$ rpki-client -vvf rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft File: 3xhzEfoJx3m4sV2UekbU9O3MUFM.mft (raw, json) Hash identifier: Dnxg1EUr0o5ait/zWYiuK92RTpsgJSYCcpJFO8rkGqw= Subject key identifier: 13:0A:61:E5:C6:C8:4E:F2:14:41:B8:B9:F2:1C:E8:71:10:88:EA:EF Authority key identifier: DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 Certificate issuer: /CN=A911AA05/serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft Manifest number: AA Signing time: Wed 25 Mar 2026 06:23:30 +0000 Manifest this update: Wed 25 Mar 2026 06:23:29 +0000 Manifest next update: Wed 01 Apr 2026 06:23:29 +0000 Files and hashes: 1: 3xhzEfoJx3m4sV2UekbU9O3MUFM.crl (hash: Dq1iE4bEX7VYSx4EQQH745tQ/ElhhKFu/SsEA77bPpM=) 2: F1940290212911F087425013C4F9AE02.roa (hash: aIejdLAewgudU6U+kv+7+KGIiYEWb/Zyhioe0M0XWcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AA05, serialNumber=DF187311FA09C779B8B15D947A46D4F4EDCC5053 Validity Not Before: Mar 25 06:23:29 2026 GMT Not After : Apr 1 06:23:29 2026 GMT Subject: CN=69c37f62-e439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:19:75:4e:44:a8:49:60:88:74:94:74:f1:f3: 86:11:05:8b:5d:ba:71:af:39:65:b3:a0:e3:20:a6: 32:fc:56:95:fd:38:18:9f:07:1a:38:21:0f:5e:15: f9:67:82:24:b5:4d:e1:6c:ab:b0:29:fb:16:ba:78: e7:6d:5c:d2:56:fb:5a:40:21:54:92:04:7a:37:e3: 02:44:28:4a:98:d1:23:5a:d9:af:1c:51:31:3f:7e: d3:2d:09:55:15:2e:40:d3:6b:73:5e:8f:0c:aa:ee: a7:ce:ab:1d:28:38:8f:f4:27:2b:c7:84:66:71:e9: 7a:9d:3e:90:3d:2b:7d:20:bb:39:00:eb:7b:4c:c2: 7e:f8:4c:ba:76:4e:31:a8:e3:1b:31:18:2f:0b:09: f6:f7:6f:9b:04:cc:62:2f:02:f1:84:a7:9d:68:db: e0:41:3d:ce:6d:45:39:b8:45:1b:47:04:4c:8b:db: 59:8f:53:71:13:ca:b2:63:68:14:f4:48:53:22:41: b7:f4:ec:1a:29:71:03:e9:83:7f:2a:10:4a:e3:55: ab:06:8a:6f:9f:fa:c2:f9:50:b5:41:34:73:b6:2a: e8:d2:65:1e:73:67:53:1a:cc:e8:f6:1f:41:4a:b1: bf:c9:15:f8:f6:6d:b1:0f:ee:0f:34:41:e9:df:c6: a6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0A:61:E5:C6:C8:4E:F2:14:41:B8:B9:F2:1C:E8:71:10:88:EA:EF X509v3 Authority Key Identifier: keyid:DF:18:73:11:FA:09:C7:79:B8:B1:5D:94:7A:46:D4:F4:ED:CC:50:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xhzEfoJx3m4sV2UekbU9O3MUFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AA05/4DC1D926212911F0A66A4972C4F9AE02/3xhzEfoJx3m4sV2UekbU9O3MUFM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:78:7d:10:8c:35:07:71:98:6c:35:a6:a5:c8:39:62:e0:f5: