$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft File: PNmBJcGXpVFDEgG3kG1QS7iySt4.mft (raw, json) Hash identifier: SYhTe01I7N1KPAgCyecRS/egSzqBcdR2Dt0t5NuJ56M= Subject key identifier: C8:A3:92:52:9C:E9:CB:C0:6F:BF:CB:76:46:E4:62:4C:66:B7:7D:B9 Authority key identifier: 3C:D9:81:25:C1:97:A5:51:43:12:01:B7:90:6D:50:4B:B8:B2:4A:DE Certificate issuer: /CN=A918BB6D/serialNumber=3CD98125C197A551431201B7906D504BB8B24ADE Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft Manifest number: 23 Signing time: Sun 01 Mar 2026 10:19:36 +0000 Manifest this update: Sun 01 Mar 2026 10:19:35 +0000 Manifest next update: Sun 08 Mar 2026 10:19:35 +0000 Files and hashes: 1: PNmBJcGXpVFDEgG3kG1QS7iySt4.crl (hash: 6cDoR7396JPbWRq/jvgTYZGWuDhMO76qfSvCfnNdq3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.crl rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB6D, serialNumber=3CD98125C197A551431201B7906D504BB8B24ADE Validity Not Before: Mar 1 10:19:35 2026 GMT Not After : Mar 8 10:19:35 2026 GMT Subject: CN=69a412b8-73f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c8:20:20:a3:13:ea:b9:65:87:e6:9d:4c:71: 20:9a:3c:09:c3:62:c4:f8:3c:85:84:a7:9f:18:5c: 04:97:b3:bc:bf:15:01:3b:5d:bb:e0:65:8b:05:78: 4e:ad:91:d1:96:49:7c:59:e6:74:4d:14:cc:05:b0: 9e:99:c7:b1:e1:3c:1b:1c:16:ad:d9:c0:d0:7a:fd: 99:cf:c9:5e:79:48:77:22:33:37:1a:12:4d:f4:22: 58:3a:cc:d5:87:49:64:63:6a:a1:dd:d7:86:fa:9a: f9:9f:eb:57:45:4c:b0:5c:56:7c:d8:dc:dd:9b:e9: 77:a6:80:2f:76:07:85:ac:4a:e3:77:5b:45:dd:e5: 7f:39:ec:48:07:08:fc:5e:7d:99:e4:44:33:28:32: b3:d1:aa:e6:82:7d:09:5f:62:50:2a:0d:b9:1e:ca: a5:cc:8e:64:af:5b:d6:3f:d6:2f:07:de:d4:39:b1: 25:6b:fe:0c:34:8b:32:47:ab:8f:97:92:2d:bf:df: 18:96:84:fa:f1:a9:61:e6:a4:6b:dd:22:6a:e5:28: 1f:52:bb:42:ab:1c:6f:1c:ef:2e:e3:d8:dc:b4:d7: 75:23:ec:9d:38:34:97:5d:85:52:67:f2:0e:9a:ce: d0:5b:bb:6b:18:77:fe:28:cf:ba:eb:e3:b9:77:9c: 84:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A3:92:52:9C:E9:CB:C0:6F:BF:CB:76:46:E4:62:4C:66:B7:7D:B9 X509v3 Authority Key Identifier: keyid:3C:D9:81:25:C1:97:A5:51:43:12:01:B7:90:6D:50:4B:B8:B2:4A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:8a:c2:da:25:c6:20:cb:f6:c1:fd:28:b8:18:bc:d0:fb:80: 42:ca:1a:28:5e:21:a3:da:a7:a3:d2:01:e6:06:02:62:6f:cd: