$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: tNHTzV6PonUxnhmwCogqjz0SMb+bcNF0I0w2TWs7Uo8= Subject key identifier: E1:94:91:C4:DB:FC:03:F0:15:A0:A2:B8:EF:32:A5:73:4C:0E:92:91 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 0A61 Signing time: Tue 24 Mar 2026 19:28:51 +0000 Manifest this update: Tue 24 Mar 2026 19:28:51 +0000 Manifest next update: Tue 31 Mar 2026 19:28:51 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: aOWeNMKQmg7nEnc8O9fFT3bBrgTMu07g1qTZUEvp9NI=) 2: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: eVBXvv7YWMBaIfGnckCnkuA5YetM67743+mf0xEBTN0=) 3: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: IQJ8CffaTket9ne9+YqLheylHj7WmArcnX754ekd+dU=) 4: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: PEH68zFCTxpFSTzGq90DnMAYUrlMtG9wBFuZ6IkSPHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Mar 24 19:28:51 2026 GMT Not After : Mar 31 19:28:51 2026 GMT Subject: CN=69c2e5f3-a894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:27:5a:ed:16:a3:a1:7a:9d:6b:11:e4:e5:0f: 98:59:d5:8d:da:43:75:9b:6e:13:ea:08:36:47:16: df:00:93:59:07:55:6c:15:df:3c:b9:b1:74:94:c4: 3a:4b:4d:b4:b6:2b:95:94:5e:e2:8c:96:8f:78:9d: bd:7c:14:34:87:3f:dc:8c:b9:7c:56:1c:6e:3f:89: 3b:eb:af:39:c2:a6:a4:d7:ff:83:37:42:29:63:99: 37:25:bc:38:cf:50:f6:bd:68:7e:4a:f3:23:47:02: 25:f4:f7:46:cb:d6:e3:cd:93:80:56:e8:48:be:0a: d8:7e:97:9f:4f:e3:6d:1c:57:7d:43:82:1c:a5:6a: 63:25:8e:78:54:fe:49:52:d0:5f:67:fe:20:37:aa: b9:b8:94:aa:8e:62:b5:0c:71:09:38:7e:33:e1:23: 48:c8:b2:a9:6e:1a:bd:55:7d:70:74:b5:0e:6b:1e: f4:69:61:d3:24:08:6d:13:38:c9:8b:cd:02:52:d4: 7a:1f:83:1a:44:48:90:17:c7:b8:89:8f:4b:8d:a6: 29:0d:3d:c2:02:97:76:a5:e6:0e:c1:2e:07:5e:61: a7:c0:e7:33:53:a2:0b:41:11:5b:07:8d:2f:b6:b4: ba:c9:c8:f8:4f:ae:86:2c:5a:95:6c:7b:44:84:d4: 69:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:94:91:C4:DB:FC:03:F0:15:A0:A2:B8:EF:32:A5:73:4C:0E:92:91 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:15:8d:72:e9:e2:1d:df:ec:1b:a0:ac:e9:d3:c3:89:7f:1a: c2:57:ca:85:5e:54:1e:cb:2e:63:5f:4c:e7:a9:e0:eb:ec:c4: f6:1e:11:bf:9d:a4:56:53:7b:c4:a3:c6:64:6a:a6:eb:d3:d1: da:0c:8d:d0:75:30:67:87:7d:59:be:27:c1:2b:90:96:7a:83: 17:61:ca:72:32:f3:6b:4c:dc:f5:01:d6:65:b5:86:2a:f7:af: e8:ed:b7:6d:e4:fe:03:ec:91:22:36:e8:ac:5c:f7:90:d3:3b: cf:d3:c8:f4:6a:0c:18:5a:18:49:86:99:36:6e:27:62:3f:e8: cd:56:b6:4e:eb:2c:0c:78:e4:cc:22:bb:04:66:21:7d:2c:d8: f4:fa:4b:98:f7:73:af:d2:a1:bf:26:e4:4b:52:e5:ab:32:6c: 89:00:35:51:d3:c8:d4:4c:f3:1b:ec:50:a8:74:bc:3f:57:10: af:f0:81:ae:2e:cb:b0:ae:19:de:75:01:12:89:a6:1e:3f:02: bf:57:1d:e0:94:17:92:ee:1d:35:ca:ec:99:ae:be:f6:38:8d: d9:f5:c9:af:30:ea:bc:6f:fe:1e:cf:8c:c1:6f:b8:54:92:5b: 0e:55:f8:30:a8:83:ad:0a:78:1b:8e:9b:97:5b:8f:b3:b6:0b: 35:f7:83:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjYwMzI0MTkyODUxWhcNMjYwMzMxMTkyODUxWjAYMRYwFAYD VQQDEw02OWMyZTVmMy1hODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyda7RajoXqdaxHk5Q+YWdWN2kN1m24T6gg2RxbfAJNZB1VsFd88ubF0lMQ6 S020tiuVlF7ijJaPeJ29fBQ0hz/cjLl8VhxuP4k76685wqak1/+DN0IpY5k3Jbw4 z1D2vWh+SvMjRwIl9PdGy9bjzZOAVuhIvgrYfpefT+NtHFd9Q4IcpWpjJY54VP5J UtBfZ/4gN6q5uJSqjmK1DHEJOH4z4SNIyLKpbhq9VX1wdLUOax70aWHTJAhtEzjJ i80CUtR6H4MaREiQF8e4iY9LjaYpDT3CApd2peYOwS4HXmGnwOczU6ILQRFbB40v trS6ycj4T66GLFqVbHtEhNRp/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOGUkcTb /APwFaCiuO8ypXNMDpKRMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVRWNcuniHd/sG6Cs6dPDiX8awlfKhV5UHssuY19M56ng6+zE9h4Rv52kVlN7 xKPGZGqm69PR2gyN0HUwZ4d9Wb4nwSuQlnqDF2HKcjLza0zc9QHWZbWGKvev6O23 beT+A+yRIjborFz3kNM7z9PI9GoMGFoYSYaZNm4nYj/ozVa2TussDHjkzCK7BGYh fSzY9PpLmPdzr9KhvybkS1LlqzJsiQA1UdPI1EzzG+xQqHS8P1cQr/CBri7LsK4Z 3nUBEommHj8Cv1cd4JQXku4dNcrsma6+9jiN2fXJrzDqvG/+Hs+MwW+4VJJbDlX4 MKiDrQp4G46bl1uPs7YLNfeDfA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:38 2026 by rpki-client