ab:fa:d3:d6:d4:1c:26:f3:23:2e:09:a2:ed:ab:af:ef:f0:f1: f7:21:a7:89:01:9c:a0:0e:ea:7b:91:76:32:2f:99:6a:8d:b9: ac:73:cb:2a:22:78:76:4c:24:38:72:cc:76:49:98:b7:29:ff: 96:51:ac:f9:6c:6e:12:1f:ca:de:19:69:ea:64:17:b4:2f:72: 2d:2a:67:36:2f:bd:7f:85:a4:15:64:5d:31:14:85:94:90:d8: d2:8e:47:a7:81:48:6d:f3:e9:75:f8:a7:76:8d:7e:a7:83:cb: 2f:7e:a0:c7:91:ae:1b:4c:64:69:3a:bc:7a:9b:1c:62:36:4a: 36:e0:25:d9:e7:ac:d2:9e:d8:77:0c:a4:f8:60:f7:e6:ec:9b: 98:49:28:83:47:9b:58:0f:71:2f:0d:82:27:e2:7a:ad:16:ea: 76:33:32:27:b9:aa:02:6a:41:6f:5c:12:5e:f5:60:86:3b:b1: b8:87:7c:3f:86:38:ce:31:6b:92:d6:7b:f5:90:6c:2b:ac:87: 5e:f4:40:5c:54:2d:c3:97:78:3d:0a:bd:e2:9d:f1:4f:ce:a7: 95:b2:dd:f8:ce:f4:70:8d:dd:66:53:aa:f3:a2:f5:66:82:81: 9c:4a:37:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBMDUxMTAvBgNVBAUTKERGMTg3MzExRkEwOUM3NzlCOEIxNUQ5NDdBNDZENEY0 RURDQzUwNTMwHhcNMjYwMzI1MDYyMzI5WhcNMjYwNDAxMDYyMzI5WjAYMRYwFAYD VQQDEw02OWMzN2Y2Mi1lNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAixl1TkSoSWCIdJR08fOGEQWLXbpxrzlls6DjIKYy/FaV/TgYnwcaOCEPXhX5 Z4IktU3hbKuwKfsWunjnbVzSVvtaQCFUkgR6N+MCRChKmNEjWtmvHFExP37TLQlV FS5A02tzXo8Mqu6nzqsdKDiP9Ccrx4Rmcel6nT6QPSt9ILs5AOt7TMJ++Ey6dk4x qOMbMRgvCwn292+bBMxiLwLxhKedaNvgQT3ObUU5uEUbRwRMi9tZj1NxE8qyY2gU 9EhTIkG39OwaKXED6YN/KhBK41WrBopvn/rC+VC1QTRztiro0mUec2dTGszo9h9B SrG/yRX49m2xD+4PNEHp38amFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBMKYeXG yE7yFEG4ufIc6HEQiOrvMB8GA1UdIwQYMBaAFN8YcxH6Ccd5uLFdlHpG1PTtzFBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUEwNS80REMxRDkyNjIx MjkxMUYwQTY2QTQ5NzJDNEY5QUUwMi8zeGh6RWZvSngzbTRzVjJVZWtiVTlPM01V Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4aHpFZm9KeDNtNHNWMlVla2JVOU8zTVVGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUEwNS80REMxRDkyNjIxMjkxMUYwQTY2QTQ5NzJDNEY5QUUwMi8zeGh6RWZvSngz bTRzVjJVZWtiVTlPM01VRk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeHh9EIw1B3GYbDWmpcg5YuD1q/rT1tQcJvMjLgmi7auv7/Dx9yGniQGcoA7q e5F2Mi+Zao25rHPLKiJ4dkwkOHLMdkmYtyn/llGs+WxuEh/K3hlp6mQXtC9yLSpn Ni+9f4WkFWRdMRSFlJDY0o5Hp4FIbfPpdfindo1+p4PLL36gx5GuG0xkaTq8epsc YjZKNuAl2ees0p7Ydwyk+GD35uybmEkog0ebWA9xLw2CJ+J6rRbqdjMyJ7mqAmpB b1wSXvVghjuxuId8P4Y4zjFrktZ79ZBsK6yHXvRAXFQtw5d4PQq94p3xT86nlbLd +M70cI3dZlOq86L1ZoKBnEo34A== -----END CERTIFICATE-----Generated at Thu Mar 26 19:32:51 2026 by rpki-client