$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: Wv3Z6wzMNszkHH3NHfRqXky1fkrV7lkDhedGE5ANhp4= Subject key identifier: 36:8D:CE:46:04:89:1F:30:7E:B7:91:0D:EE:58:15:E1:5F:CA:13:25 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 351E Signing time: Tue 24 Mar 2026 15:06:36 +0000 Manifest this update: Tue 24 Mar 2026 15:06:36 +0000 Manifest next update: Tue 31 Mar 2026 15:06:36 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: 3h14Z/0ZQHnGCAQkZjpVZQdZOPtWJiDoVM3DtMqOSHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Mar 24 15:06:36 2026 GMT Not After : Mar 31 15:06:36 2026 GMT Subject: CN=69c2a87c-bc82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7d:dc:f0:01:d0:d5:06:0c:b8:3c:74:1c:f0: fe:d6:19:ac:09:84:97:3b:b0:ce:22:58:06:c4:84: 89:50:2f:e1:5c:9e:29:af:d5:fd:64:e3:3d:a3:bc: bc:ca:56:ed:6b:c0:a8:15:99:59:68:2a:59:7b:5d: 75:ea:aa:9c:62:d0:34:64:ef:36:7b:6b:bd:9c:1d: 22:27:17:8e:d3:e4:84:f7:17:15:39:70:20:b7:1d: 6f:7f:a2:ab:6b:b5:54:48:83:d4:6f:35:43:18:7d: 82:02:85:28:06:06:67:b3:13:62:ec:81:47:c9:8d: ac:04:cd:01:23:a7:59:24:fa:62:55:92:25:69:1b: af:17:17:4e:67:5a:e0:d9:f1:4a:c1:39:8a:9a:bb: d0:9d:0e:37:3b:aa:a1:63:3d:9d:dd:47:43:05:85: a1:c9:e5:44:c1:92:b7:e3:be:ac:74:ff:48:86:ff: 97:8c:11:19:bd:fb:2c:ed:0a:76:4a:d6:e7:52:61: 5d:ac:cf:3c:5f:53:dd:60:7f:a5:a1:30:d2:4d:ac: a9:08:82:94:c0:e6:a3:78:4e:79:b4:c8:07:80:87: 53:99:f6:a1:90:3a:08:ce:35:41:f4:5f:e1:dd:6c: 2f:72:9e:2f:87:bd:aa:7b:50:2d:96:25:77:62:0f: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8D:CE:46:04:89:1F:30:7E:B7:91:0D:EE:58:15:E1:5F:CA:13:25 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:97:90:d9:b8:ed:a0:5d:31:27:42:3f:85:16:13:44:19:4b: 3a:12:b4:77:2b:22:07:b1:23:ef:70:6e:c8:cf:9a:37:5a:1d: e5:b0:15:ad:32:06:db:9b:51:b4:d9:1d:68:9c:36:35:3b:2e: 7f:46:3b:32:03:ae:2f:90:a4:96:39:f7:b1:67:f2:2d:64:25: 4d:14:62:eb:f7:e4:bc:68:c9:23:a8:e4:81:aa:8e:a4:47:20: cb:7b:43:36:05:5c:76:06:73:f0:6a:90:43:ed:a8:0b:d1:d3: 91:4c:ef:81:40:53:02:48:85:81:03:a1:49:8d:4d:3e:b9:39: b2:e6:28:5b:9e:c6:c1:9d:70:cf:6a:71:05:08:5c:b6:7c:8b: 51:f3:91:c8:f9:42:3a:75:90:e9:b1:0f:06:90:be:b7:17:88: 62:66:f0:ab:f4:97:f1:f6:93:ad:a4:f8:93:15:46:6d:9d:61: e6:c1:f3:da:5a:09:c1:0f:43:e7:cf:fb:bb:96:05:ba:d1:77: f4:f9:c9:67:76:b1:7e:ec:0b:c6:fd:51:6b:c9:54:34:4d:23: 69:4f:dd:ee:8f:9f:ca:d0:9d:b9:f1:c0:bf:56:d2:12:bb:31: 74:9b:c0:99:8b:22:30:ab:bc:55:e1:4e:9b:82:6e:2d:b1:5d: 9e:55:c4:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjYwMzI0MTUwNjM2WhcNMjYwMzMxMTUwNjM2WjAYMRYwFAYD VQQDEw02OWMyYTg3Yy1iYzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3n3c8AHQ1QYMuDx0HPD+1hmsCYSXO7DOIlgGxISJUC/hXJ4pr9X9ZOM9o7y8 ylbta8CoFZlZaCpZe1116qqcYtA0ZO82e2u9nB0iJxeO0+SE9xcVOXAgtx1vf6Kr a7VUSIPUbzVDGH2CAoUoBgZnsxNi7IFHyY2sBM0BI6dZJPpiVZIlaRuvFxdOZ1rg 2fFKwTmKmrvQnQ43O6qhYz2d3UdDBYWhyeVEwZK3476sdP9Ihv+XjBEZvfss7Qp2 StbnUmFdrM88X1PdYH+loTDSTaypCIKUwOajeE55tMgHgIdTmfahkDoIzjVB9F/h 3Wwvcp4vh72qe1AtliV3Yg+ajQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDaNzkYE iR8wfreRDe5YFeFfyhMlMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfJeQ2bjtoF0xJ0I/hRYTRBlLOhK0dysiB7Ej73BuyM+aN1od5bAVrTIG25tR tNkdaJw2NTsuf0Y7MgOuL5Ckljn3sWfyLWQlTRRi6/fkvGjJI6jkgaqOpEcgy3tD NgVcdgZz8GqQQ+2oC9HTkUzvgUBTAkiFgQOhSY1NPrk5suYoW57GwZ1wz2pxBQhc tnyLUfORyPlCOnWQ6bEPBpC+txeIYmbwq/SX8faTraT4kxVGbZ1h5sHz2loJwQ9D 58/7u5YFutF39PnJZ3axfuwLxv1Ra8lUNE0jaU/d7o+fytCdufHAv1bSErsxdJvA mYsiMKu8VeFOm4JuLbFdnlXEAQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:04 2026 by rpki-client