$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: XPmCmS5x+y/czPy/2NxKYY4vPLzcFk2av0u71f5gHgE= Subject key identifier: C5:B2:A3:AC:9F:0E:E7:85:AC:F3:10:3C:9B:8D:14:4C:D6:32:B9:31 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 35B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3578 Signing time: Tue 24 Mar 2026 14:27:00 +0000 Manifest this update: Tue 24 Mar 2026 14:27:00 +0000 Manifest next update: Tue 31 Mar 2026 14:27:00 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: yKDZfUJR6T7XqXkX4JywUccHyC0J2kxJl9tfcI5MRx8=) 2: B16ED608D4A311F09760561DC4F9AE02.roa (hash: FURDBQKgiqm4yPUJQiOyIMSGoPxgMV1Ylyz1/4VJeCc=) 3: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: e8SiSstrDxKvqr8pjHVysqGm3Q9BeYoWTiQI4PDdJxk=) 4: ACACA8C6D5A611F0A08DD435C4F9AE02.roa (hash: fVvxzX26bBfDXV9ay8ikak6wmeRlqBLI0TiegFUAVOE=) 5: 665D242CD57411F0AA8EA47EC4F9AE02.roa (hash: Wi5UHg6VE2M6iVKKsLj1pLTxrYmlbg4+UkMjC8s6Hnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13753 (0x35b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Mar 24 14:27:00 2026 GMT Not After : Mar 31 14:27:00 2026 GMT Subject: CN=69c29f34-cd73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:18:fb:51:4b:76:72:22:ca:a3:e3:a0:df: 37:ee:98:c5:9d:95:f7:36:61:d6:66:36:d5:ab:57: fb:e5:50:c8:04:ed:88:13:34:c1:dc:00:1b:f6:dc: 02:54:82:22:bc:d2:99:4d:cb:5c:d8:b2:c7:e2:52: dc:2b:e7:73:16:22:c5:07:26:79:10:c4:fd:0a:7d: b0:11:9e:eb:d1:c7:22:f3:6e:d0:6a:f9:61:ad:91: f4:a1:5a:26:4d:cc:d6:21:42:a6:ec:21:05:b8:23: b0:73:ac:0c:69:2a:16:c0:4a:cf:e1:15:55:51:a3: f4:5d:2a:3f:a3:e5:e8:07:98:83:b0:40:df:91:9d: b9:33:00:69:a5:e8:82:96:31:8a:dc:56:4d:86:d4: 7b:6f:b9:7a:41:87:07:28:43:24:33:35:30:58:8a: 87:5a:04:b2:a2:1b:9b:57:96:6d:50:5b:2b:ad:c2: 39:1f:6f:2b:56:8a:82:50:f4:67:cf:c5:79:2b:b5: 9c:40:d4:c1:80:0f:c5:6f:5b:83:86:4b:40:4a:66: 49:ab:b7:64:23:a6:58:ac:f8:1f:bb:35:ab:a9:9d: 36:f1:7b:fd:53:47:3b:24:9f:fb:5c:f0:88:55:d4: 29:0b:a1:9c:25:29:de:f1:cd:7a:aa:46:c0:e8:ae: c2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B2:A3:AC:9F:0E:E7:85:AC:F3:10:3C:9B:8D:14:4C:D6:32:B9:31 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:04:95:7a:83:8b:78:72:49:eb:96:f5:2c:b4:06:08:39:8f: 4b:62:25:fe:60:cc:d9:88:c2:c3:3d:b1:c6:99:a4:31:49:4b: b1:b0:43:98:c7:f8:5d:c7:57:36:25:c9:25:6c:97:67:66:a4: 04:09:af:fc:c9:4e:3c:f2:b8:44:0d:5e:1a:7f:57:a3:f1:d5: b3:88:8b:6e:d0:1e:2e:64:b2:61:2b:9b:83:95:8f:7b:32:bd: 74:e4:88:1d:35:77:d5:6d:6f:81:c5:67:00:7e:46:25:65:78: ec:bd:5a:e7:97:74:30:5a:d5:6a:f9:90:06:98:a6:2e:30:e8: 34:98:86:8c:51:07:9c:2a:c1:13:d6:b8:16:59:18:de:64:09: 84:d9:2a:c6:b2:3c:94:0e:72:44:18:12:94:4d:f1:ba:64:e4: 0c:a7:8b:c1:17:6d:c4:e8:3c:c8:21:d0:2c:37:f4:ef:4d:44: 64:96:b4:38:ad:71:cc:15:4c:df:4e:d5:40:80:fc:f4:34:26: bd:96:ec:c1:85:00:a0:ba:93:2a:be:fe:0c:d8:59:17:9b:aa: 4f:28:80:03:eb:38:61:f3:0b:4e:eb:97:9d:4c:a5:88:d3:37: 07:ce:80:65:80:18:dd:0d:e4:09:d4:a3:51:91:0e:33:9f:4a: 76:af:16:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjYwMzI0MTQyNzAwWhcNMjYwMzMxMTQyNzAwWjAYMRYwFAYD VQQDEw02OWMyOWYzNC1jZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy8Y+1FLdnIiyqPjoN837pjFnZX3NmHWZjbVq1f75VDIBO2IEzTB3AAb9twC VIIivNKZTctc2LLH4lLcK+dzFiLFByZ5EMT9Cn2wEZ7r0cci827QavlhrZH0oVom TczWIUKm7CEFuCOwc6wMaSoWwErP4RVVUaP0XSo/o+XoB5iDsEDfkZ25MwBppeiC ljGK3FZNhtR7b7l6QYcHKEMkMzUwWIqHWgSyohubV5ZtUFsrrcI5H28rVoqCUPRn z8V5K7WcQNTBgA/Fb1uDhktASmZJq7dkI6ZYrPgfuzWrqZ028Xv9U0c7JJ/7XPCI VdQpC6GcJSne8c16qkbA6K7ChQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMWyo6yf DueFrPMQPJuNFEzWMrkxMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABwSVeoOLeHJJ65b1LLQGCDmPS2Il/mDM2YjCwz2xxpmkMUlLsbBDmMf4XcdX NiXJJWyXZ2akBAmv/MlOPPK4RA1eGn9Xo/HVs4iLbtAeLmSyYSubg5WPezK9dOSI HTV31W1vgcVnAH5GJWV47L1a55d0MFrVavmQBpimLjDoNJiGjFEHnCrBE9a4FlkY 3mQJhNkqxrI8lA5yRBgSlE3xumTkDKeLwRdtxOg8yCHQLDf0701EZJa0OK1xzBVM 307VQID89DQmvZbswYUAoLqTKr7+DNhZF5uqTyiAA+s4YfMLTuuXnUyliNM3B86A ZYAY3Q3kCdSjUZEOM59Kdq8WAQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:09:33 2026 by rpki-client