$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: lPjeKr3Dwcfj0mqJ7ZGM/2jwy2PPZWcjGKUQyPLiZIQ= Subject key identifier: 54:3B:60:35:28:90:D3:32:3C:6A:FC:D5:C2:E2:4B:2E:67:9C:0A:C7 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B7C Signing time: Tue 24 Mar 2026 16:11:13 +0000 Manifest this update: Tue 24 Mar 2026 16:11:12 +0000 Manifest next update: Tue 31 Mar 2026 16:11:12 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: 9cm0wCUkilZuowIDzJwwhmNXbRgRZSLS82DfbwXv5Sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7039 (0x1b7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Mar 24 16:11:12 2026 GMT Not After : Mar 31 16:11:12 2026 GMT Subject: CN=69c2b7a0-8318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a3:5c:1b:f2:78:eb:d6:64:88:d2:f9:51:c2: 7f:8a:c3:f0:4b:7d:47:89:73:35:2c:17:98:7b:d5: 3a:00:0f:07:9e:07:76:d9:16:9f:9f:36:4a:0b:68: 44:e9:a6:cf:9c:83:da:30:17:2f:60:1b:e9:ac:02: d1:57:84:c7:3d:8f:45:73:cd:b8:21:ed:91:3e:09: 59:91:00:ad:71:39:ba:da:03:c5:40:71:b3:8c:a7: 2f:a9:4b:9e:fd:db:81:fa:80:49:4e:c9:7d:73:15: 7b:d3:68:0a:f7:19:8f:f0:0a:3c:39:20:ef:38:5d: 4d:4c:02:12:ce:88:c2:01:53:6c:60:22:71:4e:8a: 09:5a:7c:e1:52:15:8e:e2:7b:3b:7f:75:c6:91:a2: 01:07:6e:9f:88:62:2d:8e:6c:b3:8a:2a:a9:0c:56: 7a:76:a1:60:62:3f:94:30:8d:31:3a:00:be:4d:ba: f1:3d:3f:20:55:70:c9:3d:1d:f4:02:8a:17:b2:6d: a0:78:55:89:2f:03:8c:0c:b8:ac:c8:12:ae:09:bd: fe:a0:e4:a3:96:59:ec:6f:f1:f6:29:01:bc:6d:77: 8d:a8:47:ab:e3:f3:7c:4d:5d:5b:a2:74:13:03:c3: f4:25:dd:2a:1f:1c:02:54:1f:f7:0c:8a:41:e0:7a: bb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3B:60:35:28:90:D3:32:3C:6A:FC:D5:C2:E2:4B:2E:67:9C:0A:C7 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a4:20:9c:2b:2b:84:62:7c:c1:8c:02:21:43:b5:f5:d3:c7: 6b:58:55:5d:87:9b:92:c9:69:47:dc:50:cf:7e:17:dd:07:61: af:51:60:e8:14:b8:db:53:53:63:85:cc:8b:fc:80:2c:05:d0: 49:a2:1f:80:9d:9f:7d:6f:18:db:32:81:16:69:4e:f5:08:94: 18:f0:ea:5f:15:97:f8:cb:07:10:c2:cf:65:cf:97:dc:a8:3e: 31:8e:97:f3:d7:75:0f:94:07:d9:94:e3:e5:0c:1f:a5:ec:30: 99:94:f3:9a:19:9d:67:cc:53:2c:f9:c8:8e:5f:e2:92:a5:ca: d0:e5:4b:0c:b6:97:00:e5:f4:93:ca:86:29:c5:fc:01:11:83: 97:ad:62:a5:1d:ac:8d:9d:c2:ac:43:4f:f0:01:01:88:15:29: c3:f7:dd:f8:78:9d:f7:d3:14:d6:c4:18:37:45:28:6b:70:9e: 42:7d:7f:3f:66:de:b5:55:63:6d:9b:22:2b:ee:7d:34:84:f4: 9b:ea:62:01:08:50:65:cc:44:c5:6a:e9:2c:24:30:39:0c:6d: 85:1a:05:95:c0:60:e1:f3:1c:93:0e:8c:8e:18:04:d6:93:a8: 76:9a:c5:03:f4:bb:b1:02:a3:a1:65:6a:34:4b:98:81:c9:cd: 48:52:eb:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwMzI0MTYxMTEyWhcNMjYwMzMxMTYxMTEyWjAYMRYwFAYD VQQDEw02OWMyYjdhMC04MzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaNcG/J469ZkiNL5UcJ/isPwS31HiXM1LBeYe9U6AA8Hngd22RafnzZKC2hE 6abPnIPaMBcvYBvprALRV4THPY9Fc824Ie2RPglZkQCtcTm62gPFQHGzjKcvqUue /duB+oBJTsl9cxV702gK9xmP8Ao8OSDvOF1NTAISzojCAVNsYCJxTooJWnzhUhWO 4ns7f3XGkaIBB26fiGItjmyziiqpDFZ6dqFgYj+UMI0xOgC+TbrxPT8gVXDJPR30 AooXsm2geFWJLwOMDLisyBKuCb3+oOSjllnsb/H2KQG8bXeNqEer4/N8TV1bonQT A8P0Jd0qHxwCVB/3DIpB4Hq7lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFQ7YDUo kNMyPGr81cLiSy5nnArHMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqKQgnCsrhGJ8wYwCIUO19dPHa1hVXYebkslpR9xQz34X3Qdhr1Fg6BS421NT Y4XMi/yALAXQSaIfgJ2ffW8Y2zKBFmlO9QiUGPDqXxWX+MsHEMLPZc+X3Kg+MY6X 89d1D5QH2ZTj5QwfpewwmZTzmhmdZ8xTLPnIjl/ikqXK0OVLDLaXAOX0k8qGKcX8 ARGDl61ipR2sjZ3CrENP8AEBiBUpw/fd+Hid99MU1sQYN0Uoa3CeQn1/P2betVVj bZsiK+59NIT0m+piAQhQZcxExWrpLCQwOQxthRoFlcBg4fMckw6MjhgE1pOodprF A/S7sQKjoWVqNEuYgcnNSFLrjA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:44:03 2026 by rpki-client