b5:f6:87:8c:1a:ec:d6:2d:64:43:87:f6:0a:b7:7f:65:34:bd: 21:29:e0:8e:47:7d:83:85:09:3c:71:c7:f0:2a:11:c6:f9:4a: b7:90:5c:5f:cb:30:76:a0:6a:b7:a5:09:3d:a7:9a:d6:96:0a: 19:f3:a2:f2:30:b1:28:cc:96:14:77:b3:b7:3f:d1:2d:0a:bf: a5:03:c0:e3:4b:27:bd:a0:76:40:d8:51:f1:00:b4:52:18:ad: 4f:48:33:11:a3:10:bf:1a:1c:4d:1d:e1:1f:8a:84:c9:f4:4d: 3d:fa:b8:44:b3:13:d4:a8:c8:bb:ff:8c:cb:79:85:c7:37:23: f4:4b:73:dc:e5:27:b6:e7:61:ad:e4:ff:18:21:d5:9d:89:6a: fd:4b:dd:de:d3:ed:56:78:d3:cc:a8:65:7e:63:23:dd:81:ac: de:31:de:c3:6c:d3:6c:f4:4d:be:be:76:00:b1:99:46:56:5d: 0a:ea:1e:2d:8a:ca:76:0c:1c:7a:2d:be:11:e3:cd:a1:a4:dc: b6:dd:2d:d1:cb:4a:c9:b1:0d:5e:b9:94:ab:08:83:c7:af:b5: 47:f0:39:e3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QkI2RDExMC8GA1UEBRMoM0NEOTgxMjVDMTk3QTU1MTQzMTIwMUI3OTA2RDUwNEJC OEIyNEFERTAeFw0yNjAzMDExMDE5MzVaFw0yNjAzMDgxMDE5MzVaMBgxFjAUBgNV BAMTDTY5YTQxMmI4LTczZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4yCAgoxPquWWH5p1McSCaPAnDYsT4PIWEp58YXASXs7y/FQE7XbvgZYsFeE6t kdGWSXxZ5nRNFMwFsJ6Zx7HhPBscFq3ZwNB6/ZnPyV55SHciMzcaEk30Ilg6zNWH SWRjaqHd14b6mvmf61dFTLBcVnzY3N2b6XemgC92B4WsSuN3W0Xd5X857EgHCPxe fZnkRDMoMrPRquaCfQlfYlAqDbkeyqXMjmSvW9Y/1i8H3tQ5sSVr/gw0izJHq4+X ki2/3xiWhPrxqWHmpGvdImrlKB9Su0KrHG8c7y7j2Ny013Uj7J04NJddhVJn8g6a ztBbu2sYd/4oz7rr47l3nITDAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUyKOSUpzp y8Bvv8t2RuRiTGa3fbkwHwYDVR0jBBgwFoAUPNmBJcGXpVFDEgG3kG1QS7iySt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCQjZELzg4MEQ2Q0FDRTkx QjExRjBBNzU0MTYxMjczNkY1NkJDL1BObUJKY0dYcFZGREVnRzNrRzFRUzdpeVN0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE5tQkpjR1hwVkZERWdHM2tHMVFTN2l5U3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC QjZELzg4MEQ2Q0FDRTkxQjExRjBBNzU0MTYxMjczNkY1NkJDL1BObUJKY0dYcFZG REVnRzNrRzFRUzdpeVN0NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA4isLaJcYgy/bB/Si4GLzQ+4BCyhooXiGj2qej0gHmBgJib8219oeMGuzWLWRD h/YKt39lNL0hKeCOR32DhQk8ccfwKhHG+Uq3kFxfyzB2oGq3pQk9p5rWlgoZ86Ly MLEozJYUd7O3P9EtCr+lA8DjSye9oHZA2FHxALRSGK1PSDMRoxC/GhxNHeEfioTJ 9E09+rhEsxPUqMi7/4zLeYXHNyP0S3Pc5Se252Gt5P8YIdWdiWr9S93e0+1WeNPM qGV+YyPdgazeMd7DbNNs9E2+vnYAsZlGVl0K6h4tisp2DBx6Lb4R482hpNy23S3R y0rJsQ1euZSrCIPHr7VH8Dnj -----END CERTIFICATE-----Generated at Mon Mar 2 11:19:09 2026 by rpki-client