$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft File: pdThiKsl2GlB4GvF8NK-mNClCi0.mft (raw, json) Hash identifier: 72Ht76O7yT+V+/H6QBcnTENx+pG+jOznVKp3BXo7XOE= Subject key identifier: A2:99:1B:43:0E:78:DC:FA:08:26:B4:2E:AF:83:E9:7E:51:08:06:A0 Authority key identifier: A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D Certificate issuer: /CN=A918E3C0/serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft Manifest number: 21 Signing time: Wed 25 Mar 2026 08:07:19 +0000 Manifest this update: Wed 25 Mar 2026 08:07:19 +0000 Manifest next update: Wed 01 Apr 2026 08:07:19 +0000 Files and hashes: 1: pdThiKsl2GlB4GvF8NK-mNClCi0.crl (hash: u5YJCk8vw7DfN83tI/JSilk+GP8mVfaxsCkiDPYznU0=) 2: 3EE95EC801B211F19B62C4E66C6F56BC.roa (hash: B0jnDdaxg9Qc3b+l9St8mXLfihlNO3bYzJFFHiKIOSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Validity Not Before: Mar 25 08:07:19 2026 GMT Not After : Apr 1 08:07:19 2026 GMT Subject: CN=69c397b7-0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:84:f8:0d:db:4e:0c:ab:7c:a8:1e:39:1d:4c: 5c:33:93:9d:95:85:3f:7b:52:c1:fd:c4:10:23:e7: 19:7f:6b:31:89:e3:97:0c:9d:91:73:a1:5f:a0:0d: 81:02:53:ad:6e:02:77:05:3c:b4:00:f8:35:12:39: c4:a4:43:57:4c:91:83:21:67:71:b8:8d:07:9d:1a: 34:00:08:0a:60:55:74:1e:15:e8:b5:99:5f:69:c5: e7:a7:52:4e:60:2e:f0:e1:ec:ac:24:93:9f:4e:01: 81:d1:ed:f0:a6:75:01:97:f7:ae:36:4a:0c:62:cd: 5f:32:25:c0:4f:9b:17:82:3c:9d:83:f0:b1:10:00: fa:b7:59:77:e7:4a:1a:41:0b:be:b6:59:32:df:93: 04:81:cd:a4:35:98:17:b2:ec:95:15:3b:02:18:6d: 96:dc:68:90:a1:93:16:52:3d:a7:78:5b:81:64:a1: 0a:5f:71:87:b4:70:67:18:37:4d:fe:17:8a:bf:ba: 85:69:a2:8e:df:a7:dd:31:5b:bb:41:79:e5:60:32: ac:8e:b0:a4:e5:43:47:aa:3c:c6:d0:b7:57:db:a9: 52:af:f1:8f:0c:b5:4d:a4:2a:9e:47:72:28:2d:69: 91:54:8e:6b:5d:f6:b6:49:21:55:fa:a6:1b:1d:0f: 8f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:99:1B:43:0E:78:DC:FA:08:26:B4:2E:AF:83:E9:7E:51:08:06:A0 X509v3 Authority Key Identifier: keyid:A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:55:d5:42:55:f3:ef:ef:b7:e7:84:4f:95:f1:fa:76:2d:82: 92:65:8b:48:49:67:4d:6e:d9:35:bf:aa:c5:7c:95:20:4c:ea: 85:10:22:d4:59:f4:95:10:59:4c:65:3b:34:a7:c9:2a:a3:f7: ef:a1:98:a1:23:4d:67:fe:76:00:49:45:b2:1f:3d:e1:25:b2: 07:6d:77:ac:36:5c:47:04:dc:27:15:a8:cb:e0:48:6e:c4:5a: 77:f1:31:cc:fc:77:73:23:be:14:d3:61:5d:6f:83:bb:f5:cc: d2:d0:91:5a:e9:e6:a3:8e:af:8a:cc:a4:87:09:33:72:98:ce: 0c:fd:3b:06:5e:34:9f:51:47:82:81:f3:23:fa:ae:39:fe:9a: 31:eb:86:a1:57:c0:1d:87:7c:14:e7:5a:1a:ed:ce:02:d1:b4: 56:62:46:14:c9:bb:cd:7d:6f:35:a2:68:4b:e5:09:6d:b1:61: d4:fe:93:cb:35:66:16:db:d1:60:c4:24:84:ec:99:4f:20:94: 15:0e:fd:e4:f9:30:6f:5c:d0:b5:82:58:1f:63:25:ed:c7:87: 45:e4:02:6f:23:28:44:40:f3:a2:1e:66:ea:18:08:40:77:06: d8:be:da:26:5f:24:57:34:c5:79:0b:23:16:22:c5:52:44:9c: 24:79:ab:50 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoQTVENEUxODhBQjI1RDg2OTQxRTA2QkM1RjBEMkJFOThE MEE1MEEyRDAeFw0yNjAzMjUwODA3MTlaFw0yNjA0MDEwODA3MTlaMBgxFjAUBgNV BAMTDTY5YzM5N2I3LTAyNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzhPgN204Mq3yoHjkdTFwzk52VhT97UsH9xBAj5xl/azGJ45cMnZFzoV+gDYEC U61uAncFPLQA+DUSOcSkQ1dMkYMhZ3G4jQedGjQACApgVXQeFei1mV9pxeenUk5g LvDh7Kwkk59OAYHR7fCmdQGX9642SgxizV8yJcBPmxeCPJ2D8LEQAPq3WXfnShpB C762WTLfkwSBzaQ1mBey7JUVOwIYbZbcaJChkxZSPad4W4FkoQpfcYe0cGcYN03+ F4q/uoVpoo7fp90xW7tBeeVgMqyOsKTlQ0eqPMbQt1fbqVKv8Y8MtU2kKp5Hcigt aZFUjmtd9rZJIVX6phsdD4+DAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUopkbQw54 3PoIJrQur4PpflEIBqAwHwYDVR0jBBgwFoAUpdThiKsl2GlB4GvF8NK+mNClCi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwLzlBOEFEODUyMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkdsQjRHdkY4TkstbU5DbENp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGRUaGlLc2wyR2xCNEd2RjhOSy1tTkNsQ2kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF M0MwLzlBOEFEODUyMDFCMTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkds QjRHdkY4TkstbU5DbENpMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCcVdVCVfPv77fnhE+V8fp2LYKSZYtISWdNbtk1v6rFfJUgTOqFECLUWfSVEFlM ZTs0p8kqo/fvoZihI01n/nYASUWyHz3hJbIHbXesNlxHBNwnFajL4EhuxFp38THM /HdzI74U02Fdb4O79czS0JFa6eajjq+KzKSHCTNymM4M/TsGXjSfUUeCgfMj+q45 /pox64ahV8Adh3wU51oa7c4C0bRWYkYUybvNfW81omhL5QltsWHU/pPLNWYW29Fg xCSE7JlPIJQVDv3k+TBvXNC1glgfYyXtx4dF5AJvIyhEQPOiHmbqGAhAdwbYvtom XyRXNMV5CyMWIsVSRJwkeatQ -----END CERTIFICATE-----Generated at Thu Mar 26 05:03:27 2026 by rpki-client