$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: xTgPN7G8Du/XCywnqsKOblotR98ip0arm+Cevx4/BVs= Subject key identifier: 33:A8:D3:A5:EC:2A:B6:54:EC:04:E1:29:1A:FD:FC:8F:55:37:7D:CC Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0742 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 071C Signing time: Tue 24 Mar 2026 16:44:18 +0000 Manifest this update: Tue 24 Mar 2026 16:44:18 +0000 Manifest next update: Tue 31 Mar 2026 16:44:18 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: DMAr7spzEnjgdup0aAT9qU0PREDRL7wZu5plpZ1uVlM=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: +C2epm2cuJ3GR0nAkShPOcsEF6oYoWgKxDRuq2dxIhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Mar 24 16:44:18 2026 GMT Not After : Mar 31 16:44:18 2026 GMT Subject: CN=69c2bf62-ec6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:b1:00:43:cc:81:db:38:22:e3:de:2f:5a: 4a:d4:40:88:12:9e:38:7d:3b:48:ab:be:34:b0:41: 8e:43:64:4b:95:ac:80:71:26:ce:ae:c2:8d:3f:8e: 5e:56:ff:20:18:a4:18:bf:89:01:88:21:01:ed:5e: c8:6e:80:33:06:01:2d:55:09:cd:44:da:94:20:89: 44:79:3b:a4:3a:a5:bc:6e:44:8e:fe:7a:e1:78:17: e3:e0:8a:64:b6:20:9a:cf:ba:25:2c:dd:b8:35:11: 75:48:98:04:c6:b5:6e:77:83:cc:ca:b5:b5:67:a5: 74:94:52:66:d2:c2:79:56:7e:8e:97:b5:c5:67:cb: e3:23:ef:56:de:48:6d:fe:f2:07:4d:82:56:af:cf: e4:20:e3:11:8d:70:8d:4d:4a:14:c9:59:36:67:8b: 60:da:91:e6:61:c3:ad:d2:49:68:49:73:8d:09:4a: a6:cc:0a:0e:39:dd:f6:a3:80:84:13:bb:5c:80:e8: fc:e2:88:de:32:a5:bd:56:17:42:fe:15:84:a3:44: 89:e1:ac:bd:c5:ba:f8:63:ab:2b:a2:65:54:34:92: cc:df:69:f1:5a:93:da:74:7d:2e:5d:10:28:5b:63: 8c:b4:56:86:78:42:f5:56:d3:ef:98:cb:56:4e:7a: 2a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A8:D3:A5:EC:2A:B6:54:EC:04:E1:29:1A:FD:FC:8F:55:37:7D:CC X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:81:d7:32:82:76:c5:e6:56:0c:b2:d9:62:50:60:09:30:5a: 93:41:5b:65:32:f6:71:37:28:ce:5b:a4:94:62:0e:60:ed:33: c6:2b:c0:73:5b:3a:0a:4f:58:76:da:b1:5b:c5:2f:64:e0:a4: 28:0c:ab:8f:61:c7:df:4a:67:81:b5:1c:ea:f8:c8:92:02:fc: 6f:4a:4f:c6:b1:8d:1d:13:aa:e2:37:da:3a:7c:f2:7d:33:05: 05:de:1a:13:99:31:e5:62:97:3d:97:7a:cb:50:68:da:7b:2e: 3c:24:76:7a:13:da:d8:1c:18:31:a5:62:40:e8:24:b6:b5:bd: 6f:fc:8a:08:b6:57:be:a8:4f:b8:1b:f5:71:52:0d:60:83:29: 08:16:95:5d:12:a7:53:e2:ad:2e:ac:a2:85:0a:6c:17:f6:31: 85:81:dc:96:dc:0e:9b:ab:4b:22:3d:b4:85:19:6c:d5:54:32: 6d:ff:48:83:8a:23:64:f5:e9:21:08:76:7b:af:7d:65:7e:25: 68:a7:97:b8:85:7a:ee:ee:98:1b:f5:df:95:e8:99:ab:e9:b7: b1:2e:45:b9:6e:99:be:5b:ad:74:37:71:89:36:80:79:4a:7d: 68:13:35:0d:3d:ae:fc:77:b8:5b:84:c8:70:0f:44:d8:8c:4e: 89:a9:e6:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjYwMzI0MTY0NDE4WhcNMjYwMzMxMTY0NDE4WjAYMRYwFAYD VQQDEw02OWMyYmY2Mi1lYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA166xAEPMgds4IuPeL1pK1ECIEp44fTtIq740sEGOQ2RLlayAcSbOrsKNP45e Vv8gGKQYv4kBiCEB7V7IboAzBgEtVQnNRNqUIIlEeTukOqW8bkSO/nrheBfj4Ipk tiCaz7olLN24NRF1SJgExrVud4PMyrW1Z6V0lFJm0sJ5Vn6Ol7XFZ8vjI+9W3kht /vIHTYJWr8/kIOMRjXCNTUoUyVk2Z4tg2pHmYcOt0kloSXONCUqmzAoOOd32o4CE E7tcgOj84ojeMqW9VhdC/hWEo0SJ4ay9xbr4Y6sromVUNJLM32nxWpPadH0uXRAo W2OMtFaGeEL1VtPvmMtWTnoq7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDOo06Xs KrZU7AThKRr9/I9VN33MMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw4HXMoJ2xeZWDLLZYlBgCTBak0FbZTL2cTcozluklGIOYO0zxivAc1s6Ck9Y dtqxW8UvZOCkKAyrj2HH30pngbUc6vjIkgL8b0pPxrGNHROq4jfaOnzyfTMFBd4a E5kx5WKXPZd6y1Bo2nsuPCR2ehPa2BwYMaViQOgktrW9b/yKCLZXvqhPuBv1cVIN YIMpCBaVXRKnU+KtLqyihQpsF/YxhYHcltwOm6tLIj20hRls1VQybf9Ig4ojZPXp IQh2e699ZX4laKeXuIV67u6YG/XfleiZq+m3sS5FuW6ZvlutdDdxiTaAeUp9aBM1 DT2u/He4W4TIcA9E2IxOianmwg== -----END CERTIFICATE-----Generated at Wed Mar 25 10:48:58 2026 by rpki-client