$ rpki-client -vvf rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft File: pdThiKsl2GlB4GvF8NK-mNClCi0.mft (raw, json) Hash identifier: gJ8sSw1DXPKF1X1JEVTUNHXV5NRzTFL8XlemcefeiXc= Subject key identifier: 17:38:8F:EB:18:BD:D8:A1:D9:38:6C:8A:74:66:99:D5:FF:19:24:AB Authority key identifier: A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D Certificate issuer: /CN=A918E3C0/serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft Manifest number: 15 Signing time: Mon 02 Mar 2026 13:50:00 +0000 Manifest this update: Mon 02 Mar 2026 13:50:00 +0000 Manifest next update: Mon 09 Mar 2026 13:50:00 +0000 Files and hashes: 1: pdThiKsl2GlB4GvF8NK-mNClCi0.crl (hash: E06IDlZwJub8r5a5kzwG9oLfOdUDwDIJ47a8EY+CtZg=) 2: 3EE95EC801B211F19B62C4E66C6F56BC.roa (hash: B0jnDdaxg9Qc3b+l9St8mXLfihlNO3bYzJFFHiKIOSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E3C0, serialNumber=A5D4E188AB25D86941E06BC5F0D2BE98D0A50A2D Validity Not Before: Mar 2 13:50:00 2026 GMT Not After : Mar 9 13:50:00 2026 GMT Subject: CN=69a59588-848d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:48:05:98:57:9d:5a:e4:e5:fd:22:96:b4:8f: e7:e9:eb:c8:4d:78:2c:3b:1d:22:f8:1a:1c:1d:6f: 85:9b:c5:43:2d:ca:90:c2:4c:19:1d:0f:08:4f:72: 4d:69:a6:3a:d3:96:da:48:0a:64:8e:cc:e6:2f:09: 22:90:d1:9a:a7:7c:b8:bf:9b:ff:f0:4d:ef:5d:81: cf:3d:03:86:b4:5e:f4:61:cf:b6:87:f8:07:2f:93: 73:17:57:73:83:12:7a:b4:0f:75:55:3c:ce:13:85: 9d:67:2e:49:49:75:e5:ea:c5:c0:44:96:28:82:f5: 55:66:9e:44:d3:81:89:d8:45:e4:99:5c:21:0c:c9: b4:f1:06:a6:6e:bf:04:9a:0d:33:06:60:14:2f:3e: 4f:57:5f:4c:be:94:76:2b:92:01:3b:21:46:7a:4b: 2e:2e:18:44:27:21:e9:32:4e:d5:37:90:0a:ec:5b: 56:2d:6d:6f:54:9d:05:0f:76:96:0b:a3:7b:4c:36: e5:53:24:68:84:79:77:08:b1:93:bf:dd:16:83:90: 93:0d:a1:9c:88:a7:3e:7e:03:ee:2b:96:66:15:55: d6:f0:07:58:6b:ec:2c:88:15:fd:ef:58:98:93:42: 9a:2c:97:39:61:56:f2:ff:ad:8e:65:9a:4c:2c:b7: 93:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:38:8F:EB:18:BD:D8:A1:D9:38:6C:8A:74:66:99:D5:FF:19:24:AB X509v3 Authority Key Identifier: keyid:A5:D4:E1:88:AB:25:D8:69:41:E0:6B:C5:F0:D2:BE:98:D0:A5:0A:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdThiKsl2GlB4GvF8NK-mNClCi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E3C0/9A8AD85201B111F19C1E42C16B6F56BC/pdThiKsl2GlB4GvF8NK-mNClCi0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:91:00:9f:53:d9:0d:19:f4:c8:c8:3b:b0:2a:0e:d1:e7:9b: 