$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: Pze4OWKIVctRgY3maSW+g54ZOKuGG6K6g4PRIH4W0W8= Subject key identifier: E7:1F:05:1D:70:E2:C7:6E:F7:97:F7:14:52:51:3B:0C:33:B9:98:D5 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 083E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 0835 Signing time: Tue 24 Mar 2026 20:40:14 +0000 Manifest this update: Tue 24 Mar 2026 20:40:14 +0000 Manifest next update: Tue 31 Mar 2026 20:40:14 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: TAxwwG8Tc+vHNUGDaZSAgWfZ4UbS95fB+QMbACoIaEQ=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: 4jo636T6jYuAB4lWYCYJ4Jdk6gTR1xHLVvPQO5ElmxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2110 (0x83e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Mar 24 20:40:14 2026 GMT Not After : Mar 31 20:40:14 2026 GMT Subject: CN=69c2f6ae-597e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:26:92:c9:8c:cf:f7:13:8b:c4:95:00:76:33: 89:87:11:54:88:62:2b:62:d8:60:4e:8b:9f:91:f1: e3:c1:55:64:44:ee:94:82:d6:c7:23:e7:59:5e:8e: e2:cc:37:a6:15:13:0e:d2:e9:2f:7a:78:11:bf:4c: 9b:1c:fb:96:b7:45:96:1e:7d:4b:95:5c:38:95:4e: d7:76:4e:e1:f6:4c:3b:d5:75:5a:79:bb:50:55:ef: 8e:dd:5f:4f:63:b1:eb:af:69:9a:a3:a3:a3:ab:63: 70:ae:6e:51:59:a3:06:96:b7:cc:de:5c:e4:78:e1: 1f:1a:c2:da:ba:01:66:36:22:6e:69:b9:db:4c:c8: b3:33:fb:78:2b:58:3e:36:22:b7:57:59:9b:91:01: 49:a3:55:3b:c8:c4:e5:ba:17:6b:99:be:2b:21:8d: 6a:33:0f:30:06:b7:02:9d:1f:99:24:47:9a:67:1f: ff:19:9c:92:c9:2b:bd:56:06:22:58:9d:93:ce:37: 86:94:6e:0d:a8:79:ae:b4:44:a0:e5:00:26:dc:2c: 3c:d6:1a:06:d4:1c:e6:06:8c:84:98:87:f4:9e:25: 97:fd:02:8c:c2:d2:56:3f:65:71:b3:7a:bf:55:24: c9:da:29:fd:29:13:71:4a:5d:81:fa:25:41:52:ba: 7e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1F:05:1D:70:E2:C7:6E:F7:97:F7:14:52:51:3B:0C:33:B9:98:D5 X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b9:47:83:a7:a3:b9:49:c6:4e:01:40:c3:da:3b:9e:ca:8f: e0:bc:b3:69:8e:80:c1:1b:31:8f:1b:9c:e1:72:4a:56:52:20: ac:49:e7:76:14:9b:43:f2:a7:81:79:e0:a3:15:d2:23:c6:7d: 29:e9:88:72:c4:ca:7a:de:1a:61:ad:63:38:fa:f7:2d:4a:63: e5:e8:b0:f9:03:df:90:ca:00:e0:fd:a9:87:03:6c:c9:af:1b: dd:3b:ef:4d:b9:65:81:66:1c:d7:5a:b8:19:85:99:99:95:44: 6d:dd:16:0f:cb:c5:3b:02:5c:bb:b2:6d:59:ef:e0:29:71:f8: 22:cc:46:e9:da:21:65:10:e4:f2:f5:03:db:8b:66:fa:85:03: 18:22:c1:02:8a:83:b7:81:33:db:a1:b2:1a:db:56:2f:41:6b: b5:ef:63:cd:69:0f:54:72:1b:bd:c7:00:74:ce:78:aa:5e:1e: c4:a9:f1:7f:7e:20:ee:58:b6:43:3b:b2:74:ba:1a:b5:df:59: 3f:00:52:2d:3a:17:91:e7:48:45:b9:3d:02:bc:45:94:9e:04: e7:56:eb:40:3c:df:99:d5:e0:ef:e5:72:1b:1e:7b:c5:b2:6b: c4:e1:ab:ce:c4:5d:bf:25:7b:19:52:b1:b9:28:2f:ad:eb:6f: d5:94:1d:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjYwMzI0MjA0MDE0WhcNMjYwMzMxMjA0MDE0WjAYMRYwFAYD VQQDEw02OWMyZjZhZS01OTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSaSyYzP9xOLxJUAdjOJhxFUiGIrYthgToufkfHjwVVkRO6UgtbHI+dZXo7i zDemFRMO0ukvengRv0ybHPuWt0WWHn1LlVw4lU7Xdk7h9kw71XVaebtQVe+O3V9P Y7Hrr2mao6Ojq2Nwrm5RWaMGlrfM3lzkeOEfGsLaugFmNiJuabnbTMizM/t4K1g+ NiK3V1mbkQFJo1U7yMTluhdrmb4rIY1qMw8wBrcCnR+ZJEeaZx//GZySySu9VgYi WJ2TzjeGlG4NqHmutESg5QAm3Cw81hoG1BzmBoyEmIf0niWX/QKMwtJWP2Vxs3q/ VSTJ2in9KRNxSl2B+iVBUrp+ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOcfBR1w 4sdu95f3FFJROwwzuZjVMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrlHg6ejuUnGTgFAw9o7nsqP4LyzaY6AwRsxjxuc4XJKVlIgrEnndhSbQ/Kn gXngoxXSI8Z9KemIcsTKet4aYa1jOPr3LUpj5eiw+QPfkMoA4P2phwNsya8b3Tvv TbllgWYc11q4GYWZmZVEbd0WD8vFOwJcu7JtWe/gKXH4IsxG6dohZRDk8vUD24tm +oUDGCLBAoqDt4Ez26GyGttWL0Frte9jzWkPVHIbvccAdM54ql4exKnxf34g7li2 QzuydLoatd9ZPwBSLToXkedIRbk9ArxFlJ4E51brQDzfmdXg7+VyGx57xbJrxOGr zsRdvyV7GVKxuSgvretv1ZQdVw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:28 2026 by rpki-client