$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: ASth31hS6Bf04jGxaaAEAe3ZR0ddzXGYuz+CsolOvYE= Subject key identifier: 4A:F2:0F:21:BB:FB:E6:CA:FD:D9:38:98:8C:28:D2:DA:FB:52:DD:AD Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C89 Signing time: Tue 24 Mar 2026 18:25:16 +0000 Manifest this update: Tue 24 Mar 2026 18:25:16 +0000 Manifest next update: Tue 31 Mar 2026 18:25:16 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: 3ZdQW0QFNtEDIGaxVUne6O+86QuFhKbDCkqqFy7txPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Mar 24 18:25:16 2026 GMT Not After : Mar 31 18:25:16 2026 GMT Subject: CN=69c2d70c-c3f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:00:ef:06:4d:ed:95:62:56:33:d4:3f:b8:19: 45:45:da:16:a6:88:93:28:e7:5b:6a:e1:f6:ed:5d: a6:ba:c2:24:f5:6d:68:12:7a:a3:8c:83:82:ab:a9: fc:22:df:4c:f4:de:68:70:65:f4:f2:c5:39:94:46: dd:7e:e5:4d:66:4f:3f:4f:81:61:20:37:f8:64:4e: 74:fd:63:bd:44:14:34:92:5a:45:ed:62:62:8a:76: be:e0:e7:a3:38:8f:fc:40:53:37:d4:71:49:a6:95: 7d:03:93:16:ce:2b:52:82:29:bd:6a:d5:4a:73:27: 81:d9:4e:f2:6e:4a:80:3a:2e:59:bd:07:2e:25:36: da:d0:33:eb:9e:86:c0:16:7d:41:ac:8e:64:7c:83: 39:8e:1c:50:6d:9b:51:2f:ae:03:a2:7a:ab:b9:7a: c4:5d:35:14:d5:55:67:03:e7:44:98:e2:9f:14:b5: 80:a1:24:7a:81:9a:b4:72:06:fb:38:40:b8:cb:47: 9a:2b:52:ce:fc:05:9d:27:e7:13:c1:c5:80:27:e4: 67:15:d9:f6:0b:9d:87:88:0b:54:4f:79:fd:a5:d0: 30:f9:a1:b8:2f:1b:5c:7f:bd:bf:4b:f4:49:e6:fa: 49:78:49:0d:99:75:d4:b8:70:38:80:ee:dd:c3:23: 32:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F2:0F:21:BB:FB:E6:CA:FD:D9:38:98:8C:28:D2:DA:FB:52:DD:AD X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:44:cf:07:5f:f0:38:6b:77:15:e8:71:b1:e5:5b:12:ea:cd: c8:44:07:17:bc:47:c5:e2:5b:86:55:9f:62:f8:66:2f:d7:3c: e5:65:96:69:c3:3f:02:3d:b0:c7:c3:d4:78:07:c5:e8:c0:ef: a3:4f:d2:65:a5:70:60:64:6c:b3:47:54:ab:be:23:d8:40:f7: ff:a1:7e:33:e3:ca:83:ef:23:33:bf:18:d5:4a:af:5f:16:80: f8:32:13:e2:ec:2a:00:97:4d:fc:6f:61:8a:7b:82:1e:6f:48: 3b:7f:7c:f4:a5:e6:04:b9:a8:f8:c0:e8:b0:d3:9f:4e:bd:92: 77:29:23:c0:77:ab:2e:8a:02:7e:98:08:e9:1b:fb:f5:d7:bf: e8:0c:35:f9:ce:3f:c9:7b:b5:98:01:41:8d:a7:06:ac:d5:0d: 82:52:cf:e4:95:e7:46:4f:6f:57:f4:bb:ae:f6:d7:cb:dc:ba: 57:a1:a9:d1:75:bd:d9:3c:99:a8:02:4f:f5:e2:e3:39:27:54: 9c:2f:87:b4:eb:bc:49:4e:a7:a8:41:8f:f4:bd:57:d3:5a:fc: d8:45:ec:28:b8:a6:42:a0:48:45:94:a6:7a:4e:ef:97:8c:bb: ac:68:4e:56:de:45:e8:f3:65:a8:37:f7:ef:b6:10:b2:0a:1d: 38:dd:eb:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjYwMzI0MTgyNTE2WhcNMjYwMzMxMTgyNTE2WjAYMRYwFAYD VQQDEw02OWMyZDcwYy1jM2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlwDvBk3tlWJWM9Q/uBlFRdoWpoiTKOdbauH27V2musIk9W1oEnqjjIOCq6n8 It9M9N5ocGX08sU5lEbdfuVNZk8/T4FhIDf4ZE50/WO9RBQ0klpF7WJiina+4Oej OI/8QFM31HFJppV9A5MWzitSgim9atVKcyeB2U7ybkqAOi5ZvQcuJTba0DPrnobA Fn1BrI5kfIM5jhxQbZtRL64DonqruXrEXTUU1VVnA+dEmOKfFLWAoSR6gZq0cgb7 OEC4y0eaK1LO/AWdJ+cTwcWAJ+RnFdn2C52HiAtUT3n9pdAw+aG4Lxtcf72/S/RJ 5vpJeEkNmXXUuHA4gO7dwyMyQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEryDyG7 ++bK/dk4mIwo0tr7Ut2tMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADUTPB1/wOGt3FehxseVbEurNyEQHF7xHxeJbhlWfYvhmL9c85WWWacM/Aj2w x8PUeAfF6MDvo0/SZaVwYGRss0dUq74j2ED3/6F+M+PKg+8jM78Y1UqvXxaA+DIT 4uwqAJdN/G9hinuCHm9IO3989KXmBLmo+MDosNOfTr2SdykjwHerLooCfpgI6Rv7 9de/6Aw1+c4/yXu1mAFBjacGrNUNglLP5JXnRk9vV/S7rvbXy9y6V6Gp0XW92TyZ qAJP9eLjOSdUnC+HtOu8SU6nqEGP9L1X01r82EXsKLimQqBIRZSmek7vl4y7rGhO Vt5F6PNlqDf377YQsgodON3rlg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:36:11 2026 by rpki-client