$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: AwUBp41C5zJ+TPes5MuhntA275ebAv2qFvrQ3aa4n2M= Subject key identifier: 25:58:0B:8E:74:CA:00:FB:B8:91:FF:FF:53:1A:2B:14:E9:9C:77:CC Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0F12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0F07 Signing time: Mon 02 Mar 2026 02:45:00 +0000 Manifest this update: Mon 02 Mar 2026 02:44:59 +0000 Manifest next update: Mon 09 Mar 2026 02:44:59 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: IQDEyS9oTQOlHHrdkfkF2mVaXOYMFXs6vr8Pv/i2pOY=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: epuRJDNpLBRjInLcr8wNqAbigHvQWwNVcLarPZoddFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3858 (0xf12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Mar 2 02:44:59 2026 GMT Not After : Mar 9 02:44:59 2026 GMT Subject: CN=69a4f9ab-0e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b2:ca:17:a2:dc:c8:63:1b:6c:8d:a3:86:e7: 9f:64:f5:ca:88:95:f1:5f:7f:20:41:60:2f:25:4a: 33:93:e9:91:78:66:9a:c3:29:fe:19:d0:eb:df:e6: 2d:9b:7b:b8:d3:8f:c3:a1:40:d0:a7:5d:e0:37:0e: 17:f3:f8:d8:e7:d9:6c:2e:40:d0:6c:27:54:ed:34: 82:7e:bf:fc:05:10:7f:ba:ff:32:ea:f1:c6:a7:e7: dd:61:b8:bd:9d:12:89:78:56:98:85:84:bc:0d:0e: 8d:25:4f:00:ad:0f:a6:dd:ad:43:b6:05:c5:85:8b: 78:3a:51:bb:50:ca:88:57:03:aa:0c:82:65:b9:32: a6:b8:02:48:1f:51:3a:6a:2b:05:ba:db:40:5e:57: ef:91:bf:89:f6:91:e5:18:e4:61:d7:a3:3d:69:d2: 8b:a4:79:cc:02:2c:b2:5d:b9:0e:ce:2f:b2:e8:41: db:c2:84:c4:ab:3e:b9:4a:8b:05:7c:e4:64:5b:bb: b2:76:0e:c7:57:3d:e0:30:2b:22:a7:fc:08:93:b4: 06:a3:84:9a:3c:6c:31:75:48:06:bf:f7:4a:10:c4: ba:f8:09:a8:be:08:82:7c:e8:e7:96:2d:6c:7a:5b: f3:25:77:64:db:55:39:b1:95:0f:dd:9e:1e:e4:f9: d2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:58:0B:8E:74:CA:00:FB:B8:91:FF:FF:53:1A:2B:14:E9:9C:77:CC X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:2d:52:6c:09:a3:2a:25:d8:bd:ca:b9:b8:67:24:4a:e5:e3: 2f:fe:42:02:6d:3c:65:f5:82:69:ec:3c:e5:77:b2:61:49:53: 3e:be:cf:51:64:f2:93:3b:76:7d:21:74:77:4b:20:b0:85:24: ac:21:ff:2b:66:5a:40:19:12:db:b6:c8:41:10:97:24:3c:16: b0:2d:42:68:e4:e1:f5:9d:4f:74:e5:30:0b:50:a4:8b:ef:5f: 6b:23:69:1e:9b:6d:95:ad:f8:b9:c3:be:1d:e7:66:bd:37:0f: 73:df:14:55:24:db:42:3a:eb:d2:67:b8:fb:47:cc:5d:d6:13: 22:f9:53:d1:74:e8:cd:0b:32:89:c5:77:f4:20:d0:d5:8e:4d: 67:24:b6:e4:42:90:c8:d7:bf:9d:3b:1c:b1:bb:31:10:42:2e: be:62:4f:10:0c:d8:ef:c1:4d:d7:2a:9d:cf:88:50:16:ec:93: d5:63:c8:53:b1:78:5e:0a:8c:6b:b2:6b:5e:2b:ad:9d:89:59: 50:cc:fb:04:a4:c8:e8:21:a4:e1:74:98:3d:13:f2:ce:d9:12: b0:e6:58:5d:38:cb:84:55:ae:33:c7:1c:cd:2c:a5:ff:2f:fd: fb:c0:d1:53:a0:ed:e3:35:c1:4c:26:c8:cc:17:aa:50:9a:6d: 7d:31:cf:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwMzAyMDI0NDU5WhcNMjYwMzA5MDI0NDU5WjAYMRYwFAYD VQQDEw02OWE0ZjlhYi0wZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjbLKF6LcyGMbbI2jhuefZPXKiJXxX38gQWAvJUozk+mReGaawyn+GdDr3+Yt m3u404/DoUDQp13gNw4X8/jY59lsLkDQbCdU7TSCfr/8BRB/uv8y6vHGp+fdYbi9 nRKJeFaYhYS8DQ6NJU8ArQ+m3a1DtgXFhYt4OlG7UMqIVwOqDIJluTKmuAJIH1E6 aisFuttAXlfvkb+J9pHlGORh16M9adKLpHnMAiyyXbkOzi+y6EHbwoTEqz65SosF fORkW7uydg7HVz3gMCsip/wIk7QGo4SaPGwxdUgGv/dKEMS6+AmovgiCfOjnli1s elvzJXdk21U5sZUP3Z4e5PnS0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVYC450 ygD7uJH//1MaKxTpnHfMMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALS1SbAmjKiXYvcq5uGckSuXjL/5CAm08ZfWCaew85XeyYUlTPr7PUWTykzt2 fSF0d0sgsIUkrCH/K2ZaQBkS27bIQRCXJDwWsC1CaOTh9Z1PdOUwC1Cki+9fayNp Hpttla34ucO+HedmvTcPc98UVSTbQjrr0me4+0fMXdYTIvlT0XTozQsyicV39CDQ 1Y5NZyS25EKQyNe/nTscsbsxEEIuvmJPEAzY78FN1yqdz4hQFuyT1WPIU7F4XgqM a7JrXiutnYlZUMz7BKTI6CGk4XSYPRPyztkSsOZYXTjLhFWuM8cczSyl/y/9+8DR U6Dt4zXBTCbIzBeqUJptfTHPBw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:17:02 2026 by rpki-client