$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: BGNs4PxuBvPjJbc5cuopRcV6NKDOiS3dlC0c2RGC6LM= Subject key identifier: A6:5E:72:32:CE:10:3A:C5:FE:31:06:A7:02:6C:E9:7A:45:7B:54:40 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 03BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 03B4 Signing time: Fri 27 Mar 2026 00:28:19 +0000 Manifest this update: Fri 27 Mar 2026 00:28:19 +0000 Manifest next update: Fri 03 Apr 2026 00:28:19 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: 7OVgC33PJbRvmp3fbBHzn34QHmM7U8Xe/5dlJPRYNSE=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: l281WaGzYU7dCqEFuYzIN6MgvSUnWoKB+RqON01Yd2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Mar 27 00:28:19 2026 GMT Not After : Apr 3 00:28:19 2026 GMT Subject: CN=69c5cf23-f0c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ad:20:96:7e:7a:d5:4b:66:fb:96:bf:81:7c: 0b:93:39:75:c1:5a:86:b1:eb:4d:3e:fa:57:93:98: de:5b:c1:84:dc:50:3e:26:bf:68:71:6c:4d:ba:8d: e6:10:49:e8:a8:ec:d3:ee:fe:0d:54:0b:37:90:63: 09:c6:00:fb:71:5a:39:84:c5:2e:fe:a2:17:b3:f0: cc:78:31:13:29:c1:d1:6f:c5:d4:7f:ed:ec:e0:a5: 8c:40:f3:36:52:13:aa:ad:33:21:ec:25:f6:c9:59: 0c:e5:af:20:4e:5c:17:49:62:d9:f7:02:78:21:f4: f5:ec:67:3c:b6:d9:4d:86:e9:47:c0:c8:41:69:1e: d7:e7:35:a9:2d:f5:7f:49:de:eb:d3:5f:19:ed:9a: f6:ab:1c:89:1c:d3:f8:7a:20:9e:7f:30:84:22:5d: 6f:6d:84:c6:53:b2:54:2f:4a:18:ec:71:d6:61:9c: a8:63:74:0d:6f:e7:c9:c4:92:17:70:cc:cb:77:15: 66:b8:0e:3c:48:85:e2:80:a0:63:99:87:54:a7:47: 57:90:77:94:eb:87:bf:0d:80:ef:67:7a:4d:21:fd: 7f:9a:88:3d:a5:b0:b6:cb:2d:a0:f2:98:74:dd:76: 11:ec:f8:ee:b9:cc:17:5b:13:a7:df:a9:20:6e:4a: 59:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:72:32:CE:10:3A:C5:FE:31:06:A7:02:6C:E9:7A:45:7B:54:40 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d2:10:fb:83:b2:59:f4:7c:74:88:64:78:56:1f:4a:4f:ea: 55:15:46:f1:dc:12:63:91:5d:2f:9f:aa:cb:08:ef:b6:ee:18: be:1d:bc:e7:01:70:2d:bc:d9:00:6b:e5:aa:cf:e9:d4:d3:4c: ad:32:72:ba:a8:cb:34:89:0d:2a:e7:66:cc:2d:0b:85:33:17: e3:0a:a7:c1:6e:4d:b6:3d:47:f5:ac:39:80:f2:cf:3a:56:49: dd:c0:8c:c9:f9:c0:13:d9:90:be:cf:f7:08:34:71:34:d6:7a: d2:73:df:dc:bb:12:fc:f3:75:ac:43:61:31:a2:34:6c:be:1c: ae:81:c9:8b:20:ec:6a:3b:33:06:5b:87:01:75:e4:b6:70:58: d2:b9:1e:dd:b1:92:5c:d5:68:d3:f6:41:5e:68:87:a9:84:ee: 24:e9:fc:3f:4d:9d:86:35:63:7c:8f:84:12:92:4a:1f:98:52: 13:60:ed:dd:a9:6d:a0:79:32:eb:68:4d:b9:cf:43:36:8f:33: 9c:18:c5:f4:4a:b7:1f:bd:00:da:87:12:ee:53:9f:9d:e1:78: 2c:4a:70:72:af:e5:8e:31:a3:d8:12:82:53:bb:cb:34:1d:0d: 1d:6a:ae:28:71:19:7d:2b:db:a8:1d:5f:06:d9:41:b5:ce:62: 11:75:85:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjYwMzI3MDAyODE5WhcNMjYwNDAzMDAyODE5WjAYMRYwFAYD VQQDEw02OWM1Y2YyMy1mMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAja0gln561Utm+5a/gXwLkzl1wVqGsetNPvpXk5jeW8GE3FA+Jr9ocWxNuo3m EEnoqOzT7v4NVAs3kGMJxgD7cVo5hMUu/qIXs/DMeDETKcHRb8XUf+3s4KWMQPM2 UhOqrTMh7CX2yVkM5a8gTlwXSWLZ9wJ4IfT17Gc8ttlNhulHwMhBaR7X5zWpLfV/ Sd7r018Z7Zr2qxyJHNP4eiCefzCEIl1vbYTGU7JUL0oY7HHWYZyoY3QNb+fJxJIX cMzLdxVmuA48SIXigKBjmYdUp0dXkHeU64e/DYDvZ3pNIf1/mog9pbC2yy2g8ph0 3XYR7PjuucwXWxOn36kgbkpZGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKZecjLO EDrF/jEGpwJs6XpFe1RAMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO9IQ+4OyWfR8dIhkeFYfSk/qVRVG8dwSY5FdL5+qywjvtu4Yvh285wFwLbzZ AGvlqs/p1NNMrTJyuqjLNIkNKudmzC0LhTMX4wqnwW5Ntj1H9aw5gPLPOlZJ3cCM yfnAE9mQvs/3CDRxNNZ60nPf3LsS/PN1rENhMaI0bL4croHJiyDsajszBluHAXXk tnBY0rke3bGSXNVo0/ZBXmiHqYTuJOn8P02dhjVjfI+EEpJKH5hSE2Dt3altoHky 62hNuc9DNo8znBjF9Eq3H70A2ocS7lOfneF4LEpwcq/ljjGj2BKCU7vLNB0NHWqu KHEZfSvbqB1fBtlBtc5iEXWFaQ== -----END CERTIFICATE-----Generated at Sat Mar 28 11:47:44 2026 by rpki-client