$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: DOPXwcmkyN9mjC4iGegKdJipQUsflJqQKGCcul4PrHU= Subject key identifier: 5F:FA:27:A3:2F:9C:7D:24:8B:AB:80:55:BE:AC:85:B0:C8:A1:C2:6D Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2CD7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2CD4 Signing time: Thu 26 Mar 2026 14:26:08 +0000 Manifest this update: Thu 26 Mar 2026 14:26:08 +0000 Manifest next update: Thu 02 Apr 2026 14:26:08 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: 8It8Q3D2vP7MYv+k+QSJLN/fxevx/fcwQZ+x3BOeYl4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11479 (0x2cd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Mar 26 14:26:08 2026 GMT Not After : Apr 2 14:26:08 2026 GMT Subject: CN=69c54200-4ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:82:1e:f1:5b:b7:c0:e1:c8:e6:93:bd:83:7a: 0c:39:83:19:57:c7:14:b8:8d:06:db:f6:14:ce:a8: 5b:93:be:78:19:e7:c7:3f:94:d0:c2:07:72:da:64: 4b:9c:81:a1:1c:35:78:9c:5d:17:e3:39:bd:3f:56: e5:e5:eb:86:c8:62:83:a9:e3:ec:a6:48:99:0f:c1: 8c:4a:a5:32:52:dd:fa:4c:74:79:0f:52:95:a7:bd: 5c:28:29:ae:c6:59:35:5c:66:38:45:1f:3b:16:ed: 3e:41:fb:0f:02:ca:e9:33:c0:65:d1:5f:62:71:3e: ae:55:73:05:70:bf:bb:70:2f:f9:2a:be:ca:63:3a: 9a:20:f1:e5:d8:22:f7:bb:0a:fb:48:64:25:76:ef: 98:09:bc:27:0e:88:1c:4d:a6:b5:c5:0f:bd:cd:62: 1b:eb:3f:41:ed:41:54:a0:79:f4:0e:71:79:54:ca: 81:75:cd:24:a4:ca:68:e8:b6:75:80:94:62:5e:82: 1e:29:02:c8:3c:91:6a:3a:a5:05:58:6a:81:65:f9: 2b:89:e4:90:49:3c:ca:10:ae:4f:02:55:f4:fd:a8: 61:a1:74:59:f5:b4:78:c2:07:72:7a:67:c3:fd:79: b9:1e:20:ee:ec:25:ff:b5:41:0f:e2:72:86:bc:3d: 63:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FA:27:A3:2F:9C:7D:24:8B:AB:80:55:BE:AC:85:B0:C8:A1:C2:6D X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:86:35:53:fb:e4:a3:42:7a:be:13:d9:9d:44:61:18:fd:29: ff:cb:69:54:7c:96:64:fa:78:54:7f:ad:f1:34:e2:ea:bc:ea: 05:7f:2b:81:cd:fe:53:d9:a1:0e:a6:f1:53:4d:02:cd:84:78: 39:97:94:71:42:5c:97:2d:d9:08:c3:d0:70:04:95:25:ad:f6: 8e:c9:3d:58:4c:2a:63:45:3a:26:ee:62:d7:47:60:b9:7d:5c: 0c:ee:f7:d5:a2:d7:46:52:61:71:57:bc:62:7b:ab:03:78:57: 3f:c6:22:03:1f:13:2e:8c:f5:ce:10:8a:e4:a7:41:0a:fe:59: 8f:02:4b:d5:f8:09:6d:a3:f5:11:5c:92:eb:23:b2:4a:f5:70: a7:21:8f:11:3e:e6:56:09:3a:e0:80:83:24:37:09:a1:85:91: aa:df:16:2f:34:d9:cc:68:cb:96:9b:3b:00:0c:9f:4d:d3:17: 8e:14:1b:c7:14:31:fe:86:31:45:e3:f0:18:b5:ca:11:17:5d: 02:b7:0b:9a:a6:36:50:09:75:e0:e9:00:ca:7f:87:a3:4e:48: 40:a4:c3:9f:9b:7d:3e:75:95:7d:d8:7e:d5:8b:7f:3a:87:97: 74:0a:8a:2d:a5:83:f5:8f:d4:6d:a8:42:5b:f5:a4:21:3a:c4: 4c:51:4e:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjYwMzI2MTQyNjA4WhcNMjYwNDAyMTQyNjA4WjAYMRYwFAYD VQQDEw02OWM1NDIwMC00ZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4Ie8Vu3wOHI5pO9g3oMOYMZV8cUuI0G2/YUzqhbk754GefHP5TQwgdy2mRL nIGhHDV4nF0X4zm9P1bl5euGyGKDqePspkiZD8GMSqUyUt36THR5D1KVp71cKCmu xlk1XGY4RR87Fu0+QfsPAsrpM8Bl0V9icT6uVXMFcL+7cC/5Kr7KYzqaIPHl2CL3 uwr7SGQldu+YCbwnDogcTaa1xQ+9zWIb6z9B7UFUoHn0DnF5VMqBdc0kpMpo6LZ1 gJRiXoIeKQLIPJFqOqUFWGqBZfkrieSQSTzKEK5PAlX0/ahhoXRZ9bR4wgdyemfD /Xm5HiDu7CX/tUEP4nKGvD1j5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF/6J6Mv nH0ki6uAVb6shbDIocJtMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPIY1U/vko0J6vhPZnURhGP0p/8tpVHyWZPp4VH+t8TTi6rzqBX8rgc3+U9mh DqbxU00CzYR4OZeUcUJcly3ZCMPQcASVJa32jsk9WEwqY0U6Ju5i10dguX1cDO73 1aLXRlJhcVe8YnurA3hXP8YiAx8TLoz1zhCK5KdBCv5ZjwJL1fgJbaP1EVyS6yOy SvVwpyGPET7mVgk64ICDJDcJoYWRqt8WLzTZzGjLlps7AAyfTdMXjhQbxxQx/oYx RePwGLXKERddArcLmqY2UAl14OkAyn+Ho05IQKTDn5t9PnWVfdh+1Yt/OoeXdAqK LaWD9Y/UbahCW/WkITrETFFOQw== -----END CERTIFICATE-----Generated at Sat Mar 28 15:56:21 2026 by rpki-client