$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft File: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json) Hash identifier: 7RSi7qv3qxgGCgTnukIDthxDjJivctbWn6zeHWTbvuk= Subject key identifier: FF:34:37:C9:78:E8:14:5D:2B:0D:23:15:FE:39:72:59:FD:E3:0B:56 Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 Certificate issuer: /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft Manifest number: 33 Signing time: Sun 01 Mar 2026 10:05:57 +0000 Manifest this update: Sun 01 Mar 2026 10:05:56 +0000 Manifest next update: Sun 08 Mar 2026 10:05:56 +0000 Files and hashes: 1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: eT5dyKlJ3NFGSqgAxUoEK8mQ6ew7tjlxmqxSZ9sOwfM=) 2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: ERXxcYaD/BipGW6AIZDMmzRHcboCoePXi+aLABZ/mKA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Validity Not Before: Mar 1 10:05:56 2026 GMT Not After : Mar 8 10:05:56 2026 GMT Subject: CN=69a40f85-9cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9c:19:e4:40:6c:8a:bf:86:9a:ff:16:e3:8b: 65:f9:06:7b:3b:91:84:48:a3:8c:58:9e:ad:0e:8f: d4:3e:a2:28:43:28:02:31:b4:ef:0f:62:8f:9f:b9: f4:ea:8f:99:ba:65:01:72:00:17:82:1f:de:b0:db: 0d:19:aa:84:89:6e:c6:e0:1b:c5:36:99:02:14:03: 2a:22:ac:79:32:7f:81:4b:bd:d5:c2:90:a2:21:74: 85:8b:dc:eb:73:44:78:95:75:4a:a6:43:c7:85:85: ed:99:13:8f:f1:70:02:fd:fd:b2:63:c9:6a:24:45: 54:bc:9c:85:a3:d1:f5:ac:41:8d:dd:66:ac:91:28: d7:bb:72:54:61:cd:e8:e2:0d:c6:d0:ab:c0:e4:d1: 58:13:34:df:2f:3f:86:eb:00:6b:07:99:31:68:17: fd:c5:37:92:21:5a:c0:f7:60:dd:2e:e2:93:c3:5f: f8:d8:5c:74:30:7c:cb:e6:88:a7:1b:99:61:2d:c6: 48:e5:ec:ef:f8:6e:56:a5:eb:84:ba:9d:39:78:97: ba:ca:e5:58:53:aa:6c:15:57:bd:12:7a:f6:2a:8b: d6:0f:13:d3:87:97:89:5f:c1:e4:f2:b7:90:3d:09: f2:fe:cb:23:9b:d8:61:14:7c:e9:00:0c:a1:8a:77: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:34:37:C9:78:E8:14:5D:2B:0D:23:15:FE:39:72:59:FD:E3:0B:56 X509v3 Authority Key Identifier: keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:67:79:15:7e:a3:2d:7d:bc:6b:09:84:66:7a:ed:70:9b:59: 8a:2c:66:03:53:7e:06:11:bb:ae:08:7d:ee:26:0f:84:3c:2b: f1:a7:c9:29:32:0a:7c:1e:ee:e8:d6:d9:3c:e4:19:93:a5:cc: f1:73:b7:c4:dc:85:5c:7a:48:80:3d:df:7d:ff:7b:7f:7e:fd: cf:e3:83:dc:83:2d:af:9c:e0:84:2c:f9:7e:26:56:24:10:e2: b8:dd:02:20:bc:b7:45:e9:84:e6:1d:82:f1:6b:95:9a:be:c8: 4c:6d:89:b6:87:74:01:c4:3d:6a:76:13:2d:62:58:f2:5a:aa: 77:09:8d:bb:14:85:86:60:0d:2e:f2:8a:5a:86:f5:95:e0:a7: 7c:2b:6b:d7:36:ba:4e:d7:38:0c:5e:7a:95:da:dc:ef:0e:7a: ab:3f:90:17:49:5a:de:a1:0f:5d:68:08:d7:2e:44:7b:57:04: af:ea:b0:6d:65:e8:b3:00:32:f2:b4:97:eb:fb:41:42:43:57: f4:6c:16:43:6b:90:f4:fa:e2:ed:0b:bf:59:45:fe:c9:e9:5c: 4f:a0:22:bb:57:93:7c:9d:96:88:49:5f:5c:81:0a:2e:24:cf: 8a:fb:91:37:14:8c:81:5c:0e:51:77:8a:97:07:50:7a:23:05: dc:aa:17:49 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0 NDFDQzk5NzAeFw0yNjAzMDExMDA1NTZaFw0yNjAzMDgxMDA1NTZaMBgxFjAUBgNV BAMTDTY5YTQwZjg1LTljYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwnBnkQGyKv4aa/xbji2X5Bns7kYRIo4xYnq0Oj9Q+oihDKAIxtO8PYo+fufTq j5m6ZQFyABeCH96w2w0ZqoSJbsbgG8U2mQIUAyoirHkyf4FLvdXCkKIhdIWL3Otz RHiVdUqmQ8eFhe2ZE4/xcAL9/bJjyWokRVS8nIWj0fWsQY3dZqyRKNe7clRhzeji DcbQq8Dk0VgTNN8vP4brAGsHmTFoF/3FN5IhWsD3YN0u4pPDX/jYXHQwfMvmiKcb mWEtxkjl7O/4blal64S6nTl4l7rK5VhTqmwVV70SevYqi9YPE9OHl4lfweTyt5A9 CfL+yyOb2GEUfOkADKGKd+QHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU/zQ3yXjo FF0rDSMV/jlyWf3jC1YwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5 MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn MGUzc1V3RXJaNmtRY3laYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBeZ3kVfqMtfbxrCYRmeu1wm1mKLGYDU34GEbuuCH3uJg+EPCvxp8kpMgp8Hu7o 1tk85BmTpczxc7fE3IVcekiAPd99/3t/fv3P44Pcgy2vnOCELPl+JlYkEOK43QIg vLdF6YTmHYLxa5WavshMbYm2h3QBxD1qdhMtYljyWqp3CY27FIWGYA0u8opahvWV 4Kd8K2vXNrpO1zgMXnqV2tzvDnqrP5AXSVreoQ9daAjXLkR7VwSv6rBtZeizADLy tJfr+0FCQ1f0bBZDa5D0+uLtC79ZRf7J6VxPoCK7V5N8nZaISV9cgQouJM+K+5E3 FIyBXA5Rd4qXB1B6IwXcqhdJ -----END CERTIFICATE-----Generated at Sun Mar 1 23:15:22 2026 by rpki-client