$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: PJEVCuAIzXz4nK4Wi0kka8xxrbwEvP4m1U/BC+hqjmo= Subject key identifier: B7:4E:D1:A8:E2:DB:EA:48:08:48:0B:F4:DC:65:56:9F:5C:27:7D:DA Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 351E Signing time: Sat 28 Mar 2026 15:06:10 +0000 Manifest this update: Sat 28 Mar 2026 15:06:10 +0000 Manifest next update: Sat 04 Apr 2026 15:06:10 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: v9yFYBsD43gwbOlpIv4vneOBHkLcZ5beW7jkoNhrBvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 15:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Mar 28 15:06:10 2026 GMT Not After : Apr 4 15:06:10 2026 GMT Subject: CN=69c7ee62-2114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5a:3e:9d:ab:8b:15:65:86:1a:04:f5:be:1d: 82:05:25:2d:47:33:3e:5d:98:7b:e1:18:88:3e:4f: 15:6e:f1:45:fb:90:cc:d3:a7:28:c7:b9:74:16:21: 6b:00:f3:49:2a:21:10:6d:21:70:9e:aa:62:0a:61: a3:ad:3b:e6:81:b0:7d:78:b7:14:db:9a:21:0b:28: 00:fa:9a:5c:eb:96:b8:0c:66:cc:d6:20:8f:c8:c9: ed:74:3f:3c:c3:c2:dd:37:d3:9a:cc:4a:ba:d5:42: 2e:dd:33:bb:31:31:a3:d3:57:e7:d9:db:72:33:72: 50:2b:26:a1:27:80:84:73:df:89:12:ec:da:bc:24: 61:ee:4c:f7:fc:3d:dc:8d:c7:49:16:48:c6:b4:60: 05:ad:1f:66:38:a0:15:2a:d1:06:78:68:90:01:6d: 59:75:c9:bc:31:4b:12:c7:aa:09:a3:e5:58:eb:17: e7:57:e4:a0:1c:01:21:b1:99:95:49:fa:b1:56:d9: 16:05:33:ac:bd:07:cf:96:ae:46:1a:5f:b9:b0:e0: fe:97:82:ef:e1:1e:47:23:74:37:13:fe:28:0a:ba: 07:a7:dd:2e:6d:ff:b8:c5:54:67:c6:f7:ec:d6:42: 1b:cf:2c:47:97:63:47:9d:5b:94:e4:41:29:73:c9: 8e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4E:D1:A8:E2:DB:EA:48:08:48:0B:F4:DC:65:56:9F:5C:27:7D:DA X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:23:8c:8a:c0:99:3a:ea:4f:67:bf:12:40:7c:93:04:d3:24: 73:df:e8:66:3b:e9:d9:15:38:92:be:d9:06:1e:f2:18:f2:2e: 9b:48:c6:a9:79:14:d6:f6:c5:ac:48:03:be:17:b3:8e:d9:3b: 77:88:be:df:96:d1:2a:2b:3e:9d:19:2c:b0:2f:9e:ff:63:88: 78:b1:7e:ea:73:26:b2:b3:02:5d:98:0e:17:3e:f4:c8:1e:a9: e5:ee:30:68:d7:f7:fe:69:0b:2a:42:1e:50:8b:5a:9e:ee:d9: 74:7f:c1:be:88:23:dc:02:32:52:34:bc:69:5e:fe:96:11:ca: 8d:53:a4:b7:3b:a7:7b:72:da:ed:42:75:3b:36:57:ee:ea:3f: c7:a3:11:03:32:b2:59:9d:38:4e:09:e4:c7:39:c1:b5:cb:2d: 8d:b7:b7:98:c1:7c:0d:81:b4:14:f7:ff:1c:09:82:fe:a0:d8: c4:78:3e:f9:bb:cb:80:35:18:71:71:6e:9f:b0:6f:9f:3a:e6: 35:58:17:20:b6:e9:b3:f7:91:4b:ef:73:a0:c0:dd:eb:bf:f8: 6e:f4:f9:29:2e:b4:0e:64:d9:44:dd:41:df:0a:4a:b5:e5:59: 22:99:e5:a5:27:4a:c3:70:60:35:e8:f8:7d:15:50:c8:83:e7: 4f:cc:ec:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjYwMzI4MTUwNjEwWhcNMjYwNDA0MTUwNjEwWjAYMRYwFAYD VQQDEw02OWM3ZWU2Mi0yMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1o+nauLFWWGGgT1vh2CBSUtRzM+XZh74RiIPk8VbvFF+5DM06cox7l0FiFr APNJKiEQbSFwnqpiCmGjrTvmgbB9eLcU25ohCygA+ppc65a4DGbM1iCPyMntdD88 w8LdN9OazEq61UIu3TO7MTGj01fn2dtyM3JQKyahJ4CEc9+JEuzavCRh7kz3/D3c jcdJFkjGtGAFrR9mOKAVKtEGeGiQAW1Zdcm8MUsSx6oJo+VY6xfnV+SgHAEhsZmV SfqxVtkWBTOsvQfPlq5GGl+5sOD+l4Lv4R5HI3Q3E/4oCroHp90ubf+4xVRnxvfs 1kIbzyxHl2NHnVuU5EEpc8mOKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLdO0aji 2+pICEgL9NxlVp9cJ33aMB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABCOMisCZOupPZ78SQHyTBNMkc9/oZjvp2RU4kr7ZBh7yGPIum0jGqXkU1vbF rEgDvhezjtk7d4i+35bRKis+nRkssC+e/2OIeLF+6nMmsrMCXZgOFz70yB6p5e4w aNf3/mkLKkIeUItanu7ZdH/Bvogj3AIyUjS8aV7+lhHKjVOktzune3La7UJ1OzZX 7uo/x6MRAzKyWZ04TgnkxznBtcstjbe3mMF8DYG0FPf/HAmC/qDYxHg++bvLgDUY cXFun7BvnzrmNVgXILbps/eRS+9zoMDd67/4bvT5KS60DmTZRN1B3wpKteVZIpnl pSdKw3BgNej4fRVQyIPnT8zsww== -----END CERTIFICATE-----Generated at Mon Mar 30 10:19:28 2026 by rpki-client