$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: HP0geKS/Jds8be8pLjJ9398a6M0xFI1nhXUSAdC38Yo= Subject key identifier: 98:89:29:D4:D3:60:24:CC:F8:3E:79:63:CE:00:25:2B:A8:D9:FD:8C Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0B60 Signing time: Thu 26 Mar 2026 19:30:13 +0000 Manifest this update: Thu 26 Mar 2026 19:30:12 +0000 Manifest next update: Thu 02 Apr 2026 19:30:12 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: UUYnsINiTw1/2k7VrI6twIjI/HwAhXjXGwMA6d0UyTA=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: 3k/MD9slc9k5QTtKaX1WS6uhMpxTNBjACucfwOuP+Og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Mar 26 19:30:12 2026 GMT Not After : Apr 2 19:30:12 2026 GMT Subject: CN=69c58945-7f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:eb:48:e3:68:29:66:4d:27:02:08:82:73:a2: eb:83:fb:ed:93:79:27:34:fc:99:29:47:42:f9:dc: e7:02:52:22:19:2b:a5:fd:59:e3:bc:92:af:ed:d7: 70:16:7e:81:b6:47:b0:79:dd:36:7c:f7:7f:43:44: e1:6f:5b:d1:3e:25:66:16:ae:30:b5:6c:98:26:66: d2:bc:0e:de:94:a9:cf:49:cf:99:ef:17:ad:96:58: 4b:56:b5:1a:0b:e6:81:d6:5b:92:ed:38:8f:17:ce: 78:d1:63:69:f7:65:b5:dd:c7:07:26:a1:71:02:88: 4a:b9:d7:b4:76:8e:68:49:f9:bb:b4:53:7a:ef:99: c3:88:78:c6:f6:83:ac:5f:86:22:48:d8:33:7b:fa: 4e:5b:92:ba:62:70:ca:a8:87:48:bd:4f:7d:c8:a0: 09:fb:1e:da:04:5a:62:09:6b:c7:7f:9a:e7:6e:90: 42:74:5e:d3:61:92:ae:59:21:c7:f6:ce:eb:82:30: 97:7a:c1:b9:54:09:ac:d1:51:c5:81:d3:0d:6d:1e: 3b:0d:df:e7:62:55:c7:0b:c2:e6:7c:8a:91:ea:87: 8b:e2:e9:29:be:14:5f:f6:a9:4b:2e:82:45:66:41: 09:19:2f:5f:13:9c:de:86:9e:38:59:a4:35:d2:6a: e4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:89:29:D4:D3:60:24:CC:F8:3E:79:63:CE:00:25:2B:A8:D9:FD:8C X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:8c:60:3d:4a:29:c0:93:0a:c1:bd:68:ea:40:b6:a8:21:37: 4b:f4:bd:39:b3:03:83:cd:21:6b:35:0a:c8:e7:54:dc:ae:fa: 68:a0:f6:08:5a:4c:13:f2:7f:c8:60:f8:be:d4:81:75:67:8a: fa:fb:e3:6b:ce:9a:c3:61:7e:f4:88:df:50:66:78:54:54:3d: 14:f3:78:78:7f:e5:8f:65:61:36:a1:be:94:00:33:df:bf:5f: 66:c4:01:b8:f7:4a:f5:9c:2a:a2:4b:4d:30:e0:2a:b9:34:ac: 08:07:7c:ef:fa:37:5b:da:c9:b3:63:1d:fa:76:d6:9c:36:0a: 3c:ef:b5:6f:b6:4f:76:91:0b:16:d1:0e:1d:a1:ce:87:a5:71: 30:10:7d:75:d8:6f:43:fc:32:8b:cf:40:d5:81:79:1e:fe:88: 6f:fd:43:91:88:0c:80:e2:7f:95:8c:86:35:b8:41:29:ac:98: f5:31:b6:45:c0:48:fe:7c:b5:7e:fd:59:21:d9:cc:ac:83:e4: 18:e0:3c:f4:ad:c7:df:9b:9b:47:62:6b:85:6c:9f:9d:40:0d: 46:47:c2:79:ef:04:e2:42:f4:ae:3a:43:aa:af:e4:12:d3:ed: 61:41:3f:9d:0c:ec:49:b6:01:68:90:87:68:ab:7c:e1:f0:d1: ff:3d:5b:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKERFNENFOTYwQTM5MzBBQjRDMjI3RkNFOEY4NTdDMDg0 MTk3RjA4RDAwHhcNMjYwMzI2MTkzMDEyWhcNMjYwNDAyMTkzMDEyWjAYMRYwFAYD VQQDEw02OWM1ODk0NS03ZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OtI42gpZk0nAgiCc6Lrg/vtk3knNPyZKUdC+dznAlIiGSul/VnjvJKv7ddw Fn6Btkewed02fPd/Q0Thb1vRPiVmFq4wtWyYJmbSvA7elKnPSc+Z7xetllhLVrUa C+aB1luS7TiPF8540WNp92W13ccHJqFxAohKude0do5oSfm7tFN675nDiHjG9oOs X4YiSNgze/pOW5K6YnDKqIdIvU99yKAJ+x7aBFpiCWvHf5rnbpBCdF7TYZKuWSHH 9s7rgjCXesG5VAms0VHFgdMNbR47Dd/nYlXHC8LmfIqR6oeL4ukpvhRf9qlLLoJF ZkEJGS9fE5zehp44WaQ10mrkFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJiJKdTT YCTM+D55Y84AJSuo2f2MMB8GA1UdIwQYMBaAFN5M6WCjkwq0wif86PhXwIQZfwjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENyVENKX3pvLUZmQWhCbF9D TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENy VENKX3pvLUZmQWhCbF9DTkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeYxgPUopwJMKwb1o6kC2qCE3S/S9ObMDg80hazUKyOdU3K76aKD2CFpME/J/ yGD4vtSBdWeK+vvja86aw2F+9IjfUGZ4VFQ9FPN4eH/lj2VhNqG+lAAz379fZsQB uPdK9ZwqoktNMOAquTSsCAd87/o3W9rJs2Md+nbWnDYKPO+1b7ZPdpELFtEOHaHO h6VxMBB9ddhvQ/wyi89A1YF5Hv6Ib/1DkYgMgOJ/lYyGNbhBKayY9TG2RcBI/ny1 fv1ZIdnMrIPkGOA89K3H35ubR2JrhWyfnUANRkfCee8E4kL0rjpDqq/kEtPtYUE/ nQzsSbYBaJCHaKt84fDR/z1bmQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:10:27 2026 by rpki-client