$ rpki-client -vvf rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft File: 433E2CR2A-hIwAZsRFuc2NpzUNY.mft (raw, json) Hash identifier: ULDNBnikYLe7KYcgQC+CQ50kbVhpkEaGRiG/IzLCJTs= Subject key identifier: 58:C0:26:43:C0:9B:0D:1A:28:7F:FA:65:CE:92:E2:EA:8F:56:3B:5D Authority key identifier: E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 Certificate issuer: /CN=A916C8F2/serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft Manifest number: 8F Signing time: Fri 27 Mar 2026 07:04:59 +0000 Manifest this update: Fri 27 Mar 2026 07:04:59 +0000 Manifest next update: Fri 03 Apr 2026 07:04:59 +0000 Files and hashes: 1: 433E2CR2A-hIwAZsRFuc2NpzUNY.crl (hash: 9fpb4FKJaSG2pH3i1KrA8vzB8uwBzEyOyJyyk5WcU1w=) 2: 730C503A56C611F096620043C4F9AE02.roa (hash: 0O+T5p2u9RjCzYCInOpadN0gyJxBbnecFtZNvwYOPBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 07:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C8F2, serialNumber=E37DC4D8247603E848C0066C445B9CD8DA7350D6 Validity Not Before: Mar 27 07:04:59 2026 GMT Not After : Apr 3 07:04:59 2026 GMT Subject: CN=69c62c1b-4016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:0c:e8:df:bf:75:ea:7f:7e:7f:39:f6:09: 44:17:a9:3a:74:b6:6a:64:7c:01:50:8e:d7:3a:8f: c8:79:f7:60:94:5e:c8:e2:7c:c5:5b:71:be:b6:bf: c2:16:5a:99:17:42:55:d6:49:8b:7c:ca:cd:8e:9d: 6f:db:97:7c:2e:17:53:94:30:d1:10:35:45:16:0f: 81:b2:32:76:3e:9b:df:11:a0:aa:5a:9f:f4:59:5f: 07:22:bb:62:b6:73:b6:f0:8b:e4:e8:f7:ad:f4:e2: 22:6a:bc:f6:6c:bf:46:6c:d6:21:e2:8b:9d:0e:1b: e6:87:27:2d:c7:07:b6:18:0d:5d:cd:ae:3d:34:3d: bf:0d:52:d2:73:68:ec:51:ea:8b:20:42:84:b1:a5: d9:6d:c9:de:26:51:fc:ba:85:26:ff:96:4c:c3:aa: a1:75:e4:4a:50:c1:af:b7:23:a2:af:cd:24:97:17: 1f:af:dd:a3:ad:86:5b:d4:a3:03:82:d7:d3:c7:d6: f0:9e:09:9b:34:0c:b6:19:9a:79:6e:8e:09:ac:fc: 4f:30:0b:50:19:4b:55:69:81:04:66:9f:5e:81:85: c7:30:8d:ed:34:4f:7e:8b:30:42:48:82:22:64:2a: 5c:da:fa:af:1a:b9:0a:fd:85:ed:1b:30:b9:a5:b3: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C0:26:43:C0:9B:0D:1A:28:7F:FA:65:CE:92:E2:EA:8F:56:3B:5D X509v3 Authority Key Identifier: keyid:E3:7D:C4:D8:24:76:03:E8:48:C0:06:6C:44:5B:9C:D8:DA:73:50:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/433E2CR2A-hIwAZsRFuc2NpzUNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C8F2/287DE73656C611F092BDA042C4F9AE02/433E2CR2A-hIwAZsRFuc2NpzUNY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:9b:ef:ce:85:f4:76:93:9c:32:33:98:c1:21:2f:18:0a:f7: 