$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft File: 3FfpX2KSEzop44hINlCWI10ZN8o.mft (raw, json) Hash identifier: kyIVX8UD/mFFEyzyIWRxH8b5A53HD1v2cEDnwgLfBnE= Subject key identifier: 59:64:72:2D:5D:51:94:6F:AC:E1:67:33:32:7D:28:CB:80:10:F4:CC Authority key identifier: DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA Certificate issuer: /CN=A914E1E3/serialNumber=DC57E95F6292133A29E38848365096235D1937CA Certificate serial: 1DA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft Manifest number: 1D97 Signing time: Thu 26 Mar 2026 16:06:35 +0000 Manifest this update: Thu 26 Mar 2026 16:06:34 +0000 Manifest next update: Thu 02 Apr 2026 16:06:34 +0000 Files and hashes: 1: 3FfpX2KSEzop44hINlCWI10ZN8o.crl (hash: w9xdl5swajauWto9IhwHs7KWh3wxjX9+IShTP2b2Gqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7588 (0x1da4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1E3, serialNumber=DC57E95F6292133A29E38848365096235D1937CA Validity Not Before: Mar 26 16:06:34 2026 GMT Not After : Apr 2 16:06:34 2026 GMT Subject: CN=69c5598b-9370 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:3d:52:62:07:c1:60:7f:96:8a:6e:c2:07: 3d:98:84:7a:6f:02:3d:19:83:85:43:5b:1b:bd:80: 7b:a9:5a:6f:4b:a6:05:af:1f:0f:9a:ea:de:93:bb: bc:81:c3:93:c5:f8:24:92:e6:6c:ee:98:7d:05:fd: bc:fe:49:45:38:79:08:4c:a5:94:61:4e:0f:ba:fd: 56:66:c8:c8:18:7f:9c:11:c1:eb:85:1b:be:e4:5b: de:30:37:93:ca:c3:56:d9:74:c4:d0:59:40:3d:99: 3f:f9:c5:58:9a:60:45:1a:a3:a1:37:32:4a:11:b5: 69:5e:62:d2:5e:38:44:34:59:46:2c:df:11:68:30: 71:ae:ed:82:61:d3:1b:8d:e1:54:55:07:f4:fd:7d: f0:74:d0:58:ab:47:f7:a3:e8:ed:da:57:62:56:d3: 50:79:05:b9:93:21:6c:2f:56:c7:13:aa:69:c9:fb: 9a:42:63:da:60:86:ff:7e:8e:fa:75:ed:84:c8:cf: 9e:c1:65:46:97:11:e9:7f:d9:fc:3d:fc:9b:9c:16: f6:03:6a:b6:27:7e:2a:b5:29:94:a1:1a:95:9b:f6: 87:24:32:9c:c8:36:87:95:77:64:20:60:b4:03:41: 75:31:87:98:4f:bd:b6:e1:87:4c:42:03:15:69:07: ca:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:64:72:2D:5D:51:94:6F:AC:E1:67:33:32:7D:28:CB:80:10:F4:CC X509v3 Authority Key Identifier: keyid:DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:cc:f2:41:83:aa:ca:a4:f0:6a:e1:0a:49:dd:e3:42:92:71: 4e:dd:5b:d0:40:3c:1e:28:30:c3:db:c7:92:ef:cd:98:ad:e2: 56:9b:ca:3b:22:c8:49:6e:bb:79:65:41:17:4c:ca:61:45:b2: 47:ad:ca:9b:69:10:b0:b4:5a:d6:05:30:3f:84:f7:8a:42:d6: dc:ea:a8:83:38:73:fb:99:2d:2a:bb:e2:d4:02:1f:5a:f6:97: ee:c3:61:e4:78:b5:d9:41:74:b8:5d:87:14:74:1d:e4:c8:cf: 96:9d:4a:a9:05:59:df:6a:bb:18:43:f7:31:be:31:00:b3:65: 1a:dc:d7:58:bd:35:bc:5d:c9:02:c3:9d:d1:44:8a:81:f5:0a: 51:09:05:86:3e:d6:21:1d:5e:d9:75:97:09:11:0d:a7:0f:22: 69:66:a5:9c:15:e1:84:92:2e:cf:5e:e3:1f:b2:94:ef:10:5d: d1:5e:bc:55:29:79:48:94:fb:ba:c0:ca:9c:4b:62:73:6c:66: e8:35:58:c4:0b:4e:f4:a8:3f:d8:88:08:23:57:a8:8e:64:06: 43:3b:79:08:78:5b:b7:1d:dc:ff:c8:ed:00:90:b8:46:2d:b5: 6d:bd:c0:c5:08:64:1b:a5:bf:33:6c:1f:c2:70:88:5e:ee:ef: 8d:f5:eb:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxRTMxMTAvBgNVBAUTKERDNTdFOTVGNjI5MjEzM0EyOUUzODg0ODM2NTA5NjIz NUQxOTM3Q0EwHhcNMjYwMzI2MTYwNjM0WhcNMjYwNDAyMTYwNjM0WjAYMRYwFAYD VQQDEw02OWM1NTk4Yi05MzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt509UmIHwWB/lopuwgc9mIR6bwI9GYOFQ1sbvYB7qVpvS6YFrx8Pmurek7u8 gcOTxfgkkuZs7ph9Bf28/klFOHkITKWUYU4Puv1WZsjIGH+cEcHrhRu+5FveMDeT ysNW2XTE0FlAPZk/+cVYmmBFGqOhNzJKEbVpXmLSXjhENFlGLN8RaDBxru2CYdMb jeFUVQf0/X3wdNBYq0f3o+jt2ldiVtNQeQW5kyFsL1bHE6ppyfuaQmPaYIb/fo76 de2EyM+ewWVGlxHpf9n8PfybnBb2A2q2J34qtSmUoRqVm/aHJDKcyDaHlXdkIGC0 A0F1MYeYT7224YdMQgMVaQfKNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFlkci1d UZRvrOFnMzJ9KMuAEPTMMB8GA1UdIwQYMBaAFNxX6V9ikhM6KeOISDZQliNdGTfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFFMy8wMjFBRTkyQUJE RTMxMUU2ODRDRTBCNTRDNEY5QUUwMi8zRmZwWDJLU0V6b3A0NGhJTmxDV0kxMFpO OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZnBYMktTRXpvcDQ0aElObENXSTEwWk44by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFFMy8wMjFBRTkyQUJERTMxMUU2ODRDRTBCNTRDNEY5QUUwMi8zRmZwWDJLU0V6 b3A0NGhJTmxDV0kxMFpOOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY8zyQYOqyqTwauEKSd3jQpJxTt1b0EA8Higww9vHku/NmK3iVpvKOyLISW67 eWVBF0zKYUWyR63Km2kQsLRa1gUwP4T3ikLW3Oqogzhz+5ktKrvi1AIfWvaX7sNh 5Hi12UF0uF2HFHQd5MjPlp1KqQVZ32q7GEP3Mb4xALNlGtzXWL01vF3JAsOd0USK gfUKUQkFhj7WIR1e2XWXCRENpw8iaWalnBXhhJIuz17jH7KU7xBd0V68VSl5SJT7 usDKnEtic2xm6DVYxAtO9Kg/2IgII1eojmQGQzt5CHhbtx3c/8jtAJC4Ri21bb3A xQhkG6W/M2wfwnCIXu7vjfXr/A== -----END CERTIFICATE-----Generated at Sat Mar 28 12:21:09 2026 by rpki-client