$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: Haz4kofsu62pvyuzRQcHmxM3CMwTqi1sQ2rA25tuIeM= Subject key identifier: F0:F5:2A:E1:81:7E:3F:52:4A:07:9F:4D:4F:FC:75:61:0A:C4:B5:42 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 020C Signing time: Mon 02 Mar 2026 18:48:41 +0000 Manifest this update: Mon 02 Mar 2026 18:48:40 +0000 Manifest next update: Mon 09 Mar 2026 18:48:40 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: 4RimIaIG8M+MMsGeA3YS8yo9M/lJz0lHuBKN8DO5/go=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 18:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Mar 2 18:48:40 2026 GMT Not After : Mar 9 18:48:40 2026 GMT Subject: CN=69a5db88-ada1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9e:84:bc:41:23:68:07:d3:da:e6:ef:3f:9d: a3:2b:59:d8:7d:96:dc:1d:26:19:fa:0e:db:91:ba: de:e7:e2:03:da:98:b7:33:10:da:a1:3c:13:fa:35: 1f:f1:d5:03:e0:41:95:a0:5d:0c:9e:db:78:c2:6d: 7b:7b:ff:f0:41:78:c2:51:26:46:23:97:c3:21:4c: b3:81:83:6a:9a:c9:55:0f:8f:f5:90:9a:0d:bb:fa: de:ab:84:39:c8:f7:87:5b:82:16:dd:a3:35:58:9a: dd:31:9b:a3:30:6c:4d:aa:87:25:76:ff:56:8f:19: 64:eb:5d:f7:34:29:f4:9b:7e:9e:72:ce:95:82:e8: 10:85:5c:d7:6f:d0:37:eb:a7:ff:87:bd:e0:70:0a: 75:e3:09:93:26:b2:4b:68:d1:27:22:33:23:ca:67: 3e:b6:d4:07:8e:c5:54:41:ff:ec:bd:10:c3:a3:1b: ee:a1:9b:26:dc:cf:3a:9e:29:89:66:40:23:16:22: dd:a0:52:d0:6a:bb:71:af:bf:d8:ac:f3:44:87:73: 5e:dc:63:8a:cf:3d:c9:a0:b8:d2:c7:0a:7e:85:32: af:b4:bd:87:f1:56:e1:26:65:07:7d:00:3c:cb:40: 7f:70:2a:35:5c:61:37:e7:cf:98:5e:0e:c2:14:c9: 9e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F5:2A:E1:81:7E:3F:52:4A:07:9F:4D:4F:FC:75:61:0A:C4:B5:42 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:db:9c:8c:e6:66:6a:28:34:1f:81:a4:b5:aa:5a:b2:1a:24: 62:38:19:6d:60:9f:bc:55:4a:c4:9b:81:c1:0c:1e:63:aa:95: 66:fb:3a:79:40:d0:80:66:bc:0a:b8:35:8b:d8:85:18:62:d5: 0b:3d:7a:1b:8c:c0:33:e3:6e:e4:6c:2b:f8:05:8a:76:d5:2f: 3d:e2:d0:6a:57:d8:28:52:43:23:aa:e6:be:68:3d:0d:1d:e0: b0:e3:ee:08:b1:93:dc:71:a2:88:3c:35:94:40:98:af:d6:d4: 5b:4f:89:c0:c9:a4:28:5f:2f:42:72:3f:f9:4f:65:12:43:98: 27:9c:41:ec:3a:38:49:99:55:10:93:16:38:f4:c8:f0:0d:28: c4:5e:9a:77:f6:06:40:9d:7d:2e:25:33:f1:a1:e7:86:cc:2e: fe:bf:9e:f6:98:e5:3e:ae:d9:c4:ce:67:e1:3a:45:02:e1:12: e3:0c:1f:c1:62:bf:cc:3b:b8:64:b7:c8:bb:81:c7:e6:3d:10: 77:1e:e2:e8:68:85:74:a3:d9:fe:35:cf:c6:c2:60:31:a5:13: cf:bc:da:de:fb:52:63:bf:46:d0:8e:21:61:5d:42:65:ac:c3: c9:a3:10:a4:05:b8:87:63:f3:ae:e0:c2:ab:26:e6:8f:ff:af: b5:3a:ad:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwMzAyMTg0ODQwWhcNMjYwMzA5MTg0ODQwWjAYMRYwFAYD VQQDEw02OWE1ZGI4OC1hZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJ6EvEEjaAfT2ubvP52jK1nYfZbcHSYZ+g7bkbre5+ID2pi3MxDaoTwT+jUf 8dUD4EGVoF0Mntt4wm17e//wQXjCUSZGI5fDIUyzgYNqmslVD4/1kJoNu/req4Q5 yPeHW4IW3aM1WJrdMZujMGxNqocldv9Wjxlk6133NCn0m36ecs6VgugQhVzXb9A3 66f/h73gcAp14wmTJrJLaNEnIjMjymc+ttQHjsVUQf/svRDDoxvuoZsm3M86nimJ ZkAjFiLdoFLQartxr7/YrPNEh3Ne3GOKzz3JoLjSxwp+hTKvtL2H8VbhJmUHfQA8 y0B/cCo1XGE358+YXg7CFMme2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPD1KuGB fj9SSgefTU/8dWEKxLVCMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP9ucjOZmaig0H4GktapashokYjgZbWCfvFVKxJuBwQweY6qVZvs6eUDQgGa8 Crg1i9iFGGLVCz16G4zAM+Nu5Gwr+AWKdtUvPeLQalfYKFJDI6rmvmg9DR3gsOPu CLGT3HGiiDw1lECYr9bUW0+JwMmkKF8vQnI/+U9lEkOYJ5xB7Do4SZlVEJMWOPTI 8A0oxF6ad/YGQJ19LiUz8aHnhswu/r+e9pjlPq7ZxM5n4TpFAuES4wwfwWK/zDu4 ZLfIu4HH5j0Qdx7i6GiFdKPZ/jXPxsJgMaUTz7za3vtSY79G0I4hYV1CZazDyaMQ pAW4h2PzruDCqybmj/+vtTqt9w== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:55 2026 by rpki-client