$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: 38A18cp4z3sR+Iux/iE21GfCldhBPg6JVrdoGeibmr4= Subject key identifier: 1F:C6:5E:0B:E7:E6:8E:1E:1D:6D:BD:59:70:4A:1D:86:2C:F6:A2:47 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0C47 Signing time: Mon 02 Mar 2026 01:43:37 +0000 Manifest this update: Mon 02 Mar 2026 01:43:34 +0000 Manifest next update: Mon 09 Mar 2026 01:43:34 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: iJhwquL2OIxfrbae88tbLvSRUNvfI5j+zjxJg3zj3rY=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: MhK6fjpCgRPkr/iKRfOswI8Vu+Z6RpVv9J3L3B3Ndho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Mar 2 01:43:34 2026 GMT Not After : Mar 9 01:43:34 2026 GMT Subject: CN=69a4eb48-ca0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d6:d1:13:34:f9:2b:17:ab:e6:ee:58:09:82: d2:48:d4:ce:ac:9a:4a:89:ce:ee:ce:85:07:51:4f: 93:54:0d:d6:ae:68:29:be:d9:72:ea:80:a1:0e:e1: cd:80:58:49:09:9c:0f:c6:cd:4f:23:35:f1:74:1e: 35:1f:02:6b:dd:bd:5f:19:6e:db:33:91:05:6d:d4: f8:5f:1d:11:e7:6c:7a:e0:f5:d7:4a:57:05:2d:76: 3b:38:fe:7e:7f:e9:78:0e:2f:01:cf:e1:16:0c:44: 3d:69:71:16:d8:ef:f4:d6:ef:2b:10:c8:ad:e0:f9: c2:b9:3f:d5:90:8c:c1:d9:61:0a:77:44:7f:29:b7: 06:aa:54:4a:1d:17:2d:83:e4:e8:b9:49:ca:2f:eb: 06:dc:1b:2a:8b:8e:a2:98:33:8b:d8:25:2d:f6:36: 35:1a:c7:da:e5:ce:91:e5:89:da:4f:6a:a8:e3:97: d8:3e:f3:e5:ab:a5:bb:f7:f2:b7:79:67:48:53:73: 4f:d4:07:d3:6e:5f:a6:41:cd:66:da:be:8f:85:87: 4f:c9:84:c7:6b:e0:2a:03:e4:27:62:27:0f:23:b1: c6:f2:e5:26:a3:6b:77:d5:2a:4c:c3:6c:df:18:55: 85:f8:54:be:33:73:ae:34:be:39:83:b1:d9:18:f3: cb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C6:5E:0B:E7:E6:8E:1E:1D:6D:BD:59:70:4A:1D:86:2C:F6:A2:47 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a9:0b:d2:e0:0f:fe:e4:b5:07:f7:0c:91:23:ad:7d:e1:17: 99:aa:f4:3b:e2:ca:16:8d:a5:3c:2f:c1:b5:73:da:c4:2d:49: b7:27:45:3c:3d:2c:38:7e:49:9f:2e:0e:ee:65:32:d0:1d:44: a8:96:85:10:98:59:02:2d:6d:c0:4c:35:86:fb:c1:9c:e2:d3: fd:40:d9:92:2d:0f:3a:c1:9d:0e:93:4c:eb:9e:2c:10:d6:17: 68:c5:e0:af:c8:71:51:3a:cc:cf:80:5f:b2:41:0a:12:10:fd: e8:cb:54:2d:35:da:96:b1:a9:3a:31:4a:d8:75:f3:65:cf:d8: c0:5c:53:a7:99:15:76:3b:86:6c:23:dd:89:ff:2d:a2:06:ac: 85:e1:8d:59:75:e8:1f:d6:3e:7c:da:10:7c:12:c8:f5:fa:4e: 19:7d:43:7c:17:84:f2:c2:f6:20:65:75:1e:db:f5:0f:d7:ff: da:8b:f6:e3:3f:24:55:84:a6:b7:f3:fe:8a:22:52:97:e5:51: 8c:b9:dd:31:10:63:5e:9e:b1:e9:25:13:7c:97:45:a5:44:92: 08:76:74:08:81:e0:69:e8:db:2d:29:45:b9:67:8e:77:da:d9: 84:9c:8c:7b:13:36:33:89:55:f5:d3:53:87:93:a3:93:ae:0e: 17:67:bb:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjYwMzAyMDE0MzM0WhcNMjYwMzA5MDE0MzM0WjAYMRYwFAYD VQQDEw02OWE0ZWI0OC1jYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltbREzT5Kxer5u5YCYLSSNTOrJpKic7uzoUHUU+TVA3Wrmgpvtly6oChDuHN gFhJCZwPxs1PIzXxdB41HwJr3b1fGW7bM5EFbdT4Xx0R52x64PXXSlcFLXY7OP5+ f+l4Di8Bz+EWDEQ9aXEW2O/01u8rEMit4PnCuT/VkIzB2WEKd0R/KbcGqlRKHRct g+TouUnKL+sG3Bsqi46imDOL2CUt9jY1Gsfa5c6R5YnaT2qo45fYPvPlq6W79/K3 eWdIU3NP1AfTbl+mQc1m2r6PhYdPyYTHa+AqA+QnYicPI7HG8uUmo2t31SpMw2zf GFWF+FS+M3OuNL45g7HZGPPLMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB/GXgvn 5o4eHW29WXBKHYYs9qJHMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhakL0uAP/uS1B/cMkSOtfeEXmar0O+LKFo2lPC/BtXPaxC1JtydFPD0sOH5J ny4O7mUy0B1EqJaFEJhZAi1twEw1hvvBnOLT/UDZki0POsGdDpNM654sENYXaMXg r8hxUTrMz4BfskEKEhD96MtULTXalrGpOjFK2HXzZc/YwFxTp5kVdjuGbCPdif8t ogasheGNWXXoH9Y+fNoQfBLI9fpOGX1DfBeE8sL2IGV1Htv1D9f/2ov24z8kVYSm t/P+iiJSl+VRjLndMRBjXp6x6SUTfJdFpUSSCHZ0CIHgaejbLSlFuWeOd9rZhJyM exM2M4lV9dNTh5Ojk64OF2e7mw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:48:24 2026 by rpki-client