$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: 8fdGS5q5NBCao/jJHL2KtBPtWUZbamCg+z2jYr0SP5Q= Subject key identifier: E5:A7:B6:C4:D8:3D:73:F4:6C:BB:BA:9F:16:6B:C1:1C:23:66:E5:0A Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 020B Signing time: Mon 02 Mar 2026 01:57:19 +0000 Manifest this update: Mon 02 Mar 2026 01:57:18 +0000 Manifest next update: Mon 09 Mar 2026 01:57:18 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: t+1vppCjaaPMr/cdSJQ4hQTd78eZWDYE/V51f915R0I=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: UxgWHSWCQslOtEVN8vxHfkeQxG5zKwXTOsnpS8saGYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Mar 2 01:57:18 2026 GMT Not After : Mar 9 01:57:18 2026 GMT Subject: CN=69a4ee7f-7ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:39:d6:60:67:17:38:22:af:24:74:f6:b8:b2: d4:1a:4d:b1:bf:77:38:04:5a:f4:ca:d4:43:d0:ca: 1e:8e:6c:da:e9:88:ae:62:e0:38:ff:52:10:23:fe: 49:19:c4:e6:ce:0b:b4:b4:b3:64:d3:97:8a:f9:60: c9:06:f3:53:55:36:7b:90:00:43:9b:8e:40:66:fa: a7:02:ad:b3:c4:91:51:5f:ff:a9:b1:d7:98:8b:17: 58:ed:41:a6:c9:8c:a5:9e:5c:b8:3b:42:c7:54:71: 16:91:59:35:3e:aa:b0:f3:b8:05:da:89:fa:6a:6f: ce:a7:7e:5e:8c:5d:6e:f2:23:66:e1:b7:8d:71:aa: 7e:45:7b:51:3d:0d:20:49:a3:4e:a1:2a:dd:17:fa: 60:27:17:28:10:77:37:90:1a:3f:c8:62:b1:8f:45: 4f:9f:86:e1:89:7e:34:a0:e5:c6:0d:37:a3:d2:f7: d7:4e:37:78:b7:9e:2c:04:bb:00:61:2c:5c:13:ac: 74:62:42:2a:d9:fa:18:5a:b6:0c:38:d5:14:fe:db: a7:cf:00:39:c9:06:b2:3a:7e:0e:6e:5c:f5:ef:a5: e9:1e:ea:7b:f1:60:d2:6d:82:69:9b:34:8d:79:c9: 3c:85:f1:ce:93:4b:a2:e4:48:11:a9:b0:39:7e:41: 20:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A7:B6:C4:D8:3D:73:F4:6C:BB:BA:9F:16:6B:C1:1C:23:66:E5:0A X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:14:4f:e3:8c:77:47:fd:2d:20:9b:06:73:ba:68:e6:54:fc: bf:92:3c:f3:54:d4:95:1c:5b:59:7e:16:b1:b9:b8:e9:d7:c6: 68:e1:61:1c:04:6e:7d:02:af:cf:a4:bd:6c:e9:d1:1d:e9:80: e9:c1:d9:a7:d0:5b:9c:6b:c6:42:0b:5f:9a:d5:48:46:64:59: 32:90:a7:2a:bd:11:34:b2:10:66:f9:f2:d8:51:be:ae:db:81: 91:51:60:da:66:e6:72:1b:79:b2:1f:7e:a1:38:7c:5f:21:b3: 9a:68:de:ee:f7:8c:7a:0a:7a:63:2b:9e:a2:d2:a2:89:5c:e0: 2a:75:bf:74:2d:72:8b:86:1e:2d:8d:ab:38:1a:51:37:b1:dc: ad:aa:ee:ea:44:21:34:65:86:02:0d:01:63:5b:a2:26:35:c0: e5:8d:ce:17:c6:be:8e:04:ec:76:71:e2:27:f7:8c:1d:82:12: ec:a0:43:ee:24:46:3d:88:94:b5:f0:60:43:6f:e5:90:9c:2d: 4e:da:47:12:2c:7a:60:ae:07:5b:53:9b:4c:61:70:93:72:db: a1:27:b4:ba:d6:56:b4:74:58:1c:a3:72:53:0e:e1:b5:dc:d0: db:e1:f2:65:12:0a:0b:60:8d:47:a8:24:45:b5:3d:30:89:0c: b3:a9:7f:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjYwMzAyMDE1NzE4WhcNMjYwMzA5MDE1NzE4WjAYMRYwFAYD VQQDEw02OWE0ZWU3Zi03YWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTnWYGcXOCKvJHT2uLLUGk2xv3c4BFr0ytRD0Moejmza6YiuYuA4/1IQI/5J GcTmzgu0tLNk05eK+WDJBvNTVTZ7kABDm45AZvqnAq2zxJFRX/+psdeYixdY7UGm yYylnly4O0LHVHEWkVk1Pqqw87gF2on6am/Op35ejF1u8iNm4beNcap+RXtRPQ0g SaNOoSrdF/pgJxcoEHc3kBo/yGKxj0VPn4bhiX40oOXGDTej0vfXTjd4t54sBLsA YSxcE6x0YkIq2foYWrYMONUU/tunzwA5yQayOn4Oblz176XpHup78WDSbYJpmzSN eck8hfHOk0ui5EgRqbA5fkEgKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOWntsTY PXP0bLu6nxZrwRwjZuUKMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUhRP44x3R/0tIJsGc7po5lT8v5I881TUlRxbWX4Wsbm46dfGaOFhHARufQKv z6S9bOnRHemA6cHZp9BbnGvGQgtfmtVIRmRZMpCnKr0RNLIQZvny2FG+rtuBkVFg 2mbmcht5sh9+oTh8XyGzmmje7veMegp6YyueotKiiVzgKnW/dC1yi4YeLY2rOBpR N7Hcraru6kQhNGWGAg0BY1uiJjXA5Y3OF8a+jgTsdnHiJ/eMHYIS7KBD7iRGPYiU tfBgQ2/lkJwtTtpHEix6YK4HW1ObTGFwk3LboSe0utZWtHRYHKNyUw7htdzQ2+Hy ZRIKC2CNR6gkRbU9MIkMs6l/YA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:12:12 2026 by rpki-client