$ rpki-client -vvf rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft File: pGM3j5KTiRbgseQTrw8MinPCH08.mft (raw, json) Hash identifier: EbILaUVmUB6VfL43dj5cGlFMAf726y8yTvzjpREtFrI= Subject key identifier: 07:5C:F5:62:6A:71:80:06:02:FF:3B:1D:70:D3:0B:42:B6:7E:F6:8F Authority key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F Certificate issuer: /CN=A917C3A7/serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft Manifest number: 04E5 Signing time: Sun 01 Mar 2026 00:24:09 +0000 Manifest this update: Sun 01 Mar 2026 00:24:08 +0000 Manifest next update: Sun 08 Mar 2026 00:24:08 +0000 Files and hashes: 1: pGM3j5KTiRbgseQTrw8MinPCH08.crl (hash: JvFugHqmAZ8+cNyC/xYbad3CyhbCZtxwbXDIBkFyi9I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C3A7, serialNumber=A463378F92938916E0B1E413AF0F0C8A73C21F4F Validity Not Before: Mar 1 00:24:08 2026 GMT Not After : Mar 8 00:24:08 2026 GMT Subject: CN=69a38729-f738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3f:5d:79:fc:36:a7:ad:63:94:5f:7a:cd:87: 83:56:b7:ff:26:b1:e2:ad:b6:b8:6d:ff:30:35:50: 18:0b:bf:02:e8:e8:e4:ad:97:92:f6:d9:1f:1f:6f: d8:8a:d0:ea:d9:a3:47:0e:e6:b0:cc:07:94:fc:c0: a6:7b:b3:bd:77:2a:e6:e3:88:66:a4:d0:e3:01:b0: bb:9b:55:bd:4d:22:81:b6:d7:23:b1:e6:45:b5:5a: f2:dc:5d:26:23:2c:0e:42:aa:57:84:c3:e1:dc:f3: 3c:6c:e9:8b:92:c3:23:a2:27:c2:a8:65:2e:12:95: d4:ca:c8:d4:a4:df:9e:57:4e:30:7d:63:55:b9:52: d2:77:d6:66:5e:12:f3:33:f6:9b:26:f3:82:c7:17: 08:c9:a5:5c:6d:7b:c0:be:d3:be:09:b4:2f:e0:05: 8d:ae:25:a2:9b:c7:d2:d5:7f:8e:93:42:45:37:00: 6e:a5:e4:f0:d3:11:21:31:c3:5d:3a:72:b2:7b:85: ea:43:ad:5d:50:cf:23:46:4c:ca:bf:c6:8a:6c:3c: 76:8a:50:da:6d:61:2d:99:85:d2:00:5d:b3:bc:4c: 97:0b:8a:ca:9e:6b:90:86:58:0e:f6:2d:fc:46:c9: 4e:fd:2f:f6:2f:6f:3a:f2:59:95:17:fd:de:f3:ed: 17:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5C:F5:62:6A:71:80:06:02:FF:3B:1D:70:D3:0B:42:B6:7E:F6:8F X509v3 Authority Key Identifier: keyid:A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:ee:c6:b3:47:0a:64:01:8a:a7:41:17:49:5f:e4:42:65:ac: 08:5b:a7:3c:1d:20:92:a9:5b:8d:cc:af:04:27:31:50:6c:60: 50:d3:04:24:ce:c9:77:00:6d:b0:82:20:f7:05:3c:20:ff:d2: f3:81:6e:9c:2f:92:8f:71:83:64:e6:7f:13:31:56:58:7b:76: 7e:73:15:76:47:f5:93:29:95:2f:b2:48:9e:c0:51:75:36:4d: 8b:53:f0:76:a5:fa:cd:b8:be:fa:93:73:87:da:b3:b0:c9:bf: 6e:c9:8d:2a:10:d0:c0:e5:54:a7:c7:41:0e:74:d7:62:02:e9: 88:da:63:8f:ac:1d:d9:3b:58:20:da:75:95:e3:e1:78:ad:d4: 79:8f:ab:90:aa:e0:d4:53:df:55:fc:bc:fe:54:b4:66:9b:50: a5:32:51:a3:6a:53:1f:09:3e:d5:4a:ee:dd:aa:2b:29:96:cc: 15:04:b1:cd:48:e0:fc:eb:93:59:0c:ab:65:03:d0:33:39:23: b5:64:33:99:15:aa:71:72:76:21:d5:ee:af:19:06:fc:d1:cf: ca:00:0b:c1:a9:ed:0e:99:a4:3a:1d:73:cf:1d:43:08:ca:f5: c7:dc:12:59:41:bb:2c:91:c8:35:81:4a:bd:17:2e:05:65:e2: 82:a1:6d:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzQTcxMTAvBgNVBAUTKEE0NjMzNzhGOTI5Mzg5MTZFMEIxRTQxM0FGMEYwQzhB NzNDMjFGNEYwHhcNMjYwMzAxMDAyNDA4WhcNMjYwMzA4MDAyNDA4WjAYMRYwFAYD VQQDEw02OWEzODcyOS1mNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnT9defw2p61jlF96zYeDVrf/JrHirba4bf8wNVAYC78C6OjkrZeS9tkfH2/Y itDq2aNHDuawzAeU/MCme7O9dyrm44hmpNDjAbC7m1W9TSKBttcjseZFtVry3F0m IywOQqpXhMPh3PM8bOmLksMjoifCqGUuEpXUysjUpN+eV04wfWNVuVLSd9ZmXhLz M/abJvOCxxcIyaVcbXvAvtO+CbQv4AWNriWim8fS1X+Ok0JFNwBupeTw0xEhMcNd OnKye4XqQ61dUM8jRkzKv8aKbDx2ilDabWEtmYXSAF2zvEyXC4rKnmuQhlgO9i38 RslO/S/2L2868lmVF/3e8+0X7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAdc9WJq cYAGAv87HXDTC0K2fvaPMB8GA1UdIwQYMBaAFKRjN4+Sk4kW4LHkE68PDIpzwh9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzNBNy9FNDFGRjBBNjUz MjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlSYmdzZVFUcnc4TWluUENI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHTTNqNUtUaVJiZ3NlUVRydzhNaW5QQ0gwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzNBNy9FNDFGRjBBNjUzMjgxMUVDODM1MkQyNDVDNEY5QUUwMi9wR00zajVLVGlS YmdzZVFUcnc4TWluUENIMDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJe7Gs0cKZAGKp0EXSV/kQmWsCFunPB0gkqlbjcyvBCcxUGxgUNMEJM7JdwBt sIIg9wU8IP/S84FunC+Sj3GDZOZ/EzFWWHt2fnMVdkf1kymVL7JInsBRdTZNi1Pw dqX6zbi++pNzh9qzsMm/bsmNKhDQwOVUp8dBDnTXYgLpiNpjj6wd2TtYINp1lePh eK3UeY+rkKrg1FPfVfy8/lS0ZptQpTJRo2pTHwk+1Uru3aorKZbMFQSxzUjg/OuT WQyrZQPQMzkjtWQzmRWqcXJ2IdXurxkG/NHPygALwantDpmkOh1zzx1DCMr1x9wS WUG7LJHINYFKvRcuBWXigqFtGg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:44:35 2026 by rpki-client