$ rpki-client -vvf rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft File: 1pesTITI0RmFX1oM3aY13R44Xuc.mft (raw, json) Hash identifier: CNsOKl9VHORpJtq7HnLJq+CTrn6fomuy8XlWY1Tvm7g= Subject key identifier: 73:3C:82:75:82:91:92:2D:95:A1:41:56:F0:D2:F7:F6:65:BA:55:E9 Authority key identifier: D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 Certificate issuer: /CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Certificate serial: 3534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft Manifest number: 3523 Signing time: Mon 02 Mar 2026 01:03:20 +0000 Manifest this update: Mon 02 Mar 2026 01:03:20 +0000 Manifest next update: Mon 09 Mar 2026 01:03:20 +0000 Files and hashes: 1: 1pesTITI0RmFX1oM3aY13R44Xuc.crl (hash: vnyXi3YzXK338dDV31n8LEkuo41m1540uEOIW7ZXHzQ=) 2: EADCDA1C8D9611EEBE392A3CC4F9AE02.roa (hash: +eQCtZaTH6GkPFoFVSiRb3PRvqAtjbgtEZLgyROZQic=) 3: 7859AE6A0B5511EABCBC343DC4F9AE02.roa (hash: OY0gqFhSrcsr3Ue2BAA7UCekieh8CcnhGOTNZC+wAEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13620 (0x3534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A9FC, serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Validity Not Before: Mar 2 01:03:20 2026 GMT Not After : Mar 9 01:03:20 2026 GMT Subject: CN=69a4e1d8-7341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:70:25:29:9a:40:1c:04:6f:31:5c:9e:48: a7:ce:4f:59:7d:81:2d:bc:72:d3:95:6b:bd:3e:80: db:00:a6:25:5e:f6:7c:9d:25:08:90:09:cc:26:75: f9:15:f5:12:3c:41:4e:25:a9:02:00:e8:60:f2:1e: aa:fd:a7:61:79:86:93:b6:fc:e2:7d:99:32:e0:5e: 9d:e1:bb:e8:77:a5:cf:48:80:db:c4:67:65:8a:d5: ec:0e:02:a4:b4:85:bc:64:eb:de:dd:c8:a9:9c:09: e8:20:14:f0:c4:28:4a:95:2c:7f:8b:31:8f:b8:09: 1d:02:53:ee:84:c9:1c:e4:c6:b7:a9:80:90:aa:05: 42:bf:55:d3:9a:4e:5b:d5:cf:84:cb:b5:61:38:05: 8e:91:c4:f6:c6:06:f0:3a:ec:13:3a:4d:58:d8:26: b8:53:1e:f6:8c:a3:c4:24:db:9b:14:0e:6f:5c:bc: 5c:fc:fb:62:d8:d7:1c:32:7b:8f:8d:97:b3:47:d8: 59:ad:a0:82:26:d0:d5:9e:5e:c0:05:3d:e2:48:e9: 5e:a2:f7:9f:e7:15:5c:53:1f:d5:32:89:d6:5f:fb: 50:34:d8:d1:8f:b4:a9:b9:fb:74:32:ab:48:41:de: 38:c3:fd:41:8c:12:5e:f7:ee:34:f6:83:14:97:d5: e5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3C:82:75:82:91:92:2D:95:A1:41:56:F0:D2:F7:F6:65:BA:55:E9 X509v3 Authority Key Identifier: keyid:D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:14:ac:44:5c:7b:2e:79:35:58:c2:15:53:88:b2:50:2e:28: 55:8e:5a:20:d3:01:f6:a4:66:d9:0e:b5:e6:5e:0a:6f:de:b1: bd:d7:f9:61:f9:49:6e:e0:7b:ff:d6:a5:f4:04:8a:1b:e4:ef: 57:f2:d2:7d:73:35:3f:f3:59:f2:63:2d:00:0c:98:5d:da:94: 5c:0f:9b:47:bc:7f:94:b5:0d:e7:a3:9c:d5:18:9a:27:dd:e2: c4:3b:9a:aa:a9:9b:5c:e5:1b:52:82:bd:36:08:4b:59:08:35: 3b:05:76:0e:0c:bc:b2:f9:3b:0e:9f:4c:8d:aa:67:43:7a:25: d0:af:26:87:68:56:0f:d7:d4:3a:c8:9c:76:06:29:71:24:69: 9b:ed:d0:a3:9f:68:ea:2a:23:4f:73:bb:48:06:de:19:16:e2: c7:de:d2:f2:f0:ee:af:b9:1b:0f:47:48:54:8b:2a:fd:f4:e5: a1:b8:5c:e3:b8:ee:d1:91:6c:78:6a:d5:a3:59:cb:b1:0b:02: 28:09:db:8d:28:c9:d8:93:d9:ee:6b:0f:50:e0:71:9f:60:f9: e0:ba:03:62:e4:0a:39:78:8f:87:e2:c9:6a:d6:ca:92:18:6a: d5:c5:7c:de:14:f4:fc:ec:5b:5d:b8:a8:51:4c:fe:7e:43:7c: 38:af:8b:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5RkMxMTAvBgNVBAUTKEQ2OTdBQzRDODRDOEQxMTk4NTVGNUEwQ0REQTYzNURE MUUzODVFRTcwHhcNMjYwMzAyMDEwMzIwWhcNMjYwMzA5MDEwMzIwWjAYMRYwFAYD VQQDEw02OWE0ZTFkOC03MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjNwJSmaQBwEbzFcnkinzk9ZfYEtvHLTlWu9PoDbAKYlXvZ8nSUIkAnMJnX5 FfUSPEFOJakCAOhg8h6q/adheYaTtvzifZky4F6d4bvod6XPSIDbxGdlitXsDgKk tIW8ZOve3cipnAnoIBTwxChKlSx/izGPuAkdAlPuhMkc5Ma3qYCQqgVCv1XTmk5b 1c+Ey7VhOAWOkcT2xgbwOuwTOk1Y2Ca4Ux72jKPEJNubFA5vXLxc/Pti2NccMnuP jZezR9hZraCCJtDVnl7ABT3iSOleovef5xVcUx/VMonWX/tQNNjRj7Spuft0MqtI Qd44w/1BjBJe9+409oMUl9XlzwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHM8gnWC kZItlaFBVvDS9/ZlulXpMB8GA1UdIwQYMBaAFNaXrEyEyNEZhV9aDN2mNd0eOF7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTlGQy8zMTkzMzdBQTFE OUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBSbUZYMW9NM2FZMTNSNDRY dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwZXNUSVRJMFJtRlgxb00zYVkxM1I0NFh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTlGQy8zMTkzMzdBQTFEOUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBS bUZYMW9NM2FZMTNSNDRYdWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQRSsRFx7Lnk1WMIVU4iyUC4oVY5aINMB9qRm2Q615l4Kb96xvdf5YflJbuB7 /9al9ASKG+TvV/LSfXM1P/NZ8mMtAAyYXdqUXA+bR7x/lLUN56Oc1RiaJ93ixDua qqmbXOUbUoK9NghLWQg1OwV2Dgy8svk7Dp9MjapnQ3ol0K8mh2hWD9fUOsicdgYp cSRpm+3Qo59o6iojT3O7SAbeGRbix97S8vDur7kbD0dIVIsq/fTlobhc47ju0ZFs eGrVo1nLsQsCKAnbjSjJ2JPZ7msPUOBxn2D54LoDYuQKOXiPh+LJatbKkhhq1cV8 3hT0/OxbXbioUUz+fkN8OK+L6g== -----END CERTIFICATE-----Generated at Mon Mar 2 12:42:39 2026 by rpki-client