$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft File: aCDlNpQmEvNLA3PdH3ftI0_981w.mft (raw, json) Hash identifier: fkkgEEuS85SdXm412nK1RGyWeLS2gTsi26yDtubRnBo= Subject key identifier: 4F:76:26:7F:33:31:6B:DE:D4:97:6F:37:FD:99:C1:4F:9C:AB:D9:71 Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft Manifest number: 04DA Signing time: Thu 26 Mar 2026 23:36:12 +0000 Manifest this update: Thu 26 Mar 2026 23:36:11 +0000 Manifest next update: Thu 02 Apr 2026 23:36:11 +0000 Files and hashes: 1: aCDlNpQmEvNLA3PdH3ftI0_981w.crl (hash: 4C+q3//fXf0gDynFUBQt2Fddg+l0tuPxzdGbuOdB7+I=) 2: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (hash: 6u8EDQPeHd1f5myvUPvFnltCBejoVUEG20zIQZJhOPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Mar 26 23:36:11 2026 GMT Not After : Apr 2 23:36:11 2026 GMT Subject: CN=69c5c2eb-d4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:47:e7:8b:29:55:68:71:a5:10:22:08:c9: e1:90:bc:d4:78:32:d4:f9:f0:b5:eb:38:4a:cd:64: 99:35:5d:b3:c8:e4:e7:b2:be:10:c2:fb:1f:3a:0d: ac:0b:6e:07:59:ab:cd:96:9d:61:b9:6b:9c:ec:1b: b6:4c:4c:98:ad:8c:7b:06:08:34:68:26:bc:c4:81: e8:9c:86:8f:40:e0:89:3f:b4:a3:73:8f:d0:0e:eb: c2:33:c4:a6:0f:86:c8:a4:29:87:79:90:15:ca:a2: 6b:4e:2f:68:bd:f2:a6:d6:bf:e6:b6:29:b0:69:24: ca:71:e9:a7:bd:f2:50:ee:83:6b:1e:8a:e6:34:5a: eb:9e:89:57:97:ad:6f:61:98:e3:14:50:9d:ab:01: 1e:55:cd:7e:1a:fe:b6:94:31:bb:43:4b:d1:30:2c: c9:30:aa:dd:b8:db:e0:24:60:a4:ae:fe:8f:8e:4e: 1b:33:af:b9:75:ad:e9:33:c4:92:85:15:ad:de:59: 5b:ae:b0:ec:7b:a7:f4:79:22:4b:02:43:98:e6:b8: a5:37:44:7c:36:a9:0e:6f:19:d1:3e:9f:c0:40:d1: 10:c0:6f:84:39:3a:db:db:c4:4a:9b:29:ed:72:a6: 82:ca:58:8d:3c:38:9f:49:15:f0:96:23:20:d4:a7: 69:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:76:26:7F:33:31:6B:DE:D4:97:6F:37:FD:99:C1:4F:9C:AB:D9:71 X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:63:52:16:25:4e:a2:70:ef:1d:31:2e:e5:57:71:ff:fc:27: 36:b0:f4:50:97:89:7f:31:df:f7:b7:cb:6f:a3:4a:27:01:47: 85:01:35:97:38:5f:d1:fd:b5:14:2d:23:d5:37:12:de:d2:c6: 53:40:52:3c:8d:83:75:70:ee:d1:51:aa:36:95:e7:43:27:b6: a6:dc:63:21:e2:75:6a:f1:2a:07:af:ed:b6:e8:9c:7c:0b:7d: b0:f7:5d:3e:29:05:f8:99:a1:b8:18:53:67:8e:a4:38:99:af: 8b:a0:90:56:72:0f:16:d3:a9:f5:c3:9c:af:c6:f5:05:f5:2f: a0:ad:d0:31:0e:1a:c0:22:fe:f5:16:93:19:95:f4:e2:d9:1e: 88:86:3f:d6:c2:66:0d:d5:f0:f3:ca:9a:eb:5d:34:fe:53:f3: 73:80:35:f0:b5:90:5f:7c:07:93:36:cc:58:61:49:c3:e3:29: bc:90:41:42:96:ec:ab:2a:03:b1:d0:bc:0b:ff:be:fe:b0:cc: 27:33:dd:25:91:9b:4d:51:44:2e:c9:ec:08:59:85:c3:22:d5: e6:c1:0a:34:2c:c2:f6:45:15:b7:c5:11:8b:f7:7f:80:9f:1a: e1:28:1b:70:8c:56:cc:57:99:85:ec:d0:19:07:6f:d1:4f:db: e1:5e:11:b1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjYwMzI2MjMzNjExWhcNMjYwNDAyMjMzNjExWjAYMRYwFAYD VQQDEw02OWM1YzJlYi1kNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjVH54spVWhxpRAiCMnhkLzUeDLU+fC16zhKzWSZNV2zyOTnsr4QwvsfOg2s C24HWavNlp1huWuc7Bu2TEyYrYx7Bgg0aCa8xIHonIaPQOCJP7Sjc4/QDuvCM8Sm D4bIpCmHeZAVyqJrTi9ovfKm1r/mtimwaSTKcemnvfJQ7oNrHormNFrrnolXl61v YZjjFFCdqwEeVc1+Gv62lDG7Q0vRMCzJMKrduNvgJGCkrv6Pjk4bM6+5da3pM8SS hRWt3llbrrDse6f0eSJLAkOY5rilN0R8NqkObxnRPp/AQNEQwG+EOTrb28RKmynt cqaCyliNPDifSRXwliMg1KdpcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE92Jn8z MWve1JdvN/2ZwU+cq9lxMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjhDOS80QjRENzEyQTVDREIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2 TkxBM1BkSDNmdEkwXzk4MXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAp2NSFiVOonDvHTEu5Vdx//wnNrD0UJeJfzHf97fLb6NKJwFHhQE1lzhf0f21 FC0j1TcS3tLGU0BSPI2DdXDu0VGqNpXnQye2ptxjIeJ1avEqB6/ttuicfAt9sPdd PikF+JmhuBhTZ46kOJmvi6CQVnIPFtOp9cOcr8b1BfUvoK3QMQ4awCL+9RaTGZX0 4tkeiIY/1sJmDdXw88qa6100/lPzc4A18LWQX3wHkzbMWGFJw+MpvJBBQpbsqyoD sdC8C/++/rDMJzPdJZGbTVFELsnsCFmFwyLV5sEKNCzC9kUVt8URi/d/gJ8a4Sgb cIxWzFeZhezQGQdv0U/b4V4RsQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:33 2026 by rpki-client