$ rpki-client -vvf rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft File: 1pesTITI0RmFX1oM3aY13R44Xuc.mft (raw, json) Hash identifier: Donf5e1k6xmHALdu0X5p1nLIzKlGROR6JKFnpg45jwI= Subject key identifier: 64:F4:C6:41:A3:D7:37:08:C5:96:E3:83:AF:D3:02:87:3B:A0:4E:5C Authority key identifier: D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 Certificate issuer: /CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Certificate serial: 3535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft Manifest number: 3524 Signing time: Mon 02 Mar 2026 15:04:40 +0000 Manifest this update: Mon 02 Mar 2026 15:04:40 +0000 Manifest next update: Mon 09 Mar 2026 15:04:40 +0000 Files and hashes: 1: 1pesTITI0RmFX1oM3aY13R44Xuc.crl (hash: 5R93Rla52AcVuo74zyny+1P1X774n7WoFzoIaKX6sHE=) 2: 7859AE6A0B5511EABCBC343DC4F9AE02.roa (hash: OY0gqFhSrcsr3Ue2BAA7UCekieh8CcnhGOTNZC+wAEw=) 3: EADCDA1C8D9611EEBE392A3CC4F9AE02.roa (hash: +eQCtZaTH6GkPFoFVSiRb3PRvqAtjbgtEZLgyROZQic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:04:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13621 (0x3535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A9FC, serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Validity Not Before: Mar 2 15:04:40 2026 GMT Not After : Mar 9 15:04:40 2026 GMT Subject: CN=69a5a708-a970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:aa:cf:72:5a:0b:9b:67:62:ee:e1:08:0c: 22:2c:08:f7:56:39:0e:8c:6c:35:45:0c:ac:3e:16: 8a:db:04:f4:9c:e4:5e:13:88:38:78:ce:86:0d:de: 63:cb:e3:ce:59:4c:2c:2d:8a:10:c9:98:75:e8:62: 4b:61:0a:44:99:14:11:e2:72:54:c6:9b:52:4d:39: 84:8c:49:63:97:2d:4b:c4:e4:44:10:d4:0e:cc:a0: f8:5d:c1:e7:42:76:d1:40:e0:ad:bf:07:74:42:e0: 20:e9:39:20:da:41:df:b5:e4:5d:a3:12:44:82:49: 4d:ad:dc:15:63:3e:b1:cd:91:86:ab:15:a4:d4:4c: ae:16:9b:f4:f8:d6:2b:5f:de:f2:02:f6:2d:1b:1a: 3b:67:0b:57:b8:9e:d7:3d:6d:81:dd:7e:47:e2:60: bd:86:ac:f4:d0:fa:bf:31:81:6e:19:7c:5e:9a:bb: ab:ed:8e:9b:8f:08:95:c7:cb:ea:10:83:f6:78:eb: b6:a0:43:bf:65:da:56:f3:cc:71:bb:e3:a3:52:a8: 84:19:aa:1f:91:25:7d:dd:25:00:c5:f1:f8:a9:4a: 02:d3:89:f3:41:d2:b0:ef:e0:43:48:87:ba:30:30: af:3e:98:b9:da:57:3d:38:ea:c6:7f:26:db:f8:f9: 1f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F4:C6:41:A3:D7:37:08:C5:96:E3:83:AF:D3:02:87:3B:A0:4E:5C X509v3 Authority Key Identifier: keyid:D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:dd:ad:e4:0e:ca:01:9c:c7:23:2a:4b:8b:4a:eb:a0:d4:5b: 5b:0e:56:ba:79:64:a8:ef:d0:0f:01:dd:aa:b8:04:9b:3d:21: 6a:aa:1a:97:c5:fd:39:73:61:9e:0c:8b:62:65:bc:d0:be:61: bd:a8:e0:53:d9:be:65:b5:76:a9:5e:a9:d6:af:52:7b:4a:e7: ca:4d:36:17:49:3a:cb:cd:e7:31:16:13:a8:f0:26:15:55:02: c2:f6:b7:42:77:18:5b:40:50:1d:44:d6:7c:f6:61:f5:a6:e2: d9:9e:63:7d:21:26:ee:25:d4:6b:87:bc:f1:dc:20:20:c8:b3: b2:78:a5:cf:b9:6a:bb:06:85:d6:57:e8:40:08:2e:e5:06:16: 32:bc:3b:1e:78:d8:61:c9:4a:23:dc:af:8b:7b:37:f2:ab:09: 4a:21:1d:60:d5:bc:b9:c4:e2:e0:bf:51:f4:96:f9:e6:62:46: 47:8e:d0:b1:1b:ad:3d:28:a7:7d:e8:19:40:a1:dd:26:9b:cd: 04:81:48:4b:17:6d:8f:bc:e1:cc:4e:31:e3:2e:52:b3:6b:d1: d4:d5:09:1c:e2:d7:fc:7c:bf:eb:47:2a:71:63:f1:31:ff:72: 66:12:30:51:fd:a4:2a:b7:d1:fd:7e:31:4d:07:6b:1c:e4:aa: b2:49:1d:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5RkMxMTAvBgNVBAUTKEQ2OTdBQzRDODRDOEQxMTk4NTVGNUEwQ0REQTYzNURE MUUzODVFRTcwHhcNMjYwMzAyMTUwNDQwWhcNMjYwMzA5MTUwNDQwWjAYMRYwFAYD VQQDEw02OWE1YTcwOC1hOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5iqz3JaC5tnYu7hCAwiLAj3VjkOjGw1RQysPhaK2wT0nOReE4g4eM6GDd5j y+POWUwsLYoQyZh16GJLYQpEmRQR4nJUxptSTTmEjEljly1LxOREENQOzKD4XcHn QnbRQOCtvwd0QuAg6Tkg2kHfteRdoxJEgklNrdwVYz6xzZGGqxWk1EyuFpv0+NYr X97yAvYtGxo7ZwtXuJ7XPW2B3X5H4mC9hqz00Pq/MYFuGXxemrur7Y6bjwiVx8vq EIP2eOu2oEO/ZdpW88xxu+OjUqiEGaofkSV93SUAxfH4qUoC04nzQdKw7+BDSIe6 MDCvPpi52lc9OOrGfybb+PkfmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGT0xkGj 1zcIxZbjg6/TAoc7oE5cMB8GA1UdIwQYMBaAFNaXrEyEyNEZhV9aDN2mNd0eOF7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTlGQy8zMTkzMzdBQTFE OUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBSbUZYMW9NM2FZMTNSNDRY dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwZXNUSVRJMFJtRlgxb00zYVkxM1I0NFh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTlGQy8zMTkzMzdBQTFEOUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBS bUZYMW9NM2FZMTNSNDRYdWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh92t5A7KAZzHIypLi0rroNRbWw5WunlkqO/QDwHdqrgEmz0haqoal8X9OXNh ngyLYmW80L5hvajgU9m+ZbV2qV6p1q9Se0rnyk02F0k6y83nMRYTqPAmFVUCwva3 QncYW0BQHUTWfPZh9abi2Z5jfSEm7iXUa4e88dwgIMizsnilz7lquwaF1lfoQAgu 5QYWMrw7HnjYYclKI9yvi3s38qsJSiEdYNW8ucTi4L9R9Jb55mJGR47QsRutPSin fegZQKHdJpvNBIFISxdtj7zhzE4x4y5Ss2vR1NUJHOLX/Hy/60cqcWPxMf9yZhIw Uf2kKrfR/X4xTQdrHOSqskkdfw== -----END CERTIFICATE-----Generated at Mon Mar 2 22:20:47 2026 by rpki-client