$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft File: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json) Hash identifier: Q0HsKFFJ0tUUt3o5z3/DGcwEoU/GtwXtiiw4I4g853w= Subject key identifier: 2B:AF:69:1E:AA:15:BB:6C:00:EF:16:AD:F8:E0:2A:3F:3B:B0:41:55 Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 Certificate issuer: /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft Manifest number: 3F Signing time: Wed 25 Mar 2026 07:41:25 +0000 Manifest this update: Wed 25 Mar 2026 07:41:24 +0000 Manifest next update: Wed 01 Apr 2026 07:41:24 +0000 Files and hashes: 1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: 8e+mCPMKdFeTuT1uE6KvYO5naDul8zau9nX+Zx8nAUY=) 2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: ERXxcYaD/BipGW6AIZDMmzRHcboCoePXi+aLABZ/mKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Validity Not Before: Mar 25 07:41:24 2026 GMT Not After : Apr 1 07:41:24 2026 GMT Subject: CN=69c391a5-f477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:36:71:48:65:a2:94:80:c3:24:d2:da:e9:7f: e4:c1:6c:e3:39:cd:8a:10:c3:a6:3a:b9:89:cf:b8: b3:45:0e:1e:09:fa:e7:85:99:90:e3:a7:b6:78:2b: d1:79:0d:cb:10:ed:10:7a:d7:00:4c:73:d7:b1:8c: 14:e7:2e:94:9c:f1:89:a1:e1:d4:1d:e1:0b:68:02: 00:95:2c:52:8a:c2:63:bc:2a:e5:1b:f2:be:6f:30: 20:de:49:1f:f2:ac:ab:72:ea:2a:e9:34:f3:6a:c3: e1:1a:04:75:71:3e:de:6e:ca:d2:65:ec:66:af:1a: ba:b2:6e:22:bf:b1:ae:2e:a7:4c:33:4f:3a:3f:78: c9:d3:66:34:a0:c7:76:c2:74:33:8a:aa:67:a6:4f: 14:71:c6:52:cb:09:3b:83:57:5c:76:35:e9:08:af: e5:57:44:7f:01:1b:af:8f:e6:c5:c2:14:05:9f:c1: 3e:d7:6c:cc:5f:b7:a8:e9:bd:9f:3b:93:47:51:08: 84:32:ef:67:e8:6c:68:52:2b:13:e9:ec:20:70:9c: bf:f7:e5:05:56:6d:8b:8b:49:01:19:53:18:30:68: 77:84:87:00:04:d4:49:d0:d7:ad:8c:2f:30:d5:8f: 3b:da:43:42:01:53:25:28:55:1e:30:5f:ca:91:da: 9e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AF:69:1E:AA:15:BB:6C:00:EF:16:AD:F8:E0:2A:3F:3B:B0:41:55 X509v3 Authority Key Identifier: keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ba:8e:9c:9b:18:06:12:78:10:13:85:4d:db:65:ab:46:8d: 68:29:4d:06:53:8c:e3:dc:79:80:0a:8b:7b:7f:3a:8a:9b:ac: 5e:e2:81:fc:5d:93:5f:f9:bf:ed:f8:6b:9b:28:9f:22:dc:8a: d9:21:d4:85:16:e2:c5:e8:f0:58:f3:c0:a8:ca:8b:3e:e8:b2: 3f:56:cd:f1:34:6f:7a:28:ae:33:f6:64:41:26:7e:63:dd:c9: f4:73:3a:21:e7:e1:c4:76:4c:21:73:bf:f2:04:da:9e:ed:92: 9c:7a:99:24:82:22:8e:11:a6:34:96:ad:81:e9:72:12:6f:1c: c0:50:b7:3c:4e:02:fd:13:59:22:f6:f2:a6:ff:87:b4:10:85: 39:af:2f:e1:f9:17:80:46:15:03:fd:03:18:90:c7:f8:37:67: 61:3e:8b:63:0f:c4:94:d4:2b:48:7a:f4:1a:94:2c:79:a5:d7: 9b:89:73:0e:80:26:4a:af:88:7d:b3:f8:9a:e6:19:98:86:39: 3b:33:7b:32:6c:ad:2e:6e:31:ed:1d:7b:fe:8c:25:63:82:e9: cc:24:6e:a6:96:0c:1f:f0:f6:1e:90:d5:a0:a9:47:f3:be:22: 41:7e:d7:1c:95:04:22:40:9b:ce:8c:45:bd:b0:47:ef:5b:78: b8:a5:47:b3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0 NDFDQzk5NzAeFw0yNjAzMjUwNzQxMjRaFw0yNjA0MDEwNzQxMjRaMBgxFjAUBgNV BAMTDTY5YzM5MWE1LWY0NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbNnFIZaKUgMMk0trpf+TBbOM5zYoQw6Y6uYnPuLNFDh4J+ueFmZDjp7Z4K9F5 DcsQ7RB61wBMc9exjBTnLpSc8Ymh4dQd4QtoAgCVLFKKwmO8KuUb8r5vMCDeSR/y rKty6irpNPNqw+EaBHVxPt5uytJl7GavGrqybiK/sa4up0wzTzo/eMnTZjSgx3bC dDOKqmemTxRxxlLLCTuDV1x2NekIr+VXRH8BG6+P5sXCFAWfwT7XbMxft6jpvZ87 k0dRCIQy72fobGhSKxPp7CBwnL/35QVWbYuLSQEZUxgwaHeEhwAE1EnQ162MLzDV jzvaQ0IBUyUoVR4wX8qR2p5jAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUK69pHqoV u2wA7xat+OAqPzuwQVUwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5 MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn MGUzc1V3RXJaNmtRY3laYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQB8uo6cmxgGEngQE4VN22WrRo1oKU0GU4zj3HmACot7fzqKm6xe4oH8XZNf+b/t +GubKJ8i3IrZIdSFFuLF6PBY88Coyos+6LI/Vs3xNG96KK4z9mRBJn5j3cn0czoh 5+HEdkwhc7/yBNqe7ZKcepkkgiKOEaY0lq2B6XISbxzAULc8TgL9E1ki9vKm/4e0 EIU5ry/h+ReARhUD/QMYkMf4N2dhPotjD8SU1CtIevQalCx5pdebiXMOgCZKr4h9 s/ia5hmYhjk7M3sybK0ubjHtHXv+jCVjgunMJG6mlgwf8PYekNWgqUfzviJBftcc lQQiQJvOjEW9sEfvW3i4pUez -----END CERTIFICATE-----Generated at Thu Mar 26 13:30:30 2026 by rpki-client