$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: IohS0sqI7nVIlF7bdqf0Esk2qco7CWofN4ynwEiP89E= Subject key identifier: A7:35:25:21:E5:31:56:6D:CC:92:D9:8D:6E:C1:A7:06:73:6D:BD:18 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 0217 Signing time: Tue 24 Mar 2026 18:41:59 +0000 Manifest this update: Tue 24 Mar 2026 18:41:59 +0000 Manifest next update: Tue 31 Mar 2026 18:41:59 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: UeR0/d3UHkjSxSHqZnFgB3sJIrlGeN/Lcf0ojSukKdI=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Mar 24 18:41:59 2026 GMT Not After : Mar 31 18:41:59 2026 GMT Subject: CN=69c2daf7-c0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:d4:ed:83:84:b6:9c:ba:d8:91:68:69:ec: 8b:52:d6:85:0e:21:26:ab:c8:e3:4c:2d:b5:99:4a: ae:fb:21:24:05:15:7c:8a:35:f0:b6:3b:a1:c7:b2: a1:04:c6:05:31:45:b0:db:66:7f:61:85:96:61:3d: 11:12:4c:ec:2c:3f:ee:c7:44:28:37:99:7c:f9:0c: 7d:1f:7c:9a:2e:3c:04:72:14:7d:27:de:e7:b5:48: df:04:b1:82:1c:b7:06:dc:8c:d8:be:58:10:9d:b7: 08:76:b7:e9:cd:c4:10:ec:38:e0:c4:b3:c7:78:56: e6:93:07:96:7c:b8:00:40:b7:47:cd:dc:ea:68:f6: 61:a6:a3:c9:41:93:97:aa:b5:ca:54:9d:c7:ef:32: 90:23:fa:35:58:47:30:d4:41:d9:f0:48:ad:85:f0: 05:bf:0e:97:c6:da:07:bb:98:31:d9:31:a5:a4:bb: 7e:3f:ca:f9:34:39:a9:36:8d:3c:1e:c3:b4:1a:6e: b6:6f:00:86:52:87:e8:82:6f:a9:4d:eb:d1:b4:2e: 90:cd:64:d3:44:1b:b5:7a:1c:a7:4c:a4:40:b6:d6: 5a:8a:91:f2:bc:4b:f8:6d:29:2e:ca:29:57:5b:6e: 47:04:8c:46:ab:a5:55:d1:48:fe:1c:b2:d5:9f:79: 7b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:35:25:21:E5:31:56:6D:CC:92:D9:8D:6E:C1:A7:06:73:6D:BD:18 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:31:aa:1f:c2:51:c6:b4:b3:d8:bc:fd:76:e8:95:f0:38:06: 38:47:94:db:03:f6:58:bf:5f:22:05:6d:34:0b:3c:02:06:9d: d0:75:be:23:51:3c:12:f2:3e:f3:b6:2b:57:7d:94:1d:7e:1a: db:77:e2:17:42:34:70:06:9e:12:14:64:32:90:82:e7:d7:8a: 5b:f4:3c:bb:2c:9f:23:56:b3:af:9c:d5:13:bf:71:00:c6:8e: bd:60:de:a7:01:16:14:75:f1:18:09:ce:86:d5:24:c5:9f:c0: 13:7a:7f:06:0f:01:af:93:64:e5:94:dd:7a:d2:c6:98:d1:87: 8c:57:03:eb:b0:82:84:22:9e:5b:bd:a7:79:16:df:71:fa:45: 8d:12:46:bd:13:6a:64:e6:7d:60:b2:e1:62:c7:f2:ad:8f:24: d8:f0:dc:fd:2c:50:d3:ab:9d:7f:8e:31:25:83:85:fd:23:5d: 3e:1f:32:33:67:56:6d:8b:25:09:fb:c3:c3:ee:a5:2c:ca:03: 94:39:ad:72:9e:da:03:84:6f:aa:ab:86:aa:7b:7d:e4:c5:a2: 01:f6:26:a8:cd:9e:5b:cb:55:5a:ea:62:f5:40:5a:1d:06:fb: 57:78:77:82:ec:c2:7a:f7:9d:e8:a9:e5:4f:9c:de:ee:3e:8a: 4b:57:6e:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwMzI0MTg0MTU5WhcNMjYwMzMxMTg0MTU5WjAYMRYwFAYD VQQDEw02OWMyZGFmNy1jMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZnU7YOEtpy62JFoaeyLUtaFDiEmq8jjTC21mUqu+yEkBRV8ijXwtjuhx7Kh BMYFMUWw22Z/YYWWYT0REkzsLD/ux0QoN5l8+Qx9H3yaLjwEchR9J97ntUjfBLGC HLcG3IzYvlgQnbcIdrfpzcQQ7DjgxLPHeFbmkweWfLgAQLdHzdzqaPZhpqPJQZOX qrXKVJ3H7zKQI/o1WEcw1EHZ8EithfAFvw6XxtoHu5gx2TGlpLt+P8r5NDmpNo08 HsO0Gm62bwCGUofogm+pTevRtC6QzWTTRBu1ehynTKRAttZaipHyvEv4bSkuyilX W25HBIxGq6VV0Uj+HLLVn3l7hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKc1JSHl MVZtzJLZjW7BpwZzbb0YMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAazGqH8JRxrSz2Lz9duiV8DgGOEeU2wP2WL9fIgVtNAs8Agad0HW+I1E8EvI+ 87YrV32UHX4a23fiF0I0cAaeEhRkMpCC59eKW/Q8uyyfI1azr5zVE79xAMaOvWDe pwEWFHXxGAnOhtUkxZ/AE3p/Bg8Br5Nk5ZTdetLGmNGHjFcD67CChCKeW72neRbf cfpFjRJGvRNqZOZ9YLLhYsfyrY8k2PDc/SxQ06udf44xJYOF/SNdPh8yM2dWbYsl CfvDw+6lLMoDlDmtcp7aA4RvqquGqnt95MWiAfYmqM2eW8tVWupi9UBaHQb7V3h3 guzCeved6KnlT5ze7j6KS1dufw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:03:12 2026 by rpki-client