$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: sQtfWl/ODunKkWK2tKaIq1s830kMSr88836lkug8fMI= Subject key identifier: 65:E8:69:B9:E3:96:FE:D7:77:EE:77:2A:53:43:57:35:E6:65:70:A3 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B71 Signing time: Mon 02 Mar 2026 16:19:36 +0000 Manifest this update: Mon 02 Mar 2026 16:19:36 +0000 Manifest next update: Mon 09 Mar 2026 16:19:36 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: yN9+y5zZVXL/VxqnaMQCBdr7UI3+BlHsOBshFLui0ro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7028 (0x1b74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Mar 2 16:19:36 2026 GMT Not After : Mar 9 16:19:36 2026 GMT Subject: CN=69a5b898-3774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cc:ba:ab:90:d0:b4:c0:81:55:85:ed:76:43: ad:d1:69:ba:9a:bf:4f:4c:43:9e:08:4c:82:0c:a8: c0:ae:20:2a:62:2c:db:f4:30:6b:05:ba:9f:b8:0b: 1d:a4:38:ad:10:c8:9b:a4:ca:b5:dd:43:d2:94:4a: 11:fb:44:84:ac:1e:4f:2b:d5:3a:fd:03:2e:1b:c6: 65:ba:62:c4:f9:ea:4b:03:15:90:01:41:79:41:50: a1:f4:43:f3:3b:cf:4a:b0:91:b6:e9:92:bf:ad:c7: e9:8c:0f:fa:21:eb:6d:82:af:d0:49:32:1a:8e:4e: 32:9d:55:0a:2a:fe:50:9c:12:43:94:9d:b1:7b:eb: 5d:89:fe:8f:e6:60:32:87:30:c8:1e:a7:85:91:bf: f2:6c:7b:6b:69:56:9e:5e:d6:d9:05:e1:8a:6c:34: f1:d6:be:cc:3d:3e:bf:1b:14:a2:ff:8c:c7:1f:40: 9d:98:ad:84:7c:50:93:a9:e1:b1:db:ef:01:25:a3: a5:18:a3:18:39:b4:fb:5f:a0:de:1a:70:6f:49:0c: 43:d7:99:9f:55:3b:5b:8b:b0:7b:19:26:48:74:dc: 96:db:93:74:83:ac:51:d0:8f:39:5b:f3:f5:4f:26: b1:4d:bb:20:88:85:fd:b6:e7:17:07:02:51:7c:22: ea:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E8:69:B9:E3:96:FE:D7:77:EE:77:2A:53:43:57:35:E6:65:70:A3 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1d:23:51:9c:d2:48:cc:14:58:0e:d4:a6:ea:b4:d7:48:60: 81:e3:05:a3:43:b4:27:d5:cf:93:da:90:db:f0:e8:7e:80:bc: 10:8f:76:f5:92:e8:55:b0:86:28:e5:c6:ac:a8:71:cb:3d:7a: f2:99:b4:90:1d:28:8c:1d:ff:37:e3:8e:9b:55:5c:b3:37:0d: 05:ef:5b:4b:8c:4d:3e:52:96:f4:2c:c2:93:c5:5d:4a:95:ce: e0:6e:0f:7d:c9:5e:11:a0:a8:fa:62:06:0e:1e:f0:10:e7:46: 58:56:6c:cd:0f:1c:f3:95:31:db:dc:8e:2b:7b:ed:7e:fe:cb: c3:ac:84:7c:6c:16:d9:83:f1:81:98:53:80:cb:d1:d2:25:7b: bb:91:26:ce:b2:ac:69:bb:f1:95:d8:96:e2:14:f0:32:ad:db: 89:1c:d2:e7:9f:1c:12:14:df:f6:ea:37:87:66:47:c4:9a:e5: df:85:40:95:a3:e6:6b:64:fd:03:b1:31:6e:16:9f:1b:bb:f3: 46:d6:27:9e:52:53:70:3c:05:d3:b4:15:3e:d3:3d:6c:36:f9: ac:1b:ad:d8:cb:a5:1d:71:86:96:7a:20:9f:b8:11:fe:c7:6d: aa:9a:7e:a4:a0:19:28:e0:b7:32:8f:9c:ae:99:bf:e9:7b:0f: 68:74:5b:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwMzAyMTYxOTM2WhcNMjYwMzA5MTYxOTM2WjAYMRYwFAYD VQQDEw02OWE1Yjg5OC0zNzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMy6q5DQtMCBVYXtdkOt0Wm6mr9PTEOeCEyCDKjAriAqYizb9DBrBbqfuAsd pDitEMibpMq13UPSlEoR+0SErB5PK9U6/QMuG8ZlumLE+epLAxWQAUF5QVCh9EPz O89KsJG26ZK/rcfpjA/6Iettgq/QSTIajk4ynVUKKv5QnBJDlJ2xe+tdif6P5mAy hzDIHqeFkb/ybHtraVaeXtbZBeGKbDTx1r7MPT6/GxSi/4zHH0CdmK2EfFCTqeGx 2+8BJaOlGKMYObT7X6DeGnBvSQxD15mfVTtbi7B7GSZIdNyW25N0g6xR0I85W/P1 TyaxTbsgiIX9tucXBwJRfCLqhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGXoabnj lv7Xd+53KlNDVzXmZXCjMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGB0jUZzSSMwUWA7Upuq010hggeMFo0O0J9XPk9qQ2/DofoC8EI929ZLoVbCG KOXGrKhxyz168pm0kB0ojB3/N+OOm1VcszcNBe9bS4xNPlKW9CzCk8VdSpXO4G4P fcleEaCo+mIGDh7wEOdGWFZszQ8c85Ux29yOK3vtfv7Lw6yEfGwW2YPxgZhTgMvR 0iV7u5EmzrKsabvxldiW4hTwMq3biRzS558cEhTf9uo3h2ZHxJrl34VAlaPma2T9 A7ExbhafG7vzRtYnnlJTcDwF07QVPtM9bDb5rBut2MulHXGGlnogn7gR/sdtqpp+ pKAZKOC3Mo+crpm/6XsPaHRbaQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:41:28 2026 by rpki-client