$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: ldEr3bQMBEaF9vf3qdET2Q/bgugFf0TFB5WjcbvhpRs= Subject key identifier: DD:FC:56:A7:F2:F6:99:22:2D:BE:FD:33:43:99:D7:E5:16:AE:1E:4E Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 3524 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 3523 Signing time: Tue 24 Mar 2026 14:27:20 +0000 Manifest this update: Tue 24 Mar 2026 14:27:20 +0000 Manifest next update: Tue 31 Mar 2026 14:27:20 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: ym9btEeuPjxxjOfQWUwlH2/0FJA5kVAHp0QxpSdz8GQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13604 (0x3524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Mar 24 14:27:20 2026 GMT Not After : Mar 31 14:27:20 2026 GMT Subject: CN=69c29f48-cdfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e8:34:16:d7:0d:54:ca:55:13:d4:f2:81:52: 25:82:72:4a:42:55:95:61:72:8f:46:49:26:b7:ab: 70:c0:c1:fd:23:2f:22:6f:9e:8b:14:16:40:ff:63: ca:87:e9:ec:b3:35:e0:39:c5:cd:4e:a2:6c:93:6c: a5:33:3f:48:07:f8:64:54:60:0b:74:b7:09:94:08: e7:2a:5a:ef:6c:3d:d3:75:99:d9:38:a2:3f:aa:c5: c8:96:13:f6:74:8c:86:e7:a4:e9:e2:fe:b8:13:f0: 96:be:f8:35:0e:27:5a:6a:cb:0d:44:21:52:59:32: 38:3f:7b:a4:ba:9a:e8:6b:f1:b2:71:0f:5a:bc:f3: 64:48:da:2b:4e:6b:23:ee:b3:07:21:67:6e:77:04: ef:fd:be:82:ba:e3:05:38:fa:80:d2:e7:1f:11:47: 74:dd:73:df:5d:9d:1f:35:9c:b1:c4:99:a6:15:74: a1:cd:8b:34:e6:50:1e:d3:18:51:d0:f2:8b:0a:86: 6a:38:82:9d:97:59:78:3b:18:2f:84:24:bb:64:7f: 8f:70:b9:9f:d4:fd:61:33:85:c1:dc:e3:a8:45:c5: 86:d5:36:a7:ec:c2:db:98:14:e7:12:6a:c3:ef:9b: 99:24:ab:f8:9f:92:35:27:88:14:2c:f9:12:a4:8d: b5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FC:56:A7:F2:F6:99:22:2D:BE:FD:33:43:99:D7:E5:16:AE:1E:4E X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:4b:ec:09:86:32:75:1b:39:17:6d:dd:a2:b6:87:d7:57:42: e5:b1:be:b6:21:cd:70:85:45:86:43:52:4e:56:4e:68:48:ff: fb:5c:11:77:b7:ec:24:38:e1:da:e6:78:3a:28:fa:68:d7:43: b8:3f:ee:1b:99:a1:b6:fa:33:96:01:6b:fb:35:da:6f:ee:c8: c3:c0:8c:0d:3f:2d:e6:3b:fc:67:e4:79:8f:23:05:1c:1e:f8: db:96:59:6a:b3:9e:f9:ed:99:8c:44:e1:af:97:fe:68:91:33: c8:d8:ac:39:89:0c:4b:25:52:1e:65:d8:9e:12:e2:4d:5d:8d: d8:83:98:d7:a2:84:1c:41:3f:32:ac:ef:76:c2:0e:de:b5:b1: 5a:28:6c:d4:27:0f:1a:e1:1a:6a:d1:4e:80:cf:03:b9:0e:5e: db:7f:70:5e:8c:a7:6d:1f:fd:f1:c4:3a:ad:7d:fd:72:bc:0d: e9:6b:26:4f:9e:8f:23:4d:26:17:3e:4c:01:f7:f3:f4:64:8b: 33:ed:c0:45:62:a4:63:21:7b:19:45:7c:5e:ad:c6:62:69:65: 3a:69:f5:d9:d6:e7:b3:df:81:dd:ed:b2:f4:27:d5:7a:22:de: 01:4e:f5:42:48:20:e6:17:78:95:f5:9f:f2:83:90:9e:2b:2d: 46:ab:44:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjYwMzI0MTQyNzIwWhcNMjYwMzMxMTQyNzIwWjAYMRYwFAYD VQQDEw02OWMyOWY0OC1jZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eg0FtcNVMpVE9TygVIlgnJKQlWVYXKPRkkmt6twwMH9Iy8ib56LFBZA/2PK h+nsszXgOcXNTqJsk2ylMz9IB/hkVGALdLcJlAjnKlrvbD3TdZnZOKI/qsXIlhP2 dIyG56Tp4v64E/CWvvg1DidaassNRCFSWTI4P3ukuproa/GycQ9avPNkSNorTmsj 7rMHIWdudwTv/b6CuuMFOPqA0ucfEUd03XPfXZ0fNZyxxJmmFXShzYs05lAe0xhR 0PKLCoZqOIKdl1l4OxgvhCS7ZH+PcLmf1P1hM4XB3OOoRcWG1Tan7MLbmBTnEmrD 75uZJKv4n5I1J4gULPkSpI21lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN38Vqfy 9pkiLb79M0OZ1+UWrh5OMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArEvsCYYydRs5F23doraH11dC5bG+tiHNcIVFhkNSTlZOaEj/+1wRd7fsJDjh 2uZ4Oij6aNdDuD/uG5mhtvozlgFr+zXab+7Iw8CMDT8t5jv8Z+R5jyMFHB7425ZZ arOe+e2ZjEThr5f+aJEzyNisOYkMSyVSHmXYnhLiTV2N2IOY16KEHEE/MqzvdsIO 3rWxWihs1CcPGuEaatFOgM8DuQ5e239wXoynbR/98cQ6rX39crwN6WsmT56PI00m Fz5MAffz9GSLM+3ARWKkYyF7GUV8Xq3GYmllOmn12dbns9+B3e2y9CfVeiLeAU71 Qkgg5hd4lfWf8oOQnistRqtEDg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:24 2026 by rpki-client