$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: dd5xAbnAqpEvdG4/M2v2PMBbjiR1zodm6eGB88GMMuw= Subject key identifier: 7B:11:4D:02:C7:A3:C6:DE:FF:2E:6F:FD:A5:15:E5:C2:EF:BC:9C:8F Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 3525 Signing time: Thu 26 Mar 2026 15:00:00 +0000 Manifest this update: Thu 26 Mar 2026 14:59:59 +0000 Manifest next update: Thu 02 Apr 2026 14:59:59 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: EmJxw1/AiaPKdyYdFNWBMKcsgem6WXNP2u/9AEakIXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Mar 26 14:59:59 2026 GMT Not After : Apr 2 14:59:59 2026 GMT Subject: CN=69c549f0-e327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2d:ff:76:ef:95:5c:8a:77:81:77:f8:42:b0: bd:11:f8:1e:2f:b9:dc:cd:f8:e9:3b:38:5c:c0:2b: 41:59:24:58:4b:0a:b9:76:7a:54:b3:66:96:d5:37: 12:af:59:31:11:02:6a:c3:a9:ad:9e:10:cf:e2:13: ac:19:73:54:30:13:65:d3:34:64:89:da:50:78:16: 58:32:d4:37:a2:20:57:ca:7f:3e:ac:0e:fe:7a:95: 7c:13:b7:3b:65:bd:4e:ab:de:3f:b3:8f:e2:2f:ed: 6b:1b:5e:62:c0:a8:2c:67:0d:d0:67:7b:46:dd:32: 38:8f:84:25:69:cf:4a:38:8f:d4:34:86:3e:2c:7c: 1c:31:e2:ff:a1:9e:89:a1:6f:c5:a1:6c:5f:47:8b: 37:00:da:57:7b:2e:5c:4c:0b:8f:29:b2:60:aa:3d: 6c:33:6c:2f:c4:6f:42:33:46:ca:fb:e1:17:00:fd: 22:f5:41:4e:b2:55:b2:fb:4d:90:1a:76:46:43:d3: 50:73:1c:7f:fd:d1:ab:ae:47:57:54:ee:1a:d4:45: 0b:e8:5c:ea:8d:0f:b0:07:46:5a:85:8f:02:e6:27: 9a:f6:39:43:bb:c4:a0:c5:6d:0a:4b:09:68:d7:2b: 88:5b:da:76:30:45:a9:9c:dd:e2:57:67:6a:91:85: 85:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:11:4D:02:C7:A3:C6:DE:FF:2E:6F:FD:A5:15:E5:C2:EF:BC:9C:8F X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:38:5b:19:0a:35:be:11:da:c7:06:bd:fe:75:ed:26:94:c5: b5:99:40:e0:8a:3e:c9:60:ef:01:38:8a:3e:b6:b9:f3:fa:d6: bc:d3:e3:86:60:d8:e8:0a:79:6a:49:9f:d5:2a:8d:88:c5:ac: 5d:5a:a8:52:fa:2a:04:d3:a2:0c:4e:a8:0e:97:58:3d:06:80: 9c:94:fa:5a:8c:e8:62:c3:5e:d1:45:22:7c:8d:61:de:d2:9f: d3:eb:dd:db:d7:63:6d:a7:51:56:b3:82:33:65:f0:00:54:04: 7d:c4:a6:f9:4a:6e:d3:c0:f0:9b:11:19:df:21:6d:92:9a:91: 26:78:67:69:29:92:b3:00:03:bf:1b:bd:c8:69:71:e3:76:c1: 8f:ed:69:2b:9e:4c:be:51:87:b1:4e:3f:7f:e0:03:67:50:48: 1f:b1:f2:19:d0:e0:d9:44:af:84:ec:ef:dd:4a:a7:89:85:84: 73:ba:d4:b3:a5:61:ce:ed:84:03:5e:b3:c6:69:36:3b:34:be: ea:3a:f2:11:51:d9:55:bf:d0:3f:9a:db:b3:8c:c6:bc:e5:32: 9e:b8:00:3b:c8:9f:0c:ab:fb:e3:a3:33:b1:5c:d7:88:96:72: 93:39:02:30:c5:f3:dc:14:c1:86:5b:26:a4:d2:d8:9c:58:cb: 63:6b:04:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjYwMzI2MTQ1OTU5WhcNMjYwNDAyMTQ1OTU5WjAYMRYwFAYD VQQDEw02OWM1NDlmMC1lMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqS3/du+VXIp3gXf4QrC9EfgeL7nczfjpOzhcwCtBWSRYSwq5dnpUs2aW1TcS r1kxEQJqw6mtnhDP4hOsGXNUMBNl0zRkidpQeBZYMtQ3oiBXyn8+rA7+epV8E7c7 Zb1Oq94/s4/iL+1rG15iwKgsZw3QZ3tG3TI4j4Qlac9KOI/UNIY+LHwcMeL/oZ6J oW/FoWxfR4s3ANpXey5cTAuPKbJgqj1sM2wvxG9CM0bK++EXAP0i9UFOslWy+02Q GnZGQ9NQcxx//dGrrkdXVO4a1EUL6FzqjQ+wB0ZahY8C5iea9jlDu8SgxW0KSwlo 1yuIW9p2MEWpnN3iV2dqkYWFDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHsRTQLH o8be/y5v/aUV5cLvvJyPMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUjhbGQo1vhHaxwa9/nXtJpTFtZlA4Io+yWDvATiKPra58/rWvNPjhmDY6Ap5 akmf1SqNiMWsXVqoUvoqBNOiDE6oDpdYPQaAnJT6WozoYsNe0UUifI1h3tKf0+vd 29djbadRVrOCM2XwAFQEfcSm+Upu08DwmxEZ3yFtkpqRJnhnaSmSswADvxu9yGlx 43bBj+1pK55MvlGHsU4/f+ADZ1BIH7HyGdDg2USvhOzv3UqniYWEc7rUs6Vhzu2E A16zxmk2OzS+6jryEVHZVb/QP5rbs4zGvOUynrgAO8ifDKv746MzsVzXiJZykzkC MMXz3BTBhlsmpNLYnFjLY2sEEQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:37:00 2026 by rpki-client