$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: pefSUUw+eh/BEZGmF4F5MsDNuMk+/0Fy+mKgICuzyUc= Subject key identifier: F3:5D:36:FB:A7:5D:38:DA:02:88:90:82:87:DF:0F:48:A0:C4:A0:2C Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 0135 Signing time: Wed 25 Mar 2026 00:04:51 +0000 Manifest this update: Wed 25 Mar 2026 00:04:51 +0000 Manifest next update: Wed 01 Apr 2026 00:04:51 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: eEfaZO5C7uO0BEki7HdcLhZzIJqSYcNMJmjt1eIaLa8=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: JxJ+obmiwGl4JMUMgK/WuBnQLS29iCXEyXAVzTMCR8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Mar 25 00:04:51 2026 GMT Not After : Apr 1 00:04:51 2026 GMT Subject: CN=69c326a3-2cee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:68:84:ec:a8:d0:bb:92:22:6c:a7:8e:de: d6:bc:7a:84:f1:3d:98:f2:3f:d0:5e:60:19:26:a5: e0:c8:53:22:8a:99:2e:97:41:f8:c1:d9:b6:ed:07: 75:f4:7c:fc:ae:46:3f:19:86:df:f2:6e:8a:7e:89: 24:5b:7f:3c:c9:18:a4:9b:52:71:f1:ae:37:65:45: 74:64:96:77:36:82:7c:08:f5:77:96:40:38:e4:0b: 10:0d:12:84:d4:99:8e:1e:67:61:5b:2e:b7:8e:ff: bd:c0:c9:e7:40:8b:1d:d2:a3:48:b4:de:c0:a6:50: a0:e0:18:64:d4:47:29:0f:63:6b:af:3b:7b:6b:ca: e5:3a:d3:bd:d4:1a:5c:d7:2b:25:a3:6a:5f:21:20: e1:dc:b0:fd:19:70:8f:66:bb:62:43:3a:54:44:c7: 96:ae:7e:84:2e:05:22:2c:41:aa:96:f2:dd:77:2a: f6:18:e1:c9:45:35:4a:4f:a1:eb:d6:ae:b2:ec:6d: 1e:5a:60:d6:73:d5:4c:99:9e:11:c0:9e:0f:96:a4: 1c:13:1b:cf:b1:02:9f:50:c9:1f:b9:9d:76:f6:3b: 1c:36:41:9e:ee:59:7c:2c:73:e7:8d:20:ea:73:76: 0f:ec:10:48:9e:da:e8:6d:dc:6a:b5:4b:cb:12:f9: 63:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5D:36:FB:A7:5D:38:DA:02:88:90:82:87:DF:0F:48:A0:C4:A0:2C X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:92:78:9c:5c:27:0c:ac:fc:85:ca:f9:e6:05:99:03:76:c8: 71:a3:db:2d:1a:6c:23:73:b4:89:f5:bf:79:07:f9:d7:45:e2: c3:40:9a:6b:21:a7:33:a2:2e:59:ca:0e:f6:b1:fa:b9:e8:51: 3a:e1:76:b0:59:54:94:bf:ae:a4:27:29:f6:02:e0:db:68:b5: 28:13:fd:6d:66:0c:82:a8:eb:c8:cd:d2:11:e7:e5:95:e3:bf: 46:56:e9:1d:d3:87:f5:d0:b8:fa:08:f4:ad:19:70:aa:40:46: 78:36:1b:f6:76:77:2d:16:50:72:f1:2a:ac:af:60:85:1d:ae: c5:cb:14:37:d4:02:71:f7:4a:90:c3:e5:74:11:09:a5:26:cf: 8c:b0:75:5b:c2:9a:6f:6d:ef:6d:6e:3b:d3:85:ad:5c:b3:24: 71:3d:6f:0a:31:b0:a5:ec:06:4a:eb:2a:f5:56:fa:3a:e3:99: 2e:8d:70:72:02:4d:87:7a:2b:5e:d5:6f:20:26:a3:3c:e1:f8: 49:af:78:13:f5:8f:fe:33:c7:1c:cb:fc:ee:aa:b9:22:9e:93: ef:bb:c3:a1:62:3b:aa:26:2b:93:c9:b9:5d:2e:f7:83:62:ea: 0b:94:01:60:2b:e8:08:32:cc:15:01:99:88:45:0d:71:ce:3f: 9d:d8:82:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjYwMzI1MDAwNDUxWhcNMjYwNDAxMDAwNDUxWjAYMRYwFAYD VQQDEw02OWMzMjZhMy0yY2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzINohOyo0LuSImynjt7WvHqE8T2Y8j/QXmAZJqXgyFMiipkul0H4wdm27Qd1 9Hz8rkY/GYbf8m6KfokkW388yRikm1Jx8a43ZUV0ZJZ3NoJ8CPV3lkA45AsQDRKE 1JmOHmdhWy63jv+9wMnnQIsd0qNItN7AplCg4Bhk1EcpD2Nrrzt7a8rlOtO91Bpc 1yslo2pfISDh3LD9GXCPZrtiQzpURMeWrn6ELgUiLEGqlvLddyr2GOHJRTVKT6Hr 1q6y7G0eWmDWc9VMmZ4RwJ4PlqQcExvPsQKfUMkfuZ129jscNkGe7ll8LHPnjSDq c3YP7BBIntrobdxqtUvLEvljQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPNdNvun XTjaAoiQgoffD0igxKAsMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaZJ4nFwnDKz8hcr55gWZA3bIcaPbLRpsI3O0ifW/eQf510Xiw0CaayGnM6Iu WcoO9rH6uehROuF2sFlUlL+upCcp9gLg22i1KBP9bWYMgqjryM3SEeflleO/Rlbp HdOH9dC4+gj0rRlwqkBGeDYb9nZ3LRZQcvEqrK9ghR2uxcsUN9QCcfdKkMPldBEJ pSbPjLB1W8Kab23vbW4704WtXLMkcT1vCjGwpewGSusq9Vb6OuOZLo1wcgJNh3or XtVvICajPOH4Sa94E/WP/jPHHMv87qq5Ip6T77vDoWI7qiYrk8m5XS73g2LqC5QB YCvoCDLMFQGZiEUNcc4/ndiC8g== -----END CERTIFICATE-----Generated at Thu Mar 26 16:10:19 2026 by rpki-client