$ rpki-client -vvf rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft File: -r3gfSxVjb3PPDIAdre1X9-gR0A.mft (raw, json) Hash identifier: UJk2ypE03LUCst5N6/9OVHjyVXhu/Utbm3pWE9G5d+k= Subject key identifier: 8D:71:6D:7E:34:DA:96:4B:5C:DF:81:DF:34:12:E5:11:8D:4E:C7:C3 Authority key identifier: FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 Certificate issuer: /CN=A918143E/serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Certificate serial: 0A97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft Manifest number: 0A8D Signing time: Tue 24 Mar 2026 19:21:06 +0000 Manifest this update: Tue 24 Mar 2026 19:21:06 +0000 Manifest next update: Tue 31 Mar 2026 19:21:06 +0000 Files and hashes: 1: -r3gfSxVjb3PPDIAdre1X9-gR0A.crl (hash: pXNT7vTbnOwEznwbCHYKFvTu3JoBB6gqgL1E01R0s94=) 2: 7E4ED0E4798B11EA90252969C4F9AE02.roa (hash: IL6bRakxlVvKesTi746HWYMM7hKRpmC56H2dBw0x/R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2711 (0xa97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918143E, serialNumber=FABDE07D2C558DBDCF3C320076B7B55FDFA04740 Validity Not Before: Mar 24 19:21:06 2026 GMT Not After : Mar 31 19:21:06 2026 GMT Subject: CN=69c2e422-902a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:be:b1:d2:b6:3c:e4:44:85:cf:67:05:19:67: 27:90:58:1f:11:f0:50:e1:64:6f:30:89:5d:8a:c7: 5a:cb:4b:6e:7a:1a:6a:58:4e:75:f9:ce:69:80:11: 64:66:e0:32:43:7e:05:11:b6:6e:a3:de:59:65:15: d0:ed:4c:67:8b:84:30:20:48:45:76:a6:c8:0b:70: 01:9f:94:39:d8:2f:df:5a:c1:66:b3:7d:44:16:92: 94:5d:3b:5f:3e:fe:de:76:b4:37:76:ef:5c:04:ed: 3f:c4:15:69:f9:34:04:af:32:87:e8:c7:b3:6e:c5: 11:04:89:fc:21:32:47:23:de:c2:34:83:2b:70:ba: 8e:cd:c8:42:d7:17:92:4d:05:fd:9a:78:9c:56:cc: 7d:cc:8e:e9:cb:81:89:db:2b:d2:2e:26:1b:ad:ad: f6:c6:d6:f9:2e:ea:9d:2b:90:7f:49:8a:e2:bd:ec: e9:5c:85:e3:10:86:2c:b1:cc:e7:60:3f:38:50:62: d7:90:dc:8c:5a:9b:18:1f:c0:a5:63:5d:e0:7d:be: fc:18:a7:30:72:17:d9:5d:b2:7a:6e:0a:97:c7:c2: b6:cb:49:77:11:5a:76:2b:5e:b5:2c:ee:db:26:57: 17:69:c7:7f:56:f1:db:79:1c:24:4e:50:ce:db:e9: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:71:6D:7E:34:DA:96:4B:5C:DF:81:DF:34:12:E5:11:8D:4E:C7:C3 X509v3 Authority Key Identifier: keyid:FA:BD:E0:7D:2C:55:8D:BD:CF:3C:32:00:76:B7:B5:5F:DF:A0:47:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r3gfSxVjb3PPDIAdre1X9-gR0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918143E/A3C07B86798911EABCBA2166C4F9AE02/-r3gfSxVjb3PPDIAdre1X9-gR0A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a4:76:56:30:33:ce:92:ed:98:9b:d4:3d:8b:c6:4f:43:5a: 