$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: 5ZjSWdihQ9ZORZBBpEaqaxio57livXfpnOinezcz99Y= Subject key identifier: 32:01:BB:04:A1:8E:42:2E:EF:B2:90:C5:89:4E:01:B5:50:CF:2E:3D Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0CF1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0CB2 Signing time: Tue 24 Mar 2026 18:21:23 +0000 Manifest this update: Tue 24 Mar 2026 18:21:23 +0000 Manifest next update: Tue 31 Mar 2026 18:21:23 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: 0z5Uvw/gUUO5x12ZaiwPtEpielPccBId/LcMcO3cWpA=) 2: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: HqADfJ6PQAnaMYUSVaYaC1tzBINlqpUjolFi7987BYY=) 3: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: 2VeVxpw4IPzgEibTNEjoXK/Qy1fd2SwF+0DbU+sMNRg=) 4: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: ApbUgdUH10Pdfa6lJVrc4XPCGZcLshELo3PIV/SWLXw=) 5: 183DE570057A11EC822F230EC4F9AE02.roa (hash: KDCY6i/WJ6l1BoCfZqKbKmaeWQcqDHXYwIFR4N1iXXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:21:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Mar 24 18:21:23 2026 GMT Not After : Mar 31 18:21:23 2026 GMT Subject: CN=69c2d623-6000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:5d:45:73:9f:01:6f:d4:fc:ad:8b:6b:2c: c7:97:a3:e6:72:62:29:df:bb:8b:2f:90:23:03:69: 16:81:2d:11:a7:b7:91:66:b8:95:cf:7c:4b:e7:05: cf:2e:73:9f:9d:c4:46:96:f5:80:cf:68:b1:f9:f4: c1:d8:df:6d:86:f6:42:23:26:dc:82:0b:4d:ce:3f: 51:4f:13:01:58:0d:4e:66:ff:66:be:5b:0f:ba:84: 2d:dd:89:d3:eb:f9:2c:74:63:69:af:88:29:9c:31: c4:7e:28:51:27:a6:74:99:fe:d7:a3:57:c9:bc:8e: ef:01:0e:52:e6:75:d7:45:97:22:1c:4f:1e:d2:ac: 03:15:70:62:8e:03:f3:a7:d6:4c:ed:af:d2:fe:48: f3:bc:09:56:c8:96:26:c5:2e:f7:d6:50:c3:e3:51: 43:07:c9:69:2d:69:35:25:cc:6b:42:b0:a9:91:de: 09:12:ba:f6:1c:29:66:f0:11:67:a6:0e:36:e2:7a: 6d:73:0c:cb:2f:ad:97:15:6c:a1:72:7c:ae:07:2c: d4:32:53:44:75:96:df:29:49:e4:85:14:1c:57:2b: b4:37:4f:71:23:58:b6:67:3b:63:c8:5b:6e:36:81: 1a:63:dd:21:79:d3:50:ce:f9:1c:1b:a5:9c:6d:4d: 41:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:01:BB:04:A1:8E:42:2E:EF:B2:90:C5:89:4E:01:B5:50:CF:2E:3D X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:62:5d:e0:ae:a1:62:09:61:ef:86:39:ac:09:f6:03:f9:67: fb:cf:66:16:94:73:4e:60:ec:3b:ca:db:47:57:68:16:1c:7e: ff:56:8c:41:bf:de:f7:4d:1a:69:80:f1:0f:1c:4f:79:c2:df: 41:3c:ff:d3:22:79:81:61:08:f1:28:bf:3b:61:f6:8a:8d:72: 01:c0:2c:6b:7b:95:f5:ba:02:38:b6:96:a3:47:84:cf:da:ff: fc:f0:5e:30:a1:b2:44:b8:7e:20:2d:12:16:60:8c:a4:21:08: 93:c6:5a:1f:56:4c:64:34:e4:0d:d8:c6:a5:2c:32:a3:de:4a: 3a:ba:13:e9:b6:82:b6:94:7d:90:49:8c:a0:aa:c6:db:27:e6: fd:4e:d2:56:df:7b:d6:b2:d0:d2:fe:b1:05:6b:0b:eb:f4:3f: 52:0d:0e:ab:a3:e2:51:fc:78:c3:74:83:52:b0:40:61:b2:43: c4:dd:e2:a1:06:5a:3c:82:4e:cf:38:7e:f7:45:6b:1d:aa:55: 8a:8d:8c:f5:83:71:61:23:6e:62:dd:eb:b5:72:aa:17:8f:26: 53:83:6f:f4:5f:08:b9:6d:bb:68:0d:8c:b6:46:78:d2:f6:44: ee:35:16:e3:6a:b1:2d:06:b3:e9:bd:f2:9c:29:0f:4b:8a:0c: b7:97:44:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjYwMzI0MTgyMTIzWhcNMjYwMzMxMTgyMTIzWjAYMRYwFAYD VQQDEw02OWMyZDYyMy02MDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu19dRXOfAW/U/K2LayzHl6PmcmIp37uLL5AjA2kWgS0Rp7eRZriVz3xL5wXP LnOfncRGlvWAz2ix+fTB2N9thvZCIybcggtNzj9RTxMBWA1OZv9mvlsPuoQt3YnT 6/ksdGNpr4gpnDHEfihRJ6Z0mf7Xo1fJvI7vAQ5S5nXXRZciHE8e0qwDFXBijgPz p9ZM7a/S/kjzvAlWyJYmxS731lDD41FDB8lpLWk1JcxrQrCpkd4JErr2HClm8BFn pg424nptcwzLL62XFWyhcnyuByzUMlNEdZbfKUnkhRQcVyu0N09xI1i2ZztjyFtu NoEaY90hedNQzvkcG6WcbU1BZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDIBuwSh jkIu77KQxYlOAbVQzy49MB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX2Jd4K6hYglh74Y5rAn2A/ln+89mFpRzTmDsO8rbR1doFhx+/1aMQb/e900a aYDxDxxPecLfQTz/0yJ5gWEI8Si/O2H2io1yAcAsa3uV9boCOLaWo0eEz9r//PBe MKGyRLh+IC0SFmCMpCEIk8ZaH1ZMZDTkDdjGpSwyo95KOroT6baCtpR9kEmMoKrG 2yfm/U7SVt971rLQ0v6xBWsL6/Q/Ug0Oq6PiUfx4w3SDUrBAYbJDxN3ioQZaPIJO zzh+90VrHapVio2M9YNxYSNuYt3rtXKqF48mU4Nv9F8IuW27aA2MtkZ40vZE7jUW 42qxLQaz6b3ynCkPS4oMt5dEcw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:29 2026 by rpki-client