$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: 7Zv4R6LqI+aYuhgGqmCjKr73vJI1BFBIlahbRSHFkRs= Subject key identifier: 94:7F:C0:96:46:3A:A1:7E:C6:54:CC:03:0C:5F:02:52:21:E8:DF:8E Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 03D3 Signing time: Wed 25 Mar 2026 00:13:54 +0000 Manifest this update: Wed 25 Mar 2026 00:13:54 +0000 Manifest next update: Wed 01 Apr 2026 00:13:54 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: MAJdWE46xBtZKdDk2bLHDYWLsJEl2xh86VITDINeEig=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: i4wGybB1WdffwImrTNHdx7mWqUy/NNLm8IvjBsrlwTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Mar 25 00:13:54 2026 GMT Not After : Apr 1 00:13:54 2026 GMT Subject: CN=69c328c2-dd26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d9:b7:6c:26:a3:61:f9:a2:13:6d:a6:d3:68: 35:f0:c1:1a:80:b9:88:ab:83:67:f0:d3:3c:cf:5b: 9b:86:b8:d6:8a:02:d2:16:24:d2:64:b5:2c:10:fe: 32:00:d0:e9:30:88:bc:41:c9:90:70:59:d2:3b:de: a4:de:bf:8c:61:6b:6a:ca:13:4f:de:2d:6c:69:05: c2:4a:de:47:c5:7a:d1:c4:4a:62:45:d1:d3:f5:37: 0d:9c:b8:da:f6:6b:1b:36:e9:b7:cf:c3:52:b9:4f: 20:b2:66:b3:cf:a2:99:2e:e2:4d:10:8a:db:2a:3d: 25:a9:cd:0e:e8:23:1f:cb:64:53:1f:90:c0:73:87: f1:94:65:a1:ec:a8:52:62:dd:ab:61:70:bb:c3:76: 9d:4d:8c:44:0b:0f:9e:fd:53:a5:46:6f:6c:c2:e1: 39:7d:88:a2:58:ee:0f:55:ae:2e:a7:d5:0a:73:f4: ca:7d:e2:f7:b8:b8:21:41:14:60:b5:45:f4:a2:be: a8:f6:30:9c:de:a7:a4:e1:6b:a1:e3:ec:8c:8a:39: 98:2b:bf:60:9c:61:e8:45:fa:1d:76:4b:e8:34:14: f5:a5:68:cc:a3:33:21:b0:23:69:54:42:c2:3c:16: 72:52:94:db:00:0f:a4:60:cb:f0:2f:df:07:ef:3c: 58:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7F:C0:96:46:3A:A1:7E:C6:54:CC:03:0C:5F:02:52:21:E8:DF:8E X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:68:32:21:78:a0:cc:e6:56:96:f3:e7:c7:5c:0d:05:8c:e4: 3a:93:63:a8:c7:d7:8b:3b:fc:64:19:86:3a:71:6a:25:0c:ea: a4:e1:14:25:1e:13:9c:e5:7d:8b:6e:50:fc:44:2f:aa:46:c4: dd:cf:08:e5:f4:e7:22:69:93:bd:85:ff:95:28:ed:24:f3:75: f0:66:5e:c4:a1:30:96:a8:f3:cc:b6:ea:38:89:ee:f6:0a:f8: c2:bd:98:a0:13:98:c1:b4:63:88:af:f4:59:a6:bd:05:05:be: 6d:f5:3c:06:5d:7a:9c:02:cf:26:41:e4:d1:2b:d4:5d:69:c6: 79:f8:73:a3:8c:45:31:2d:69:01:4a:a2:3e:86:77:c2:60:7a: ec:0b:70:8d:dd:54:2e:1f:24:de:6e:74:a3:60:e5:48:e8:7e: 6b:6c:a0:dc:70:a2:f9:3e:38:1f:1b:e5:71:da:57:27:7e:6b: 88:5a:8e:0e:e2:99:5e:b8:a9:8e:2e:e7:51:ce:15:ff:c6:7c: 15:93:17:10:5f:01:95:b4:86:de:9d:9e:42:93:03:6a:e9:7f: ae:9e:e5:ee:6e:b2:70:67:bf:d9:ef:06:c6:0f:de:4f:76:25: ed:ca:05:8f:89:f6:ae:c5:6c:96:ed:94:d1:42:4b:54:77:9a: ba:11:38:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjYwMzI1MDAxMzU0WhcNMjYwNDAxMDAxMzU0WjAYMRYwFAYD VQQDEw02OWMzMjhjMi1kZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotm3bCajYfmiE22m02g18MEagLmIq4Nn8NM8z1ubhrjWigLSFiTSZLUsEP4y ANDpMIi8QcmQcFnSO96k3r+MYWtqyhNP3i1saQXCSt5HxXrRxEpiRdHT9TcNnLja 9msbNum3z8NSuU8gsmazz6KZLuJNEIrbKj0lqc0O6CMfy2RTH5DAc4fxlGWh7KhS Yt2rYXC7w3adTYxECw+e/VOlRm9swuE5fYiiWO4PVa4up9UKc/TKfeL3uLghQRRg tUX0or6o9jCc3qek4Wuh4+yMijmYK79gnGHoRfoddkvoNBT1pWjMozMhsCNpVELC PBZyUpTbAA+kYMvwL98H7zxY7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJR/wJZG OqF+xlTMAwxfAlIh6N+OMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfmgyIXigzOZWlvPnx1wNBYzkOpNjqMfXizv8ZBmGOnFqJQzqpOEUJR4TnOV9 i25Q/EQvqkbE3c8I5fTnImmTvYX/lSjtJPN18GZexKEwlqjzzLbqOInu9gr4wr2Y oBOYwbRjiK/0Waa9BQW+bfU8Bl16nALPJkHk0SvUXWnGefhzo4xFMS1pAUqiPoZ3 wmB67Atwjd1ULh8k3m50o2DlSOh+a2yg3HCi+T44HxvlcdpXJ35riFqODuKZXrip ji7nUc4V/8Z8FZMXEF8BlbSG3p2eQpMDaul/rp7l7m6ycGe/2e8Gxg/eT3Yl7coF j4n2rsVslu2U0UJLVHeauhE4tw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:07:59 2026 by rpki-client