$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft File: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json) Hash identifier: bpKemNJQtNFpRf4LUSLThrkpQvvz+ah8D2S7H36MeF0= Subject key identifier: 76:D2:D7:AC:8E:2C:69:60:FD:38:F0:B1:AE:DC:51:3E:D3:51:73:8C Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 Certificate issuer: /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft Manifest number: 34 Signing time: Tue 03 Mar 2026 08:18:07 +0000 Manifest this update: Tue 03 Mar 2026 08:18:06 +0000 Manifest next update: Tue 10 Mar 2026 08:18:06 +0000 Files and hashes: 1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: QWJUaPRSQArlB9mhjzG2NjGKzN55fSSUTK0jLS0U97g=) 2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: ERXxcYaD/BipGW6AIZDMmzRHcboCoePXi+aLABZ/mKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Validity Not Before: Mar 3 08:18:06 2026 GMT Not After : Mar 10 08:18:06 2026 GMT Subject: CN=69a6993f-967e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a2:e7:52:ec:75:16:50:21:49:09:48:5c:00: 00:13:23:e7:47:cc:a4:13:a4:f2:e5:54:1c:5d:9f: 69:35:f3:56:b3:01:10:2b:1f:79:a2:98:6d:fd:f1: a6:d6:4d:48:5d:59:3f:d1:9e:1e:60:67:c0:ba:32: ec:fc:49:be:39:2f:3a:b5:e9:2c:eb:9a:ec:a8:d7: 4d:15:82:81:c2:ec:35:90:71:7c:e2:0c:30:5a:df: 4f:72:bd:35:78:d0:0d:ed:17:fc:b8:55:55:7f:88: 2b:a6:3b:d8:ca:6f:c8:28:fa:8a:b2:bf:27:ae:a4: 4d:94:7e:b3:46:ad:b9:ea:7f:0d:ae:3a:05:d9:21: e0:c6:8c:71:ab:08:cf:fd:8e:d5:ff:bf:61:53:25: ce:65:1a:7f:81:14:cc:a8:6f:65:7b:4e:c1:c3:57: 32:83:4f:69:c6:80:fe:5e:38:c7:f1:97:d4:1c:da: 62:9b:63:43:a4:cf:f3:2c:7d:72:46:8a:2c:e5:14: c9:fd:58:3e:ba:41:24:25:08:ea:4c:1d:be:da:d9: 35:3e:98:7f:ec:42:b1:aa:af:f5:d1:d8:11:26:f7: 7d:72:9f:35:18:c6:4f:86:66:eb:9d:1b:e8:b1:df: a4:f2:6e:a3:09:2d:29:a0:cc:fc:9c:3e:f8:cf:13: 07:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D2:D7:AC:8E:2C:69:60:FD:38:F0:B1:AE:DC:51:3E:D3:51:73:8C X509v3 Authority Key Identifier: keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:3c:10:82:fd:f7:bd:79:a6:6c:3c:bf:9e:79:86:51:d6:6f: 9a:84:6c:42:64:85:66:ab:28:35:11:c1:36:83:8f:ba:7f:1d: 12:a3:37:9f:24:d1:d0:66:56:4a:50:bb:5f:ec:62:4a:ce:89: 38:61:88:62:03:0c:dd:ee:7b:e2:77:31:d2:03:4c:51:6c:fc: 08:ef:75:d5:73:49:ba:2f:d9:1d:e2:7f:b5:48:9a:a0:ab:7e: 0e:e0:b1:e5:b9:3f:16:3b:d7:41:87:64:2a:47:a7:78:de:82: c2:9e:3d:fb:57:e9:b9:27:8c:13:b1:d9:79:a9:f4:60:e0:06: 80:53:34:9a:dc:9d:f7:6d:d1:71:cd:10:64:8b:01:3e:c3:95: 6c:6c:f2:5b:50:60:e1:7a:df:68:b3:d7:d3:19:5a:4e:36:c1: 74:bb:61:f5:cc:78:c4:c2:f3:25:0b:2d:15:1a:3b:e2:a1:a7: b7:e7:38:21:d5:1d:a4:20:4b:20:7f:a1:14:81:e2:1c:c3:60: 44:21:e0:8e:53:02:bf:2d:42:31:e3:7c:cb:8d:23:d2:eb:c2: 70:6b:e9:0e:1f:a5:99:14:bb:94:57:f4:12:fb:2f:5e:da:51: 18:07:e6:f5:d7:db:3b:83:9d:b4:d4:95:88:37:7b:ba:13:53: 39:cb:1f:3a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0 NDFDQzk5NzAeFw0yNjAzMDMwODE4MDZaFw0yNjAzMTAwODE4MDZaMBgxFjAUBgNV BAMTDTY5YTY5OTNmLTk2N2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCooudS7HUWUCFJCUhcAAATI+dHzKQTpPLlVBxdn2k181azARArH3mimG398abW TUhdWT/Rnh5gZ8C6Muz8Sb45Lzq16Szrmuyo100VgoHC7DWQcXziDDBa309yvTV4 0A3tF/y4VVV/iCumO9jKb8go+oqyvyeupE2UfrNGrbnqfw2uOgXZIeDGjHGrCM/9 jtX/v2FTJc5lGn+BFMyob2V7TsHDVzKDT2nGgP5eOMfxl9Qc2mKbY0Okz/MsfXJG iizlFMn9WD66QSQlCOpMHb7a2TU+mH/sQrGqr/XR2BEm931ynzUYxk+GZuudG+ix 36TybqMJLSmgzPycPvjPEwdDAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUdtLXrI4s aWD9OPCxrtxRPtNRc4wwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5 MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn MGUzc1V3RXJaNmtRY3laYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBdPBCC/fe9eaZsPL+eeYZR1m+ahGxCZIVmqyg1EcE2g4+6fx0SozefJNHQZlZK ULtf7GJKzok4YYhiAwzd7nvidzHSA0xRbPwI73XVc0m6L9kd4n+1SJqgq34O4LHl uT8WO9dBh2QqR6d43oLCnj37V+m5J4wTsdl5qfRg4AaAUzSa3J33bdFxzRBkiwE+ w5VsbPJbUGDhet9os9fTGVpONsF0u2H1zHjEwvMlCy0VGjvioae35zgh1R2kIEsg f6EUgeIcw2BEIeCOUwK/LUIx43zLjSPS68Jwa+kOH6WZFLuUV/QS+y9e2lEYB+b1 19s7g5201JWIN3u6E1M5yx86 -----END CERTIFICATE-----Generated at Wed Mar 4 08:23:53 2026 by rpki-client