$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: vsqMSlZ/we4daokAZ2wX7Bst2/nd6rPVYgvcYC9Mbl4= Subject key identifier: E2:14:4C:F0:34:86:F3:EF:08:45:A2:40:7D:A1:B0:9F:A2:01:E1:7B Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A85 Signing time: Tue 24 Mar 2026 19:22:45 +0000 Manifest this update: Tue 24 Mar 2026 19:22:44 +0000 Manifest next update: Tue 31 Mar 2026 19:22:44 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: ueWwT0997eRvuJheDj7bLTllSAq/Bsugf63R4D8WY68=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: pjTWlhBU9uLdZ8Pokz/j8Myvf4pRfYFG3vHjcrWT10w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2711 (0xa97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Mar 24 19:22:44 2026 GMT Not After : Mar 31 19:22:44 2026 GMT Subject: CN=69c2e485-4d6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:b2:f5:4b:e6:0f:a1:43:0e:31:5f:6b:8c: 83:52:7b:8d:26:9d:b9:fe:e5:09:ca:c2:8b:e6:ca: 95:53:7f:bf:ec:ed:86:67:77:1b:47:86:3d:ee:a1: 5e:4f:e8:eb:04:96:26:79:ba:45:82:39:ea:5a:7b: 40:d2:3a:6d:62:9b:aa:6a:e1:6d:dc:06:a4:d8:20: cd:32:80:4c:d7:04:d8:1b:2a:ff:6e:1d:1a:78:38: 65:01:a3:2d:92:1c:11:81:44:32:aa:ad:28:29:ef: 53:cd:e3:7f:a9:3a:ab:1d:54:36:b3:79:64:cf:92: 95:7e:25:1d:ef:09:a4:bf:6b:6f:26:b8:f3:cd:1d: 76:dd:d2:5a:4a:f8:7a:59:8b:67:6d:91:0b:9f:d5: b7:cd:27:22:3d:f2:0b:72:77:5c:58:2a:6a:0d:e9: e7:5e:84:be:63:1d:49:3c:e5:f2:bf:e1:5f:1e:bc: 61:be:68:f7:2a:be:a1:37:f0:b1:9b:a1:87:c8:5b: b8:a3:a0:85:9b:6c:1f:bd:6e:d7:37:c9:71:7f:61: 73:56:db:d5:a5:80:98:5a:a9:61:ed:27:56:32:88: dd:3a:22:6a:94:d3:1b:ac:5f:5e:6f:f7:e9:ca:1d: 06:81:7e:82:2a:19:10:47:59:2f:4c:bf:85:42:d6: 46:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:14:4C:F0:34:86:F3:EF:08:45:A2:40:7D:A1:B0:9F:A2:01:E1:7B X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8f:c9:f8:a2:4b:25:d2:01:70:55:37:d5:c7:62:de:16:1c: bb:e0:e2:17:af:86:7e:bb:70:30:87:a0:b4:f0:4e:6c:8a:ba: 2f:62:57:69:5f:af:5e:0d:68:2b:03:56:50:b4:e2:1b:79:9f: 6b:4d:d7:b8:82:3c:21:07:35:b2:1d:9f:dc:fc:a7:5b:84:65: 2a:a1:3a:d5:75:b5:58:56:87:31:f1:8f:d8:77:03:0e:4d:8d: 28:ce:ac:1b:41:a4:2d:a3:79:e3:64:e3:cd:58:a2:71:1c:23: 54:ce:03:fd:80:db:60:21:d2:2f:94:9a:c3:b7:73:17:13:b4: 65:65:cd:92:07:4c:f6:44:36:ed:f4:04:8e:48:87:29:4f:44: 9d:5b:6f:38:12:1d:e7:35:f8:32:5e:25:ab:f7:ac:20:fb:3c: d8:b4:45:22:d8:30:37:a6:92:4d:bf:7b:93:8f:e8:d2:e6:4c: 95:dd:e7:89:06:11:41:7e:84:fb:3c:a2:e9:cc:db:92:65:6e: 38:ac:37:d3:51:6c:c5:11:4b:24:6a:d9:f4:26:0a:bd:df:a4: 97:d2:71:91:a5:da:58:83:63:3b:19:83:68:bd:0c:e6:7f:f8: c9:90:7f:30:f6:d6:76:61:64:38:53:56:ed:f4:33:4c:c9:ff: c2:aa:77:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjYwMzI0MTkyMjQ0WhcNMjYwMzMxMTkyMjQ0WjAYMRYwFAYD VQQDEw02OWMyZTQ4NS00ZDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDey9UvmD6FDDjFfa4yDUnuNJp25/uUJysKL5sqVU3+/7O2GZ3cbR4Y97qFe T+jrBJYmebpFgjnqWntA0jptYpuqauFt3Aak2CDNMoBM1wTYGyr/bh0aeDhlAaMt khwRgUQyqq0oKe9TzeN/qTqrHVQ2s3lkz5KVfiUd7wmkv2tvJrjzzR123dJaSvh6 WYtnbZELn9W3zSciPfILcndcWCpqDennXoS+Yx1JPOXyv+FfHrxhvmj3Kr6hN/Cx m6GHyFu4o6CFm2wfvW7XN8lxf2FzVtvVpYCYWqlh7SdWMojdOiJqlNMbrF9eb/fp yh0GgX6CKhkQR1kvTL+FQtZGoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOIUTPA0 hvPvCEWiQH2hsJ+iAeF7MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGo/J+KJLJdIBcFU31cdi3hYcu+DiF6+GfrtwMIegtPBObIq6L2JXaV+vXg1o KwNWULTiG3mfa03XuII8IQc1sh2f3PynW4RlKqE61XW1WFaHMfGP2HcDDk2NKM6s G0GkLaN542TjzViicRwjVM4D/YDbYCHSL5Saw7dzFxO0ZWXNkgdM9kQ27fQEjkiH KU9EnVtvOBId5zX4Ml4lq/esIPs82LRFItgwN6aSTb97k4/o0uZMld3niQYRQX6E +zyi6czbkmVuOKw301FsxRFLJGrZ9CYKvd+kl9JxkaXaWINjOxmDaL0M5n/4yZB/ MPbWdmFkOFNW7fQzTMn/wqp3sw== -----END CERTIFICATE-----Generated at Thu Mar 26 19:46:05 2026 by rpki-client