$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft File: 8CJFNT_B8ZSpAipKwBl33l_eNvk.mft (raw, json) Hash identifier: x9fR/J6YDg4vwiQ5iPyy96947vI+hlc8xHppptXbARY= Subject key identifier: 57:00:C7:4C:75:F8:71:F8:C4:C9:A7:B7:BD:F5:EA:17:99:75:BB:F3 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft Manifest number: 03FB Signing time: Fri 27 Mar 2026 00:19:17 +0000 Manifest this update: Fri 27 Mar 2026 00:19:16 +0000 Manifest next update: Fri 03 Apr 2026 00:19:16 +0000 Files and hashes: 1: 8CJFNT_B8ZSpAipKwBl33l_eNvk.crl (hash: XJnPkyLLVzflADE+DsrVhKlt4SbptW1YUXSpPd76p7w=) 2: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (hash: GU459Ktdz/fz1ECmCeSCz7LdQF+jjHxhZbRp7cylRSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Mar 27 00:19:16 2026 GMT Not After : Apr 3 00:19:16 2026 GMT Subject: CN=69c5cd04-3676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c7:60:51:a0:e5:06:55:59:ef:d5:99:39:65: a4:c9:4e:60:ee:1b:7e:af:15:fc:d1:ca:29:ea:4a: 99:08:a3:35:d3:47:3f:40:39:c9:0b:32:76:4b:c2: 83:9d:51:15:ab:2f:d5:ae:ee:16:e3:d4:a3:47:a8: 24:f3:da:d9:58:ee:6e:f6:b8:8f:2d:a8:9e:c5:3f: 9f:ac:24:75:28:a0:cf:7c:ba:2e:e6:2a:a5:7e:08: 44:9d:66:15:75:31:ea:83:21:20:f2:4e:8b:f7:ba: 7b:6b:e9:5c:fc:a4:0f:a9:08:51:82:87:4d:b3:42: 7e:5f:75:67:6f:a2:f0:f9:98:cb:e3:d8:84:43:ac: ad:29:87:1b:29:66:57:5b:12:11:a2:15:02:95:80: b3:63:8b:94:e2:96:1b:f1:67:e0:fc:ed:19:ba:2e: 9a:c8:8d:16:69:ba:fa:0c:7c:a4:49:d4:69:a3:48: 85:25:d8:44:39:2b:31:e6:84:be:d0:01:b4:47:21: a7:f2:84:b4:09:b2:b4:b4:06:3c:27:0f:83:c4:73: 93:11:95:4b:e5:80:59:09:51:7d:5f:82:ab:a2:a0: 8a:17:24:81:a4:27:be:9b:83:db:3b:ba:3b:cb:3e: f2:6b:28:8b:1c:1b:4e:b9:74:bf:bf:cb:72:ec:c2: ff:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:00:C7:4C:75:F8:71:F8:C4:C9:A7:B7:BD:F5:EA:17:99:75:BB:F3 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:e8:bb:38:53:24:a4:08:db:12:b7:c4:60:be:bd:0a:00:f1: 2d:4a:99:17:1e:a8:90:19:45:b4:a6:38:dd:c3:42:b4:54:d2: a9:5c:91:2b:6c:cc:62:52:02:62:8e:fa:da:49:36:74:f4:52: 2a:ba:2b:b8:fe:e0:40:8d:e4:f4:f1:91:b2:86:be:4c:d6:1f: 28:93:87:44:b4:d7:17:05:16:14:07:0c:eb:ed:d5:3c:45:32: f9:39:92:0c:48:7d:53:8d:d1:8e:cb:4f:3d:26:7e:bf:a2:93: 40:b7:f9:23:a0:97:85:b0:71:02:7f:ba:ce:1b:0f:dc:60:49: df:e1:7d:0f:47:fe:ac:e5:3f:ef:52:45:56:79:ee:0c:bb:de: 45:b3:be:ec:37:e6:d7:de:92:ff:60:5f:5b:86:84:6c:ff:7d: c0:53:03:de:e4:06:c9:5a:be:f7:5f:1a:ef:0c:c8:14:02:c7: b9:61:56:69:b1:23:7d:5c:21:7d:94:36:5b:23:36:ef:a1:b3: 45:32:01:63:50:90:e7:76:5a:20:56:43:e3:62:42:00:c7:e2: d2:6c:b6:6b:6c:bc:e1:46:7e:3e:0d:73:24:19:07:44:75:06: 67:8f:5e:99:3b:21:1f:38:1b:ea:0a:52:9a:c3:18:17:c5:79: 6a:69:8f:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjYwMzI3MDAxOTE2WhcNMjYwNDAzMDAxOTE2WjAYMRYwFAYD VQQDEw02OWM1Y2QwNC0zNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcdgUaDlBlVZ79WZOWWkyU5g7ht+rxX80cop6kqZCKM100c/QDnJCzJ2S8KD nVEVqy/Vru4W49SjR6gk89rZWO5u9riPLaiexT+frCR1KKDPfLou5iqlfghEnWYV dTHqgyEg8k6L97p7a+lc/KQPqQhRgodNs0J+X3Vnb6Lw+ZjL49iEQ6ytKYcbKWZX WxIRohUClYCzY4uU4pYb8Wfg/O0Zui6ayI0Wabr6DHykSdRpo0iFJdhEOSsx5oS+ 0AG0RyGn8oS0CbK0tAY8Jw+DxHOTEZVL5YBZCVF9X4KroqCKFySBpCe+m4PbO7o7 yz7yayiLHBtOuXS/v8ty7ML/oQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFcAx0x1 +HH4xMmnt7316heZdbvzMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTk2QS8yODc4NUY2MEJGQkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjha U3BBaXBLd0JsMzNsX2VOdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKOi7OFMkpAjbErfEYL69CgDxLUqZFx6okBlFtKY43cNCtFTSqVyRK2zMYlIC Yo762kk2dPRSKroruP7gQI3k9PGRsoa+TNYfKJOHRLTXFwUWFAcM6+3VPEUy+TmS DEh9U43RjstPPSZ+v6KTQLf5I6CXhbBxAn+6zhsP3GBJ3+F9D0f+rOU/71JFVnnu DLveRbO+7Dfm196S/2BfW4aEbP99wFMD3uQGyVq+918a7wzIFALHuWFWabEjfVwh fZQ2WyM276GzRTIBY1CQ53ZaIFZD42JCAMfi0my2a2y84UZ+Pg1zJBkHRHUGZ49e mTshHzgb6gpSmsMYF8V5ammPsA== -----END CERTIFICATE-----Generated at Sat Mar 28 08:44:57 2026 by rpki-client