$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: /PkwIeJPEa7x6Ueu80Q4utiNX5hRzk2c5oeYBXv6wU4= Subject key identifier: B5:E2:4E:27:EC:0C:F6:B9:57:7B:53:E4:3D:88:1B:67:96:E4:BA:DD Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0A21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0A15 Signing time: Mon 02 Mar 2026 01:59:19 +0000 Manifest this update: Mon 02 Mar 2026 01:59:17 +0000 Manifest next update: Mon 09 Mar 2026 01:59:17 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: AVcA1N3xSZHLKZ4O6dSanYMREjCYoDDOUYkNHQGCEbo=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: Lmz5u1XQZ5pr8gx+0xG0dq5xcsKIBrpCQ17vf78quGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2593 (0xa21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Mar 2 01:59:17 2026 GMT Not After : Mar 9 01:59:17 2026 GMT Subject: CN=69a4eef6-a3e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:d5:c6:63:10:1d:9c:a7:d0:d5:b7:06:0b: ec:9f:4f:a0:7b:70:87:58:22:f8:23:e1:ac:b0:c9: ef:74:46:a5:3e:eb:a1:91:45:cd:80:3d:32:45:dc: dc:85:ed:5b:67:a9:e1:1a:3e:84:02:f1:f4:04:a8: 02:aa:fc:4a:30:65:e2:27:c6:35:7c:90:01:34:67: 27:2a:3c:4f:2b:95:7a:a9:ad:ea:94:dc:f7:79:47: 04:64:4a:5f:56:87:89:a6:86:9d:52:5d:2c:7f:8d: bf:0d:87:4c:22:ef:49:d8:f3:99:93:b6:9f:3b:5d: d6:65:72:d6:c2:95:6f:fa:bc:38:5d:94:3d:f8:e4: 22:d5:b4:fa:de:5e:9a:32:4a:00:58:70:d3:9d:57: bd:b2:83:e2:11:b1:f5:7f:3b:ab:fe:3d:64:65:dd: 9b:c9:39:0e:0e:f6:85:ff:cf:ea:9e:98:29:93:b2: 77:5d:ec:05:c6:f1:8f:bb:66:c3:a8:4d:7c:35:ff: cd:55:33:ed:1f:2e:88:47:d8:ba:63:7a:34:28:c6: ba:3c:54:0a:d4:1c:40:5b:91:4b:ef:9e:39:cf:a9: 95:ba:ca:0b:99:1c:55:9a:08:1b:2e:a9:37:a8:42: 43:7c:4d:1f:e8:e1:e9:eb:a6:31:bd:a4:e6:aa:78: 81:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E2:4E:27:EC:0C:F6:B9:57:7B:53:E4:3D:88:1B:67:96:E4:BA:DD X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f1:d4:2f:d3:4f:e4:1b:ee:96:db:98:7b:65:17:46:2f:d6: 5d:11:84:ae:44:69:c6:c6:9b:4e:e9:24:59:f4:8d:44:e4:52: b6:70:a8:d8:06:67:26:e6:a7:43:62:58:f4:4c:18:02:db:68: 7d:5a:94:81:1d:94:00:64:ac:ad:3a:7e:b7:95:ce:3e:82:a2: 49:2e:c7:5a:40:ca:a9:47:cd:4f:bc:57:11:e8:8d:c2:d6:77: 50:41:ec:21:de:0f:68:ab:93:05:c2:e7:3e:30:20:24:33:26: 4c:94:e4:be:8c:33:3f:be:d6:a3:66:21:a8:09:89:6d:66:f3: 55:74:05:72:ba:a6:22:a5:15:11:80:2f:f9:37:cd:68:9e:2d: f0:01:44:5a:ee:b3:f7:49:65:e4:e7:47:ec:f8:b1:0c:76:3b: 2b:27:e7:f0:6f:36:7d:d8:b4:60:72:35:b5:fe:42:5b:4d:ba: 15:85:b5:4e:79:62:db:73:56:9c:b7:32:e9:db:ca:5a:d2:10: 57:12:a3:58:65:9c:a1:dc:65:36:98:9f:4c:f1:69:8e:ec:53: ea:e8:39:95:cf:f3:1b:95:71:14:f7:bd:7c:62:95:00:18:b2: 51:ef:97:8d:f2:b6:12:f8:62:43:e8:0a:18:b4:3d:d5:be:2c: ae:cf:5d:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjYwMzAyMDE1OTE3WhcNMjYwMzA5MDE1OTE3WjAYMRYwFAYD VQQDEw02OWE0ZWVmNi1hM2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29nVxmMQHZyn0NW3Bgvsn0+ge3CHWCL4I+GssMnvdEalPuuhkUXNgD0yRdzc he1bZ6nhGj6EAvH0BKgCqvxKMGXiJ8Y1fJABNGcnKjxPK5V6qa3qlNz3eUcEZEpf VoeJpoadUl0sf42/DYdMIu9J2POZk7afO13WZXLWwpVv+rw4XZQ9+OQi1bT63l6a MkoAWHDTnVe9soPiEbH1fzur/j1kZd2byTkODvaF/8/qnpgpk7J3XewFxvGPu2bD qE18Nf/NVTPtHy6IR9i6Y3o0KMa6PFQK1BxAW5FL7545z6mVusoLmRxVmggbLqk3 qEJDfE0f6OHp66YxvaTmqniBTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLXiTifs DPa5V3tT5D2IG2eW5LrdMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARPHUL9NP5BvultuYe2UXRi/WXRGErkRpxsabTukkWfSNRORStnCo2AZnJuan Q2JY9EwYAttofVqUgR2UAGSsrTp+t5XOPoKiSS7HWkDKqUfNT7xXEeiNwtZ3UEHs Id4PaKuTBcLnPjAgJDMmTJTkvowzP77Wo2YhqAmJbWbzVXQFcrqmIqUVEYAv+TfN aJ4t8AFEWu6z90ll5OdH7PixDHY7Kyfn8G82fdi0YHI1tf5CW026FYW1Tnli23NW nLcy6dvKWtIQVxKjWGWcodxlNpifTPFpjuxT6ug5lc/zG5VxFPe9fGKVABiyUe+X jfK2EvhiQ+gKGLQ91b4srs9dqg== -----END CERTIFICATE-----Generated at Mon Mar 2 08:12:48 2026 by rpki-client