$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft File: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft (raw, json) Hash identifier: M2LsaVOgJl8fLEIlBquni8xc/FEKtyENpY+c8QmoNJc= Subject key identifier: 4A:48:87:71:84:4A:E4:80:0D:01:C7:34:19:AE:C0:6C:F4:A3:6E:28 Authority key identifier: 70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E Certificate issuer: /CN=A918B936/serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Certificate serial: 21A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft Manifest number: 21A1 Signing time: Thu 26 Mar 2026 15:54:18 +0000 Manifest this update: Thu 26 Mar 2026 15:54:17 +0000 Manifest next update: Thu 02 Apr 2026 15:54:17 +0000 Files and hashes: 1: cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl (hash: aMmDPeNWYqXhyFd6A+SuHbHWaCM0QvJ3GfQNnHPHQ7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8609 (0x21a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=7045A718BBEB289F18D1F930FA332D6332D9555E Validity Not Before: Mar 26 15:54:17 2026 GMT Not After : Apr 2 15:54:17 2026 GMT Subject: CN=69c556aa-e3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:a0:5d:a2:bc:1a:1e:4a:e5:ba:18:b7:e6: 21:c2:91:34:c3:27:b6:5d:6d:4f:55:81:5e:1a:e1: 32:08:c1:b3:7f:9d:ef:c3:ff:a6:72:f5:9d:a3:49: 93:5d:0c:ab:16:26:dc:32:ac:cf:c9:b8:ae:e5:a7: 41:bb:b4:32:d0:ea:f3:e0:0e:49:bb:01:e2:8a:d6: 3a:66:5e:0b:4e:2b:ac:1d:16:01:a4:f6:bd:a1:cc: f1:c7:fb:39:4d:a7:a4:d0:68:77:18:17:d8:a9:54: f6:0f:bd:f3:5c:99:f5:7a:0b:55:70:21:25:81:f8: 8d:03:33:8c:78:0f:35:27:c3:d8:01:e7:38:51:0b: 2f:d6:6d:ed:7b:23:c3:0e:3e:1c:a7:a8:99:15:d4: e1:03:8c:fd:3c:77:fe:34:bc:70:4a:b5:39:61:2f: 4a:7b:97:d5:d0:f6:9a:a0:f8:5f:29:98:c1:a3:a9: 4b:84:fa:a7:c9:88:ff:91:fd:c0:60:20:b2:64:c9: a4:d4:30:20:95:61:7d:b6:6f:38:76:5e:9a:8c:6e: fa:3f:42:7c:32:c0:6d:89:f2:91:b3:41:2c:91:4c: 7d:0f:b7:79:2c:f5:bf:72:dd:b7:03:46:fd:27:85: c7:40:ba:34:d9:dc:95:db:96:e9:90:21:3b:43:5b: 2b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:48:87:71:84:4A:E4:80:0D:01:C7:34:19:AE:C0:6C:F4:A3:6E:28 X509v3 Authority Key Identifier: keyid:70:45:A7:18:BB:EB:28:9F:18:D1:F9:30:FA:33:2D:63:32:D9:55:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4075121AF0CD11E5A4432E74C4F9AE02/cEWnGLvrKJ8Y0fkw-jMtYzLZVV4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:cc:18:88:ce:70:ac:b4:3c:c1:a5:a3:2c:5b:a9:0d:7e:b8: 02:83:2f:3c:c1:3a:1e:dd:c0:ed:57:bd:fc:71:7d:46:29:91: ae:41:5a:82:18:59:f8:0d:98:b7:f8:eb:78:c1:0f:e3:c9:f3: da:d5:14:d8:8b:b2:1f:3f:6c:a4:46:aa:e8:8c:5d:1b:a4:fa: 1e:0f:ef:06:c7:8a:5b:e0:d9:f7:2d:94:f4:3c:73:1f:85:31: 43:03:b7:e3:18:3e:29:2f:a5:70:d4:18:cb:07:b9:1d:a9:b3: a0:39:64:02:78:17:de:ca:25:48:67:24:51:53:1c:b8:73:c8: 91:c8:e2:09:b6:0f:62:38:22:d2:82:9a:cf:5e:cf:33:b3:4d: ad:44:fe:a9:83:01:5b:cd:53:d0:e9:39:30:1b:43:79:80:d3: 26:29:2a:5e:8b:ba:fa:31:54:6e:5f:85:72:bf:75:57:03:ff: 79:74:5f:59:17:75:a7:15:1a:9f:f9:92:7f:68:c0:1d:87:f0: 8d:92:fb:87:f6:8f:5c:8c:a7:4d:13:17:30:a5:61:92:7c:fa: ca:cb:50:7c:24:78:02:ae:12:d4:20:c7:1c:b5:81:89:c9:e5: 0a:22:25:e6:f4:c0:b2:bc:20:ae:73:1a:16:81:da:c0:0e:53: 1c:b5:48:dc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDcwNDVBNzE4QkJFQjI4OUYxOEQxRjkzMEZBMzMyRDYz MzJEOTU1NUUwHhcNMjYwMzI2MTU1NDE3WhcNMjYwNDAyMTU1NDE3WjAYMRYwFAYD VQQDEw02OWM1NTZhYS1lM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6igXaK8Gh5K5boYt+YhwpE0wye2XW1PVYFeGuEyCMGzf53vw/+mcvWdo0mT XQyrFibcMqzPybiu5adBu7Qy0Orz4A5JuwHiitY6Zl4LTiusHRYBpPa9oczxx/s5 Taek0Gh3GBfYqVT2D73zXJn1egtVcCElgfiNAzOMeA81J8PYAec4UQsv1m3teyPD Dj4cp6iZFdThA4z9PHf+NLxwSrU5YS9Ke5fV0PaaoPhfKZjBo6lLhPqnyYj/kf3A YCCyZMmk1DAglWF9tm84dl6ajG76P0J8MsBtifKRs0EskUx9D7d5LPW/ct23A0b9 J4XHQLo02dyV25bpkCE7Q1sr5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEpIh3GE SuSADQHHNBmuwGz0o24oMB8GA1UdIwQYMBaAFHBFpxi76yifGNH5MPozLWMy2VVe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80MDc1MTIxQUYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktKOFkwZmt3LWpNdFl6TFpW VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NFV25HTHZyS0o4WTBma3ctak10WXpMWlZWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80MDc1MTIxQUYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9jRVduR0x2cktK OFkwZmt3LWpNdFl6TFpWVjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAR8wYiM5wrLQ8waWjLFupDX64AoMvPME6Ht3A7Ve9/HF9RimRrkFaghhZ+A2Y t/jreMEP48nz2tUU2IuyHz9spEaq6IxdG6T6Hg/vBseKW+DZ9y2U9DxzH4UxQwO3 4xg+KS+lcNQYywe5HamzoDlkAngX3solSGckUVMcuHPIkcjiCbYPYjgi0oKaz17P M7NNrUT+qYMBW81T0Ok5MBtDeYDTJikqXou6+jFUbl+Fcr91VwP/eXRfWRd1pxUa n/mSf2jAHYfwjZL7h/aPXIynTRMXMKVhknz6ystQfCR4Aq4S1CDHHLWBicnlCiIl 5vTAsrwgrnMaFoHawA5THLVI3A== -----END CERTIFICATE-----Generated at Fri Mar 27 06:22:16 2026 by rpki-client