2a:c8:5b:c6:2e:f0:a3:42:d5:e5:ab:88:6b:c3:0f:c1:c9:f1: 96:44:52:d9:d8:b3:75:0b:79:bc:8f:e6:24:98:f5:cd:3f:ef: c5:15:68:a8:9b:e6:2a:e2:11:d4:31:4f:e0:d6:2a:bf:77:1a: f8:6d:68:27:b9:96:16:f2:52:97:7e:74:88:20:a1:90:07:f1: 64:c3:17:f3:71:8b:40:94:58:21:cd:1e:c7:9b:d4:e8:1e:10: 64:94:ab:b0:93:8b:b7:66:03:2a:3d:0b:5c:d2:6f:9a:a7:f4: 5a:01:99:e7:ab:6a:79:cf:ff:15:06:8c:b5:90:35:46:96:91: 8d:f1:42:21:f6:9f:bd:62:6a:b2:91:e2:3c:eb:5c:57:39:cb: 9a:d6:8e:12:0a:6e:cd:da:09:4e:6c:01:70:10:cf:46:ff:26: ff:40:e9:7e:b7:17:de:d4:41:fe:ce:af:11:e4:4a:01:10:36: f4:20:72:61:91:79:63:a6:e2:bd:23:da:f7:69:54:71:c7:3a: fd:5e:18:9b:51:35:e1:d4:c4:00:bf:40:33:b8:a9:dd:49:c3: 0a:d6:16:46:c6:8d:69:7f:ea:f3:5f:89:fd:10:e6:82:65:00: d8:ab:1b:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0M0UxMTAvBgNVBAUTKEZBQkRFMDdEMkM1NThEQkRDRjNDMzIwMDc2QjdCNTVG REZBMDQ3NDAwHhcNMjYwMzI0MTkyMTA2WhcNMjYwMzMxMTkyMTA2WjAYMRYwFAYD VQQDEw02OWMyZTQyMi05MDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlb6x0rY85ESFz2cFGWcnkFgfEfBQ4WRvMIldisday0tuehpqWE51+c5pgBFk ZuAyQ34FEbZuo95ZZRXQ7Uxni4QwIEhFdqbIC3ABn5Q52C/fWsFms31EFpKUXTtf Pv7edrQ3du9cBO0/xBVp+TQErzKH6MezbsURBIn8ITJHI97CNIMrcLqOzchC1xeS TQX9mnicVsx9zI7py4GJ2yvSLiYbra32xtb5LuqdK5B/SYrivezpXIXjEIYssczn YD84UGLXkNyMWpsYH8ClY13gfb78GKcwchfZXbJ6bgqXx8K2y0l3EVp2K161LO7b JlcXacd/VvHbeRwkTlDO2+mirwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI1xbX40 2pZLXN+B3zQS5RGNTsfDMB8GA1UdIwQYMBaAFPq94H0sVY29zzwyAHa3tV/foEdA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzRS9BM0MwN0I4Njc5 ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4VmpiM1BQRElBZHJlMVg5LWdS MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yM2dmU3hWamIzUFBESUFkcmUxWDktZ1IwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTQzRS9BM0MwN0I4Njc5ODkxMUVBQkNCQTIxNjZDNEY5QUUwMi8tcjNnZlN4Vmpi M1BQRElBZHJlMVg5LWdSMEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOKR2VjAzzpLtmJvUPYvGT0NaKshbxi7wo0LV5auIa8MPwcnxlkRS2dizdQt5 vI/mJJj1zT/vxRVoqJvmKuIR1DFP4NYqv3ca+G1oJ7mWFvJSl350iCChkAfxZMMX 83GLQJRYIc0ex5vU6B4QZJSrsJOLt2YDKj0LXNJvmqf0WgGZ56tqec//FQaMtZA1 RpaRjfFCIfafvWJqspHiPOtcVznLmtaOEgpuzdoJTmwBcBDPRv8m/0DpfrcX3tRB /s6vEeRKARA29CByYZF5Y6bivSPa92lUccc6/V4Ym1E14dTEAL9AM7ip3UnDCtYW RsaNaX/q81+J/RDmgmUA2KsbPg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:32:02 2026 by rpki-client