$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: mX4K+Dfd/remXKpdG9R5yLvc/2eLTX7hSA220Vgx8D4= Subject key identifier: D3:64:5E:55:10:1E:09:27:86:1B:B4:2C:37:FE:5B:82:70:36:12:2D Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0F1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0F13 Signing time: Tue 24 Mar 2026 17:27:53 +0000 Manifest this update: Tue 24 Mar 2026 17:27:53 +0000 Manifest next update: Tue 31 Mar 2026 17:27:53 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: KXJYRGqPqQrOgn7iC3dw9UuQ1Iz1M962tMvg2SgrWyU=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: epuRJDNpLBRjInLcr8wNqAbigHvQWwNVcLarPZoddFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3870 (0xf1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Mar 24 17:27:53 2026 GMT Not After : Mar 31 17:27:53 2026 GMT Subject: CN=69c2c999-097d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5a:8d:41:e0:f8:a3:34:f5:9e:96:7a:fd:2a: a3:24:c5:53:c0:45:6e:8d:5a:ed:d7:6b:fe:b2:85: 99:8c:14:be:da:d0:97:d2:32:ef:55:a5:cc:a1:7d: 5a:d1:ab:0a:06:e1:5c:fd:9e:4f:38:8f:75:08:55: bc:09:09:4c:79:11:77:cb:34:a9:6c:c0:8e:71:b5: 17:90:2a:f7:b4:c7:99:85:5a:93:a2:f1:fe:be:1e: cb:a2:ab:74:91:f7:5f:97:51:5c:03:aa:6f:6f:93: 88:37:99:39:be:24:79:34:83:59:fc:9a:af:54:79: b9:e5:2b:e1:44:26:4c:0e:91:d5:3e:54:3c:4f:c7: d5:07:0e:70:6e:71:9f:0f:88:82:95:de:75:3b:00: 20:af:9d:65:07:bd:35:b9:18:46:a2:e6:d3:a6:b8: 77:75:db:7e:51:68:82:c7:cb:94:f9:52:c8:aa:f5: 93:e5:11:26:ec:1a:62:e6:06:1e:cb:1a:1b:e5:0e: 07:ff:18:5d:12:ea:4d:15:f6:5c:4b:da:19:21:5a: f9:d0:5b:bd:da:a7:09:47:60:55:f0:1e:50:60:2c: 85:83:d7:62:59:fd:6f:55:f0:b7:85:89:a8:c2:0a: eb:a0:14:7c:a7:67:0f:83:ed:37:90:7e:72:fe:2b: 83:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:64:5E:55:10:1E:09:27:86:1B:B4:2C:37:FE:5B:82:70:36:12:2D X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:4d:6f:b9:75:db:18:5d:19:02:4e:ab:9f:c7:e0:a8:91:7e: d0:cc:f9:87:47:0f:d7:57:53:7b:3b:3b:ab:08:31:ba:c7:b4: 37:7b:de:2f:02:e1:8d:b8:ca:6e:77:11:3c:2e:2b:9e:d8:7b: 0e:d7:3d:a7:5a:d7:d5:60:c8:96:7f:de:b5:12:47:02:48:71: 81:25:57:e6:fe:07:7f:5a:91:c5:db:6b:6a:94:a1:c7:43:8e: 70:c8:38:11:86:9e:6c:8b:5c:6c:d9:73:45:ca:3c:1c:45:3c: e9:91:f1:4a:3f:21:a2:e0:02:8d:0e:5c:85:7c:53:fb:69:fe: 05:ee:e3:b2:8b:0c:cf:22:4b:9d:41:9a:33:ec:7b:a4:8a:d3: 30:81:d7:eb:d9:4f:a8:40:8e:85:72:7a:c3:62:81:c1:ee:1e: 0e:7f:2e:a1:a7:9a:c7:7f:fe:3f:80:0f:3a:68:b8:54:70:6f: 67:f1:05:fe:7e:4e:5b:5c:7b:5f:bb:ad:74:e8:b3:a4:41:9d: fa:e5:8e:9c:0e:ef:c1:09:96:ea:d5:17:df:05:a8:ea:40:96: c6:ca:e3:0b:ae:a4:4e:52:42:73:be:ea:62:97:67:24:90:78: 00:7a:7b:35:20:8b:39:90:48:34:6f:7a:9d:87:cd:51:71:1a: 8c:9a:e1:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwMzI0MTcyNzUzWhcNMjYwMzMxMTcyNzUzWjAYMRYwFAYD VQQDEw02OWMyYzk5OS0wOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVqNQeD4ozT1npZ6/SqjJMVTwEVujVrt12v+soWZjBS+2tCX0jLvVaXMoX1a 0asKBuFc/Z5POI91CFW8CQlMeRF3yzSpbMCOcbUXkCr3tMeZhVqTovH+vh7Loqt0 kfdfl1FcA6pvb5OIN5k5viR5NINZ/JqvVHm55SvhRCZMDpHVPlQ8T8fVBw5wbnGf D4iCld51OwAgr51lB701uRhGoubTprh3ddt+UWiCx8uU+VLIqvWT5REm7Bpi5gYe yxob5Q4H/xhdEupNFfZcS9oZIVr50Fu92qcJR2BV8B5QYCyFg9diWf1vVfC3hYmo wgrroBR8p2cPg+03kH5y/iuDEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNNkXlUQ Hgknhhu0LDf+W4JwNhItMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg01vuXXbGF0ZAk6rn8fgqJF+0Mz5h0cP11dTezs7qwgxuse0N3veLwLhjbjK bncRPC4rnth7Dtc9p1rX1WDIln/etRJHAkhxgSVX5v4Hf1qRxdtrapShx0OOcMg4 EYaebItcbNlzRco8HEU86ZHxSj8houACjQ5chXxT+2n+Be7jsosMzyJLnUGaM+x7 pIrTMIHX69lPqECOhXJ6w2KBwe4eDn8uoaeax3/+P4APOmi4VHBvZ/EF/n5OW1x7 X7utdOizpEGd+uWOnA7vwQmW6tUX3wWo6kCWxsrjC66kTlJCc77qYpdnJJB4AHp7 NSCLOZBING96nYfNUXEajJrh+w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:36:11 2026 by rpki-client