2a:c3:b7:c3:4e:3b:a1:1e:b4:2f:07:a1:a3:f9:62:44:20:b8: 62:de:ea:30:04:30:05:9b:9d:fe:99:63:dd:d0:64:ba:56:1d: a0:f5:4a:0f:79:8d:88:f1:80:7c:d8:00:5e:e9:5c:0b:25:37: 0d:0f:51:18:55:7f:98:ce:97:ed:ac:19:e8:9b:97:7f:52:de: 16:f9:06:91:6e:fd:91:04:82:71:b1:4e:2a:2c:c8:e8:f5:6d: b0:d6:73:ca:78:ad:64:ea:59:21:f9:7a:03:3f:31:a8:6f:b3: 44:20:0d:12:12:ed:af:10:49:33:f3:33:44:a1:5f:b1:96:15: 45:f2:c6:5d:fa:d3:83:ce:fa:e2:66:5a:14:c8:58:84:06:7a: cf:a8:e7:a9:2e:0a:e9:64:54:bd:c4:d3:19:a9:ba:b8:7d:bd: 97:7c:60:68:0b:19:8b:60:7d:23:e8:08:c4:32:b7:ae:1d:8b: d7:11:6c:0f:99:10:af:4c:ea:38:21:63:7c:45:2f:89:36:dc: 21:e4:81:a8:db:9f:2c:e4:5e:cf:70:4b:d7:d2:b6:67:c9:eb: 39:23:f1:89:93:08:1a:01:51:3e:e3:fd:42:41:45:87:8c:59: 01:d2:b9:c5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTNDMDExMC8GA1UEBRMoQTVENEUxODhBQjI1RDg2OTQxRTA2QkM1RjBEMkJFOThE MEE1MEEyRDAeFw0yNjAzMDIxMzUwMDBaFw0yNjAzMDkxMzUwMDBaMBgxFjAUBgNV BAMTDTY5YTU5NTg4LTg0OGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsSAWYV51a5OX9Ipa0j+fp68hNeCw7HSL4Ghwdb4WbxUMtypDCTBkdDwhPck1p pjrTltpICmSOzOYvCSKQ0ZqnfLi/m//wTe9dgc89A4a0XvRhz7aH+Acvk3MXV3OD Enq0D3VVPM4ThZ1nLklJdeXqxcBEliiC9VVmnkTTgYnYReSZXCEMybTxBqZuvwSa DTMGYBQvPk9XX0y+lHYrkgE7IUZ6Sy4uGEQnIekyTtU3kArsW1YtbW9UnQUPdpYL o3tMNuVTJGiEeXcIsZO/3RaDkJMNoZyIpz5+A+4rlmYVVdbwB1hr7CyIFf3vWJiT QposlzlhVvL/rY5lmkwst5NxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUFziP6xi9 2KHZOGyKdGaZ1f8ZJKswHwYDVR0jBBgwFoAUpdThiKsl2GlB4GvF8NK+mNClCi0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFM0MwLzlBOEFEODUyMDFC MTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkdsQjRHdkY4TkstbU5DbENp MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGRUaGlLc2wyR2xCNEd2RjhOSy1tTkNsQ2kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF M0MwLzlBOEFEODUyMDFCMTExRjE5QzFFNDJDMTZCNkY1NkJDL3BkVGhpS3NsMkds QjRHdkY4TkstbU5DbENpMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQALkQCfU9kNGfTIyDuwKg7R55sqw7fDTjuhHrQvB6Gj+WJEILhi3uowBDAFm53+ mWPd0GS6Vh2g9UoPeY2I8YB82ABe6VwLJTcND1EYVX+YzpftrBnom5d/Ut4W+QaR bv2RBIJxsU4qLMjo9W2w1nPKeK1k6lkh+XoDPzGob7NEIA0SEu2vEEkz8zNEoV+x lhVF8sZd+tODzvriZloUyFiEBnrPqOepLgrpZFS9xNMZqbq4fb2XfGBoCxmLYH0j 6AjEMreuHYvXEWwPmRCvTOo4IWN8RS+JNtwh5IGo258s5F7PcEvX0rZnyes5I/GJ kwgaAVE+4/1CQUWHjFkB0rnF -----END CERTIFICATE-----Generated at Mon Mar 2 18:45:58 2026 by rpki-client