$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: 06UWAsM5RpwLKlLDdwRKXXRiWFfpAQRlveKOAZgzcl8= Subject key identifier: D9:9A:89:27:57:B3:5A:43:BD:5A:60:BC:52:02:F5:46:12:18:DE:7A Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 3532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 3528 Signing time: Tue 24 Mar 2026 15:15:42 +0000 Manifest this update: Tue 24 Mar 2026 15:15:41 +0000 Manifest next update: Tue 31 Mar 2026 15:15:41 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: nNZG/KDp1LD5eFvuPn2sYaJ3azkDBxI4Zo+SvXuCNx0=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: bvmOeL2YXx3nWwBQZ93HrV/AoxQKQL3Er6wwEPR+cds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13618 (0x3532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Mar 24 15:15:41 2026 GMT Not After : Mar 31 15:15:41 2026 GMT Subject: CN=69c2aa9d-2bff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:70:1a:62:c5:75:57:f4:bb:ab:fc:fd:09:b6: 40:ec:f4:88:cc:1b:8c:88:ef:ce:76:5e:90:9d:5c: f5:76:7f:09:fe:27:56:64:b5:d4:ac:79:3d:45:97: 34:2f:93:9d:16:4e:9c:bd:23:d0:6d:cd:73:70:21: fa:a8:4a:23:d4:e3:52:4a:fc:25:23:f2:4a:a2:b5: 18:0f:3e:f2:e5:6b:2d:f0:61:f7:8d:0b:37:80:48: 50:1c:bd:6a:97:e3:97:e3:40:71:3f:40:74:54:11: e2:c6:ec:42:d4:75:e6:25:45:fb:a1:3b:eb:22:5f: 63:82:04:50:70:3f:14:47:e0:22:17:23:95:5d:78: 04:ad:bd:86:cb:17:19:b9:12:19:81:fb:32:ee:1c: 67:3f:13:3f:23:9a:ec:f3:4f:59:5a:74:84:ad:eb: b8:d7:88:2f:53:d2:d2:dc:5f:2a:36:6f:da:57:92: e2:3b:d4:c7:28:e9:0d:c3:f0:ed:c1:26:46:4b:ad: 55:32:c2:c2:dc:47:c7:c3:6e:59:78:03:90:4a:53: af:1e:9f:3c:76:4a:2d:63:f3:89:e9:24:4e:a6:4c: 3f:e3:45:cc:75:3e:f1:d1:1b:4f:75:de:68:e0:a7: 59:15:90:62:4d:85:4b:6e:46:fd:70:96:78:a4:f4: a2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9A:89:27:57:B3:5A:43:BD:5A:60:BC:52:02:F5:46:12:18:DE:7A X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e4:2d:0e:52:87:14:e0:4b:3b:75:65:94:10:5b:e4:a7:af: c9:32:5f:72:62:ee:e4:78:9b:d7:82:48:af:a0:09:06:a1:7a: b5:2a:2f:6e:37:a1:eb:c3:71:2c:e8:0c:57:89:28:1f:8f:27: b2:5a:e8:1e:f5:ab:82:2c:95:46:0e:50:a5:6d:5f:45:a2:0c: 84:5e:52:94:a8:85:ef:02:0d:8f:8d:0c:65:db:5e:94:93:6d: 32:7a:ce:e7:87:e0:6d:7c:ef:1a:c7:ed:8b:db:47:b3:38:48: 25:03:42:ec:51:ed:20:70:e6:bf:db:e6:0f:4f:f0:58:4e:4a: 8c:fe:b8:ea:9b:ba:87:e3:eb:48:40:6f:f6:a5:23:3b:b7:6c: c4:72:f5:bf:e9:36:76:ad:7e:95:6d:2c:db:12:0e:40:4b:21: d1:81:62:77:a5:e0:07:f9:db:bb:b7:0d:28:da:39:d3:27:ef: d6:09:ba:15:fe:88:48:b7:26:83:c6:99:b4:88:16:4a:ac:53: ad:aa:95:6c:74:82:be:8c:67:31:45:11:2e:6c:0f:8c:a2:5c: 04:4b:00:41:56:d1:db:20:49:82:b2:2c:9a:fe:ef:1e:d6:05: 6d:ec:7b:8b:da:5e:09:28:fb:49:f3:cf:b0:40:6e:d5:83:61: 7b:35:5e:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjYwMzI0MTUxNTQxWhcNMjYwMzMxMTUxNTQxWjAYMRYwFAYD VQQDEw02OWMyYWE5ZC0yYmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XAaYsV1V/S7q/z9CbZA7PSIzBuMiO/Odl6QnVz1dn8J/idWZLXUrHk9RZc0 L5OdFk6cvSPQbc1zcCH6qEoj1ONSSvwlI/JKorUYDz7y5Wst8GH3jQs3gEhQHL1q l+OX40BxP0B0VBHixuxC1HXmJUX7oTvrIl9jggRQcD8UR+AiFyOVXXgErb2GyxcZ uRIZgfsy7hxnPxM/I5rs809ZWnSEreu414gvU9LS3F8qNm/aV5LiO9THKOkNw/Dt wSZGS61VMsLC3EfHw25ZeAOQSlOvHp88dkotY/OJ6SROpkw/40XMdT7x0RtPdd5o 4KdZFZBiTYVLbkb9cJZ4pPSiTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNmaiSdX s1pDvVpgvFIC9UYSGN56MB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuuQtDlKHFOBLO3VllBBb5KevyTJfcmLu5Hib14JIr6AJBqF6tSovbjeh68Nx LOgMV4koH48nslroHvWrgiyVRg5QpW1fRaIMhF5SlKiF7wINj40MZdtelJNtMnrO 54fgbXzvGsfti9tHszhIJQNC7FHtIHDmv9vmD0/wWE5KjP646pu6h+PrSEBv9qUj O7dsxHL1v+k2dq1+lW0s2xIOQEsh0YFid6XgB/nbu7cNKNo50yfv1gm6Ff6ISLcm g8aZtIgWSqxTraqVbHSCvoxnMUURLmwPjKJcBEsAQVbR2yBJgrIsmv7vHtYFbex7 i9peCSj7SfPPsEBu1YNhezVe5w== -----END CERTIFICATE-----Generated at Thu Mar 26 11:54:51 2026 by rpki-client