$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: 6A1QVufqnm4+BHe1vvhvoi76pezrhY68Dgyh8EXVeKM= Subject key identifier: 19:1D:56:C2:8C:95:13:AE:CE:52:8C:F3:30:C4:C4:DB:7A:7F:03:4D Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 023C Signing time: Wed 25 Mar 2026 01:57:13 +0000 Manifest this update: Wed 25 Mar 2026 01:57:12 +0000 Manifest next update: Wed 01 Apr 2026 01:57:12 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: 5ADk05O0eZYl/d565FPEyDjGm4MGYn/WRlFDIHpNrW4=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: P3ej5XFQlJcMQQxLttfvW/K/Ryt5xBSLQ4egcs4pQwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Mar 25 01:57:12 2026 GMT Not After : Apr 1 01:57:12 2026 GMT Subject: CN=69c340f9-002e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:35:3a:e1:33:03:ad:09:93:d9:86:e4:40:9a: a1:93:7d:b9:af:68:f6:39:0f:3f:5d:0b:04:72:0b: c6:e1:ef:b2:65:2a:48:34:fa:c1:b8:da:99:c0:f0: aa:7a:0f:62:8f:a2:62:cf:34:c9:e4:13:b8:74:dd: 36:cd:1d:9e:a1:9b:41:4e:c4:97:e3:08:42:fd:ef: 8d:22:10:60:13:9b:bd:29:aa:2e:79:df:64:de:72: 44:8f:f6:ce:25:f4:bb:9f:2d:68:38:71:b4:8f:fb: e0:a3:a4:dc:0f:1c:1b:d5:bc:d7:d5:57:93:33:dd: 84:e1:a0:c1:a6:ae:9b:db:ff:50:c1:57:dc:7e:61: 9f:e8:c2:60:9a:3c:ff:ff:12:05:e9:7c:83:40:26: dc:fa:da:e3:68:a9:b0:87:17:92:ac:e8:cd:fc:42: ee:ee:3e:f6:dd:fc:9e:60:ce:b2:23:fe:9c:35:9f: 34:1a:5b:b3:ce:50:54:c1:31:9b:a5:49:d6:dc:bf: f5:48:2d:a8:3b:66:e1:11:aa:eb:58:9c:a2:d4:1e: aa:23:9d:48:58:b6:af:57:0f:7d:1d:ec:15:53:94: d8:68:4a:e6:de:39:c4:23:38:aa:cf:3f:70:6a:dc: ea:44:7b:40:2d:29:19:56:ca:14:00:a1:18:97:57: a5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1D:56:C2:8C:95:13:AE:CE:52:8C:F3:30:C4:C4:DB:7A:7F:03:4D X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:95:95:7d:d0:cd:9d:8b:0f:dc:f7:e5:c0:df:0c:c3:11:59: 5e:3b:4c:b2:e0:c1:db:3a:97:b6:54:9b:27:97:2c:6b:40:9a: f4:b2:ae:05:68:eb:92:b2:5b:ab:77:c4:77:af:aa:05:a6:bc: 8d:9b:b0:83:66:0d:4f:de:2e:37:a8:95:ad:29:29:d0:8d:d1: ba:55:cb:53:e6:c1:b1:36:b2:b4:b4:97:40:38:78:7b:a2:ca: b8:29:38:58:42:ae:d7:9d:7a:ef:d5:70:cb:f8:06:78:73:2b: f4:32:fc:91:17:5b:31:01:c7:43:5c:cc:af:41:c5:bd:45:1b: ef:cf:a7:0b:cc:5d:f8:c5:b2:2e:3c:46:f9:b0:c1:b8:13:a3: 3f:c9:1e:c4:45:52:ac:5d:a9:99:29:17:a6:9b:51:be:d7:9f: ab:85:04:18:eb:47:46:4e:06:03:9d:b3:1a:d6:ac:29:69:10: 1b:58:66:f0:22:12:91:2f:cb:ff:79:63:62:c7:f7:4b:d1:6f: bb:76:9d:ea:f7:ee:e1:ac:f0:db:b2:fb:37:8f:f4:f5:a6:bf: 34:82:ec:50:0f:9e:9f:57:73:cf:b9:8a:04:62:63:36:6d:ba: 98:8d:d4:27:99:97:a2:f7:d0:f9:96:35:a5:71:e6:6e:ea:be: be:3d:44:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjYwMzI1MDE1NzEyWhcNMjYwNDAxMDE1NzEyWjAYMRYwFAYD VQQDEw02OWMzNDBmOS0wMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgzU64TMDrQmT2YbkQJqhk325r2j2OQ8/XQsEcgvG4e+yZSpINPrBuNqZwPCq eg9ij6JizzTJ5BO4dN02zR2eoZtBTsSX4whC/e+NIhBgE5u9Kaoued9k3nJEj/bO JfS7ny1oOHG0j/vgo6TcDxwb1bzX1VeTM92E4aDBpq6b2/9QwVfcfmGf6MJgmjz/ /xIF6XyDQCbc+trjaKmwhxeSrOjN/ELu7j723fyeYM6yI/6cNZ80GluzzlBUwTGb pUnW3L/1SC2oO2bhEarrWJyi1B6qI51IWLavVw99HewVU5TYaErm3jnEIziqzz9w atzqRHtALSkZVsoUAKEYl1elTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkdVsKM lROuzlKM8zDExNt6fwNNMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYZWVfdDNnYsP3PflwN8MwxFZXjtMsuDB2zqXtlSbJ5csa0Ca9LKuBWjrkrJb q3fEd6+qBaa8jZuwg2YNT94uN6iVrSkp0I3RulXLU+bBsTaytLSXQDh4e6LKuCk4 WEKu151679Vwy/gGeHMr9DL8kRdbMQHHQ1zMr0HFvUUb78+nC8xd+MWyLjxG+bDB uBOjP8kexEVSrF2pmSkXpptRvtefq4UEGOtHRk4GA52zGtasKWkQG1hm8CISkS/L /3ljYsf3S9Fvu3ad6vfu4azw27L7N4/09aa/NILsUA+en1dzz7mKBGJjNm26mI3U J5mXovfQ+ZY1pXHmbuq+vj1ElQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:02:12 2026 by rpki-client