$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: ljY9CL0dSdc8sZOqv1OcIeaZSb1iPkRTIZTNqwDcGQY= Subject key identifier: 68:18:26:B6:64:57:68:71:F7:9A:64:28:EF:69:78:90:E0:77:C7:2E Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1B73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1B70 Signing time: Mon 02 Mar 2026 02:48:05 +0000 Manifest this update: Mon 02 Mar 2026 02:48:03 +0000 Manifest next update: Mon 09 Mar 2026 02:48:03 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: MrK5ckkJtHvsFolI1AZcJ3EYmjlFMvsg/uE2J8yvy64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7027 (0x1b73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Mar 2 02:48:03 2026 GMT Not After : Mar 9 02:48:03 2026 GMT Subject: CN=69a4fa64-887f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:c9:a6:19:63:67:7c:0c:fa:05:cb:b4:21: 75:73:b0:8a:49:37:cb:97:71:6e:49:ae:73:08:15: ae:9c:8c:16:60:e5:96:ec:7b:fe:2c:60:87:55:ee: 8a:5e:c9:36:54:a4:07:8b:d4:34:bb:98:80:5b:cd: 9d:1c:00:1c:fd:05:47:3d:32:a4:4c:70:0e:28:43: 1b:dc:99:6b:bd:28:1f:8a:cb:15:a2:65:8b:0d:5e: 8c:fd:c7:bc:da:9e:7a:d1:f0:3c:16:1f:74:3d:f0: 58:83:f5:60:3b:3c:46:fe:bb:73:d8:f3:0d:a3:fd: 8c:12:a2:8f:28:3b:83:b9:e0:78:27:f3:19:91:5f: 6b:6b:f0:6b:6e:00:24:da:c4:21:1d:75:1f:f4:ec: 77:f8:e7:c3:1a:4d:a2:5f:b1:1b:61:8e:91:2e:e8: e0:b5:9d:9e:34:f7:b4:48:08:ce:cb:00:ea:05:12: c4:3f:cb:d1:36:49:0a:f1:d8:91:95:79:e9:39:df: 01:f7:8e:a8:11:91:78:f7:27:0c:f2:0c:70:18:a6: 0b:b4:2b:61:28:72:5b:ce:ce:df:88:3c:6a:55:66: 48:0f:82:11:3c:42:34:0f:d5:14:34:d9:ca:a7:f7: 5a:ce:cf:a5:eb:d4:5d:ba:75:b3:cb:84:7b:3b:19: 1e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:18:26:B6:64:57:68:71:F7:9A:64:28:EF:69:78:90:E0:77:C7:2E X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:be:5c:0f:88:fc:89:95:07:fe:95:72:8c:4a:db:da:d0:e9: 14:29:ce:86:2b:e7:f5:d9:09:33:21:3e:a0:1b:01:c6:2d:1b: c1:5c:31:bc:3c:fb:20:57:8c:b0:ee:aa:29:bc:00:e9:3f:8b: 37:e7:92:81:a0:71:20:f7:a2:7e:9a:10:89:ab:ff:dd:9f:67: bc:ee:c6:6e:44:ef:cf:a0:53:79:46:60:57:74:47:0c:9e:bd: 90:11:a9:b2:32:0b:c0:3f:06:b6:30:9b:8b:77:f2:35:dd:f7: 3a:6d:6d:27:01:e4:24:ca:39:0a:03:88:8c:f9:b4:27:8c:c0: e4:f0:59:51:d2:d8:f5:ed:bf:02:ac:de:b7:53:4e:c4:8b:39: db:97:98:7f:6a:6d:61:51:c4:70:bf:25:c3:08:2c:be:f0:b7: f1:ef:ed:fb:7c:b2:41:c5:b9:70:6f:31:aa:70:8a:7a:28:45: 3b:ff:68:0f:56:48:ab:00:77:85:d9:78:84:e1:95:eb:cc:0e: df:b3:42:98:04:24:31:14:9a:9d:e8:40:6a:73:a5:23:58:43: 91:c3:cc:d9:19:cf:33:23:bb:d3:a4:98:fc:b7:7e:72:a3:e6: 4e:ed:3e:38:07:64:9b:59:35:81:ff:66:93:e9:9b:68:72:cd: 81:ab:a8:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjYwMzAyMDI0ODAzWhcNMjYwMzA5MDI0ODAzWjAYMRYwFAYD VQQDEw02OWE0ZmE2NC04ODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JPJphljZ3wM+gXLtCF1c7CKSTfLl3FuSa5zCBWunIwWYOWW7Hv+LGCHVe6K Xsk2VKQHi9Q0u5iAW82dHAAc/QVHPTKkTHAOKEMb3JlrvSgfissVomWLDV6M/ce8 2p560fA8Fh90PfBYg/VgOzxG/rtz2PMNo/2MEqKPKDuDueB4J/MZkV9ra/BrbgAk 2sQhHXUf9Ox3+OfDGk2iX7EbYY6RLujgtZ2eNPe0SAjOywDqBRLEP8vRNkkK8diR lXnpOd8B946oEZF49ycM8gxwGKYLtCthKHJbzs7fiDxqVWZID4IRPEI0D9UUNNnK p/dazs+l69RdunWzy4R7OxketwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGgYJrZk V2hx95pkKO9peJDgd8cuMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcr5cD4j8iZUH/pVyjErb2tDpFCnOhivn9dkJMyE+oBsBxi0bwVwxvDz7IFeM sO6qKbwA6T+LN+eSgaBxIPeifpoQiav/3Z9nvO7GbkTvz6BTeUZgV3RHDJ69kBGp sjILwD8GtjCbi3fyNd33Om1tJwHkJMo5CgOIjPm0J4zA5PBZUdLY9e2/Aqzet1NO xIs525eYf2ptYVHEcL8lwwgsvvC38e/t+3yyQcW5cG8xqnCKeihFO/9oD1ZIqwB3 hdl4hOGV68wO37NCmAQkMRSanehAanOlI1hDkcPM2RnPMyO706SY/Ld+cqPmTu0+ OAdkm1k1gf9mk+mbaHLNgauomg== -----END CERTIFICATE-----Generated at Mon Mar 2 18:30:19 2026 by rpki-client