$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: GX1tsxGlukDvF0LeHqsrb6rV7aO6/PE/Ki9/CYeMlBg= Subject key identifier: A1:CA:71:DC:1E:B4:82:3D:C0:32:23:8F:A1:48:6B:8A:3D:C6:21:EF Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0AB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0AA0 Signing time: Thu 26 Mar 2026 19:25:21 +0000 Manifest this update: Thu 26 Mar 2026 19:25:20 +0000 Manifest next update: Thu 02 Apr 2026 19:25:20 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: 3TDGneBOr23mHqlL8zW+c50WVp/YyR6+DvEKiGFqgKY=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Q9E2SohQHAyGeXQSdbGe7wwkbtB6hL54JNkPQsa0EIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:25:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2742 (0xab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Mar 26 19:25:20 2026 GMT Not After : Apr 2 19:25:20 2026 GMT Subject: CN=69c58821-0756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5a:14:4d:a1:17:27:6c:02:e6:5f:38:b0:ca: c2:a4:e7:d0:16:ef:ca:ba:2a:b2:bf:87:08:32:ca: 04:42:bb:5f:dd:77:5e:49:6f:98:c1:21:9d:10:e3: 6c:e4:3d:aa:88:a1:1a:34:95:98:bc:47:b6:2f:86: bf:74:a9:a6:3d:af:44:81:99:da:19:ef:54:8b:ec: 69:8a:ce:e5:68:86:1e:0b:fb:43:b9:8b:10:6a:c0: f6:0a:f9:c0:a7:e6:93:b4:70:f7:6e:b3:bf:c2:6f: 71:a9:34:48:c5:cf:3a:b0:26:f4:04:b0:0f:db:df: 0d:8c:db:d3:94:fa:c8:a4:32:9a:eb:7f:13:2d:23: a8:cd:f9:d2:8f:d8:6c:66:d8:79:7a:9d:ca:d8:7c: b9:42:0d:01:91:f6:fb:2c:d4:76:36:65:7a:4b:03: 0c:02:7d:c9:54:3f:b3:32:52:90:50:75:1e:e4:f9: f5:ae:4c:1d:12:fd:b3:58:07:96:34:82:f1:a3:82: f7:d9:7d:bb:75:43:12:b6:c8:fa:f5:5a:ad:d5:48: 75:25:c9:96:7f:da:ed:66:da:51:61:ac:b8:1d:86: b6:2a:33:cc:9e:05:7e:0c:de:4f:43:5d:7f:f8:91: 06:14:f4:80:7c:c9:28:06:8b:0a:96:21:87:1c:2b: 91:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CA:71:DC:1E:B4:82:3D:C0:32:23:8F:A1:48:6B:8A:3D:C6:21:EF X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3b:7f:8a:16:c9:49:3f:bf:f3:d2:f9:23:21:fd:5a:5b:1a: e8:c1:a5:70:23:ef:d0:0d:43:34:59:2c:95:e5:55:4b:1b:05: 33:97:93:9d:77:6c:56:e0:fc:95:95:94:13:16:0b:f5:05:ce: 81:9a:96:23:e2:e2:d2:d7:42:4d:d7:0d:26:6a:e0:5f:17:51: 44:b3:44:fa:12:f1:9a:92:be:58:41:08:7e:a1:8f:d9:06:e4: c0:52:98:68:0c:f6:00:00:75:c8:7f:4d:6f:7a:4e:c0:99:48: fa:15:cb:8f:16:d9:86:a5:b1:59:86:43:35:20:01:35:d2:16: 07:45:d4:6a:18:dd:83:79:29:4b:16:de:eb:ed:69:99:10:ad: 2e:dd:85:8d:61:2f:86:7b:ee:08:db:eb:a3:4a:a8:f9:76:0d: 48:e9:8e:21:22:5c:20:5f:7b:81:36:d9:8e:e1:75:2b:20:9f: 6f:a0:29:27:7a:b0:41:8c:68:5d:60:67:c6:af:d2:c7:f3:74: 84:18:51:49:95:fa:fc:1e:6e:de:46:18:a6:48:ea:5b:db:c0: 57:b8:21:08:1f:06:e1:cd:d6:68:d5:7f:c0:cd:e1:22:11:c2: c9:ea:7e:b1:05:21:40:c8:c9:3b:d4:59:cf:30:58:fc:f9:fc: 85:14:b9:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjYwMzI2MTkyNTIwWhcNMjYwNDAyMTkyNTIwWjAYMRYwFAYD VQQDEw02OWM1ODgyMS0wNzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1oUTaEXJ2wC5l84sMrCpOfQFu/Kuiqyv4cIMsoEQrtf3XdeSW+YwSGdEONs 5D2qiKEaNJWYvEe2L4a/dKmmPa9EgZnaGe9Ui+xpis7laIYeC/tDuYsQasD2CvnA p+aTtHD3brO/wm9xqTRIxc86sCb0BLAP298NjNvTlPrIpDKa638TLSOozfnSj9hs Zth5ep3K2Hy5Qg0Bkfb7LNR2NmV6SwMMAn3JVD+zMlKQUHUe5Pn1rkwdEv2zWAeW NILxo4L32X27dUMStsj69Vqt1Uh1JcmWf9rtZtpRYay4HYa2KjPMngV+DN5PQ11/ +JEGFPSAfMkoBosKliGHHCuRRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKHKcdwe tII9wDIjj6FIa4o9xiHvMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFjt/ihbJST+/89L5IyH9Wlsa6MGlcCPv0A1DNFksleVVSxsFM5eTnXdsVuD8 lZWUExYL9QXOgZqWI+Li0tdCTdcNJmrgXxdRRLNE+hLxmpK+WEEIfqGP2QbkwFKY aAz2AAB1yH9Nb3pOwJlI+hXLjxbZhqWxWYZDNSABNdIWB0XUahjdg3kpSxbe6+1p mRCtLt2FjWEvhnvuCNvro0qo+XYNSOmOISJcIF97gTbZjuF1KyCfb6ApJ3qwQYxo XWBnxq/Sx/N0hBhRSZX6/B5u3kYYpkjqW9vAV7ghCB8G4c3WaNV/wM3hIhHCyep+ sQUhQMjJO9RZzzBY/Pn8hRS5Xw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:13:10 2026 by rpki-client