74:99:12:ee:ad:c5:24:5b:4e:8e:54:37:b9:a2:bb:11:20:16: 2a:4a:d4:dd:aa:f2:11:3f:e3:11:ba:a7:df:15:38:24:d1:da: 72:60:3d:3c:42:cf:98:5f:76:ff:b0:c5:8e:cd:d9:59:3e:ec: 7a:ff:71:3c:bc:8b:f1:02:1d:1a:62:0f:55:33:41:88:9d:e2: d8:fb:f3:67:91:1c:97:32:33:0a:b6:58:0a:11:78:4d:76:63: ee:ef:03:39:6c:f9:38:56:21:a2:5e:ab:cb:bb:74:8f:1c:ce: 57:38:f3:9c:52:d1:96:70:c0:70:bd:24:88:10:97:42:8e:33: 2f:8a:6b:44:35:f1:0c:08:e8:d2:6d:ed:f5:ea:26:fb:bb:ec: a0:e4:2f:09:17:6c:59:da:41:65:0c:ed:2e:72:2b:b4:4e:e4: 86:27:ba:06:20:96:3f:3b:60:cc:37:6f:40:9a:bc:e4:4f:04: 58:0a:0e:6f:df:ae:02:9e:c1:b8:74:19:1e:7e:cd:8c:dd:b8: b9:fb:ed:bc:23:ea:91:46:47:9d:c2:cb:49:4f:f9:30:5a:b6: 7f:60:80:15:b0:0d:f7:31:33:7f:44:d6:59:3d:29:d3:b0:2d: ee:c9:e6:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4RjIxMTAvBgNVBAUTKEUzN0RDNEQ4MjQ3NjAzRTg0OEMwMDY2QzQ0NUI5Q0Q4 REE3MzUwRDYwHhcNMjYwMzI3MDcwNDU5WhcNMjYwNDAzMDcwNDU5WjAYMRYwFAYD VQQDEw02OWM2MmMxYi00MDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnsM6N+/dep/fn859glEF6k6dLZqZHwBUI7XOo/IefdglF7I4nzFW3G+tr/C FlqZF0JV1kmLfMrNjp1v25d8LhdTlDDREDVFFg+BsjJ2PpvfEaCqWp/0WV8HIrti tnO28Ivk6Pet9OIiarz2bL9GbNYh4oudDhvmhyctxwe2GA1dza49ND2/DVLSc2js UeqLIEKEsaXZbcneJlH8uoUm/5ZMw6qhdeRKUMGvtyOir80klxcfr92jrYZb1KMD gtfTx9bwngmbNAy2GZp5bo4JrPxPMAtQGUtVaYEEZp9egYXHMI3tNE9+izBCSIIi ZCpc2vqvGrkK/YXtGzC5pbMcAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFjAJkPA mw0aKH/6Zc6S4uqPVjtdMB8GA1UdIwQYMBaAFON9xNgkdgPoSMAGbERbnNjac1DW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzhGMi8yODdERTczNjU2 QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEtaEl3QVpzUkZ1YzJOcHpV TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQzM0UyQ1IyQS1oSXdBWnNSRnVjMk5welVOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzhGMi8yODdERTczNjU2QzYxMUYwOTJCREEwNDJDNEY5QUUwMi80MzNFMkNSMkEt aEl3QVpzUkZ1YzJOcHpVTlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoZvvzoX0dpOcMjOYwSEvGAr3dJkS7q3FJFtOjlQ3uaK7ESAWKkrU3aryET/j Ebqn3xU4JNHacmA9PELPmF92/7DFjs3ZWT7sev9xPLyL8QIdGmIPVTNBiJ3i2Pvz Z5EclzIzCrZYChF4TXZj7u8DOWz5OFYhol6ry7t0jxzOVzjznFLRlnDAcL0kiBCX Qo4zL4prRDXxDAjo0m3t9eom+7vsoOQvCRdsWdpBZQztLnIrtE7khie6BiCWPztg zDdvQJq85E8EWAoOb9+uAp7BuHQZHn7NjN24ufvtvCPqkUZHncLLSU/5MFq2f2CA FbAN9zEzf0TWWT0p07At7snmsA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:40:35 2026 by rpki-client