaQRux8ca1__5jk_Zu5iB8pnIk.crl (hash: je1XEK6WW/Uo3W/l5d/u0Zd01d4GTSb7832ntLYeDlA=) 2: 4A5A1A32001211F1BC55B3C9406F56BC.roa (hash: hV/jnLK+I5DqGVULzWJLe2aTFemY0+Rn6OMG26sgrM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D648, serialNumber=89D69046EC7C71AD7FFF98E4FD9BB9881F299C89 Validity Not Before: Mar 1 10:33:23 2026 GMT Not After : Mar 8 10:33:23 2026 GMT Subject: CN=69a415f3-aeb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2c:53:45:ba:00:8c:57:e3:87:57:97:3d:0b: e3:8e:de:8e:8e:e5:3b:f2:f7:6c:b5:63:42:13:6f: 5d:5e:e4:b0:f6:c7:9d:b0:3c:b2:0e:99:f4:25:98: 33:9b:af:4f:78:82:3e:dc:dd:24:c2:71:4e:83:fe: e2:41:56:da:d4:fc:2c:90:51:bf:71:c5:7e:4e:62: 4b:05:27:37:07:aa:22:b0:59:79:24:1e:23:f9:f6: 67:02:21:90:99:8c:b1:0f:60:b3:4d:4c:62:5d:f9: 18:69:79:2f:69:88:3d:fd:a3:50:fe:4f:10:17:db: f6:3a:25:42:65:f5:49:db:35:bb:99:58:3c:b2:41: e7:b8:57:8c:57:20:da:ff:85:6d:5e:9f:dd:8b:61: 6c:cc:02:14:23:93:dd:8e:41:ff:36:db:30:8d:e7: 31:75:96:58:89:b6:c4:ee:59:2a:b8:90:df:78:dd: fe:58:3c:f9:07:83:35:d2:ec:e9:07:37:56:7b:3b: 30:5e:b4:74:3f:97:e3:5c:96:90:11:35:16:60:a2: 3f:f0:47:9b:ef:72:8d:fe:a8:c0:c3:4b:ab:87:cb: ae:9d:a6:e2:bc:ce:10:96:2c:4c:94:33:f2:75:5c: 86:4b:42:78:fb:8c:38:a3:d4:e4:9e:d8:e0:f7:35: 71:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:52:DE:BB:AB:20:B6:DA:18:BE:7B:AF:FA:4F:6E:36:2D:62:74:58 X509v3 Authority Key Identifier: keyid:89:D6:90:46:EC:7C:71:AD:7F:FF:98:E4:FD:9B:B9:88:1F:29:9C:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/idaQRux8ca1__5jk_Zu5iB8pnIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D648/01F702F0001211F1878F97C0406F56BC/idaQRux8ca1__5jk_Zu5iB8pnIk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:f3:3e:0a:06:48:c8:09:16:7c:c3:74:09:fb:75:ca:12:28: 4f:d3:d3:74:fe:a4:b0:5d:1b:fc:e4:7b:e2:a3:35:84:52:3f: 73:f5:d4:94:ab:29:d7:9b:ea:05:a9:39:d1:b1:75:60:08:95: 37:e4:32:5a:88:8d:0b:dc:db:97:72:0e:11:5e:50:f2:a3:c9: fd:28:b1:b2:89:d6:93:24:50:ac:02:e2:b1:32:26:24:68:96: 36:b9:22:bf:0d:31:c3:d4:2a:29:e0:4d:c1:41:50:38:9c:4d: ad:85:2a:d9:08:24:54:1b:db:ec:b2:0a:d4:b2:53:c1:5c:76: c9:40:aa:b0:8e:2a:78:8b:18:31:5e:79:d3:82:53:b9:03:3a: 15:87:c6:50:3c:34:e3:4c:9c:50:5f:b2:87:d0:40:82:df:08: ed:0e:aa:29:57:f4:55:a3:53:d4:a2:86:b0:df:04:1c:41:5a: 97:a1:6e:6f:96:89:73:fb:f8:1d:ac:f9:73:2b:d1:a2:e9:02: 3a:d9:e5:10:5a:c2:1f:26:f1:7d:a1:75:30:f3:60:d3:85:7a: b2:fe:d8:c7:06:20:18:fd:63:14:66:b5:60:6f:bc:22:48:92: c5:fd:6b:d0:d9:3e:a5:8b:bd:48:1a:b2:fe:4b:12:5c:7c:7c: c6:a3:87:a8 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDY0ODExMC8GA1UEBRMoODlENjkwNDZFQzdDNzFBRDdGRkY5OEU0RkQ5QkI5ODgx RjI5OUM4OTAeFw0yNjAzMDExMDMzMjNaFw0yNjAzMDgxMDMzMjNaMBgxFjAUBgNV BAMTDTY5YTQxNWYzLWFlYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDLFNFugCMV+OHV5c9C+OO3o6O5Tvy92y1Y0ITb11e5LD2x52wPLIOmfQlmDOb r094gj7c3STCcU6D/uJBVtrU/CyQUb9xxX5OYksFJzcHqiKwWXkkHiP59mcCIZCZ jLEPYLNNTGJd+RhpeS9piD39o1D+TxAX2/Y6JUJl9UnbNbuZWDyyQee4V4xXINr/ hW1en92LYWzMAhQjk92OQf822zCN5zF1lliJtsTuWSq4kN943f5YPPkHgzXS7OkH N1Z7OzBetHQ/l+NclpARNRZgoj/wR5vvco3+qMDDS6uHy66dpuK8zhCWLEyUM/J1 XIZLQnj7jDij1OSe2OD3NXEbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUjVLeu6sg ttoYvnuv+k9uNi1idFgwHwYDVR0jBBgwFoAUidaQRux8ca1//5jk/Zu5iB8pnIkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRENjQ4LzAxRjcwMkYwMDAx MjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2ExX181amtfWnU1aUI4cG5J ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWRhUVJ1eDhjYTFfXzVqa19adTVpQjhwbklrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE NjQ4LzAxRjcwMkYwMDAxMjExRjE4NzhGOTdDMDQwNkY1NkJDL2lkYVFSdXg4Y2Ex X181amtfWnU1aUI4cG5Jay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCO8z4KBkjICRZ8w3QJ+3XKEihP09N0/qSwXRv85HviozWEUj9z9dSUqynXm+oF qTnRsXVgCJU35DJaiI0L3NuXcg4RXlDyo8n9KLGyidaTJFCsAuKxMiYkaJY2uSK/ DTHD1Cop4E3BQVA4nE2thSrZCCRUG9vssgrUslPBXHbJQKqwjip4ixgxXnnTglO5 AzoVh8ZQPDTjTJxQX7KH0ECC3wjtDqopV/RVo1PUooaw3wQcQVqXoW5vlolz+/gd rPlzK9Gi6QI62eUQWsIfJvF9oXUw82DThXqy/tjHBiAY/WMUZrVgb7wiSJLF/WvQ 2T6li71IGrL+SxJcfHzGo4eo -----END CERTIFICATE-----Generated at Mon Mar 2 03:09:00 2026 by rpki-client