$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: owGfyPWfT9LU/iPWpo8+VNxeLm3WWHy3Pg3EdAX5ntI= Subject key identifier: E8:98:30:04:A1:E6:D7:40:E9:84:F9:43:DC:D8:37:23:1F:9B:BF:83 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0BD7 Signing time: Thu 26 Mar 2026 18:48:53 +0000 Manifest this update: Thu 26 Mar 2026 18:48:52 +0000 Manifest next update: Thu 02 Apr 2026 18:48:52 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: uYNpQJr/FgqYXKBcLBQ9r2MAIXkcrOJbwm2B2rjrLCI=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: miF3Bd+XSLHucz0FC/5HkJ/vce5TslwDpsNS9Q4tZB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Mar 26 18:48:52 2026 GMT Not After : Apr 2 18:48:52 2026 GMT Subject: CN=69c57f95-3978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4c:a2:58:48:90:70:12:cc:3a:b7:3d:de:de: 63:b2:be:8b:e6:ac:a7:34:1f:c3:a5:fa:fb:6b:71: 1a:f4:42:d4:e8:16:c4:00:ef:5a:37:a0:17:be:6c: 7d:3f:3f:ca:e9:ad:1b:16:2a:fd:c7:38:37:b3:ce: 12:d3:5f:35:4b:43:87:d8:96:cb:54:e8:0b:db:26: 84:cb:8e:ba:51:f1:49:1a:cb:14:ad:b7:cf:70:a2: 83:03:42:e7:36:e3:56:93:08:32:7c:30:52:9f:73: 1f:6b:ac:96:cc:22:5e:28:e5:97:00:8d:6d:9d:46: cb:0f:6e:83:77:d6:99:82:be:c5:2a:c7:90:06:bd: 18:6c:2d:c6:d4:39:20:a3:6a:b2:79:9a:a7:81:93: 63:a8:06:ae:6f:fe:9b:ed:1e:82:1f:4c:82:22:cd: 8c:aa:90:cc:aa:a1:b7:ba:cc:d5:c9:71:37:18:55: 3f:8a:8e:fa:12:9b:b9:29:be:30:16:07:be:f9:3e: 66:5c:97:3a:71:ad:c5:15:11:58:a7:75:1e:3f:12: 1b:d8:b7:35:05:41:ee:17:0a:c6:25:94:8f:9c:e9: d9:93:fe:10:2e:3b:f5:88:c0:21:6b:d5:d7:f5:37: 8e:1c:1e:91:b5:62:15:72:ee:04:5f:11:fb:c9:b1: 8a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:98:30:04:A1:E6:D7:40:E9:84:F9:43:DC:D8:37:23:1F:9B:BF:83 X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5f:7a:8b:8d:fc:66:11:6d:33:d2:9c:88:b3:2a:d4:f3:25: 60:c8:f9:55:4e:0b:87:9c:e0:2d:a9:dd:96:ad:9d:33:3d:85: db:53:60:24:9e:ba:b8:f5:6c:a7:7a:33:9f:ea:00:d1:87:bb: 5f:68:bd:d6:d2:70:2d:54:07:86:02:d9:84:d3:b0:0c:ff:ab: 4a:81:73:b0:50:0b:56:6d:86:9d:e1:00:98:6d:e7:e9:c6:c6: b4:31:4e:53:f6:11:3d:0c:7c:21:b5:a3:6f:3c:6d:d8:52:42: 0d:06:ce:c1:17:52:b5:b5:ea:fc:d2:5c:0e:14:02:16:33:0f: 41:bd:b4:e0:47:d9:0b:03:a2:4e:a6:98:b2:a3:ab:ab:b2:a8: 2d:47:67:ff:34:be:12:65:98:a2:43:c0:a1:e5:43:fd:bb:0f: b3:a6:c1:0e:28:e0:13:84:43:5d:28:26:78:ca:4f:b2:32:2c: 3d:03:7d:ed:ad:32:8d:1f:3f:d9:e3:c4:da:d9:3b:02:d5:31: 2c:22:cd:00:74:11:0f:87:a0:fc:70:cd:74:25:ff:d8:86:9d: a0:62:66:2d:58:e7:cb:93:5c:28:bf:3c:8e:1d:17:33:90:7f: 6d:db:43:55:c9:4e:59:79:9b:6e:e7:df:1b:29:32:76:4f:56: eb:c9:c2:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjYwMzI2MTg0ODUyWhcNMjYwNDAyMTg0ODUyWjAYMRYwFAYD VQQDEw02OWM1N2Y5NS0zOTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kyiWEiQcBLMOrc93t5jsr6L5qynNB/Dpfr7a3Ea9ELU6BbEAO9aN6AXvmx9 Pz/K6a0bFir9xzg3s84S0181S0OH2JbLVOgL2yaEy466UfFJGssUrbfPcKKDA0Ln NuNWkwgyfDBSn3Mfa6yWzCJeKOWXAI1tnUbLD26Dd9aZgr7FKseQBr0YbC3G1Dkg o2qyeZqngZNjqAaub/6b7R6CH0yCIs2MqpDMqqG3uszVyXE3GFU/io76Epu5Kb4w Fge++T5mXJc6ca3FFRFYp3UePxIb2Lc1BUHuFwrGJZSPnOnZk/4QLjv1iMAha9XX 9TeOHB6RtWIVcu4EXxH7ybGKpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOiYMASh 5tdA6YT5Q9zYNyMfm7+DMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW196i438ZhFtM9KciLMq1PMlYMj5VU4Lh5zgLandlq2dMz2F21NgJJ66uPVs p3ozn+oA0Ye7X2i91tJwLVQHhgLZhNOwDP+rSoFzsFALVm2GneEAmG3n6cbGtDFO U/YRPQx8IbWjbzxt2FJCDQbOwRdStbXq/NJcDhQCFjMPQb204EfZCwOiTqaYsqOr q7KoLUdn/zS+EmWYokPAoeVD/bsPs6bBDijgE4RDXSgmeMpPsjIsPQN97a0yjR8/ 2ePE2tk7AtUxLCLNAHQRD4eg/HDNdCX/2IadoGJmLVjny5NcKL88jh0XM5B/bdtD VclOWXmbbuffGykydk9W68nC4A== -----END CERTIFICATE-----Generated at Thu Mar 26 22:12:38 2026 by rpki-client