$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: Dvub1W+dLEP6kGJbpT8zdXLjJhy0WTCW9GjlxPRXx5U= Subject key identifier: 56:E2:F9:2C:AF:53:FB:B7:63:19:A4:4C:EA:93:1B:30:2E:84:DD:BB Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 80 Signing time: Wed 25 Mar 2026 06:58:56 +0000 Manifest this update: Wed 25 Mar 2026 06:58:55 +0000 Manifest next update: Wed 01 Apr 2026 06:58:55 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: WtrMhxQyUygEOJXYBab7XYy4OkM4MDTl4VdKejXRBXI=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Mar 25 06:58:55 2026 GMT Not After : Apr 1 06:58:55 2026 GMT Subject: CN=69c387b0-1bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dd:d8:c3:f6:43:a9:de:eb:4e:c3:23:0c:bf: 79:a2:7c:7e:a3:37:0f:fd:a8:2f:96:e5:aa:76:80: 39:7b:e3:32:a7:6c:60:f0:84:89:73:e4:5e:12:87: 69:81:3d:5b:1a:3b:ae:b1:4d:85:f9:7d:42:39:c6: 83:c8:bb:43:2e:10:7e:be:e2:8a:9d:60:12:aa:ac: 16:0c:30:0d:64:c6:1a:a5:c3:8f:bd:e4:2b:76:dd: 40:16:35:7c:f4:bb:5d:86:72:61:e4:f5:49:c2:b6: 66:dd:c5:d0:30:c7:cf:35:a9:30:5c:36:cd:a0:13: 6d:17:1d:19:0c:a3:6f:43:36:fc:ba:69:a3:d3:f0: 1a:c2:76:a1:90:e9:a2:14:fb:e3:01:da:fb:ef:e3: f5:ca:5d:a8:3b:3e:32:f7:33:03:a5:4c:7a:00:6f: 68:69:85:5b:7e:21:b6:22:53:af:83:3b:9b:4c:3e: 35:c6:78:ca:d7:86:76:70:20:e4:18:de:2a:81:55: f6:2a:71:a6:d7:92:f0:d5:ed:c7:9c:3b:8a:6b:aa: 5e:09:12:90:fd:6e:ce:f2:bb:a0:33:f0:be:65:d8: 87:8e:c5:c5:a3:b2:49:e4:5c:5c:73:c6:8c:a1:b8: cb:7c:91:49:b9:95:77:53:9a:5a:b1:d2:ec:dc:bc: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E2:F9:2C:AF:53:FB:B7:63:19:A4:4C:EA:93:1B:30:2E:84:DD:BB X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c5:d4:73:3a:c8:bd:2d:fd:e3:13:8c:1e:65:ff:50:e3:0f: ae:8d:ea:e5:d2:46:4f:32:ca:bb:bf:f5:20:44:86:d3:e7:4e: ae:04:95:80:b2:21:ef:52:da:6f:f0:f2:17:95:f2:73:ba:4f: 4d:40:a1:3b:a7:c1:08:47:e5:dd:bb:24:af:30:f1:a9:fa:49: 9a:7c:37:35:d0:20:a3:19:83:58:4f:be:54:35:84:68:de:89: 3c:47:a8:9a:21:77:82:95:c4:18:f4:a0:b7:5f:d9:4f:3b:39: ca:c7:d7:08:cb:e3:ee:98:87:23:04:24:74:f3:e8:79:ec:39: 33:e0:bf:78:36:97:ef:5a:6e:46:ce:dd:05:08:ff:4f:87:d0: c7:29:41:13:68:a9:13:6c:d8:35:4b:e6:2f:78:d9:9a:54:d7: fc:18:2f:49:43:9c:43:b0:ae:d1:2f:7e:94:10:b3:30:bc:d8: a3:52:9b:55:91:c3:b1:61:bf:ea:33:bb:a6:c8:4f:10:72:a1: 52:42:e3:55:d0:0a:2d:fd:0d:2b:1e:d2:bd:b9:17:05:a9:69: b3:e4:cb:71:49:09:b1:cf:36:7a:60:33:ee:c6:52:19:cd:b4: 52:70:90:73:33:16:3e:64:6e:ae:5c:48:4c:ab:ff:2b:18:d8: 81:5c:2b:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy NTJERjFDQkQwHhcNMjYwMzI1MDY1ODU1WhcNMjYwNDAxMDY1ODU1WjAYMRYwFAYD VQQDEw02OWMzODdiMC0xYmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN3Yw/ZDqd7rTsMjDL95onx+ozcP/agvluWqdoA5e+Myp2xg8ISJc+ReEodp gT1bGjuusU2F+X1COcaDyLtDLhB+vuKKnWASqqwWDDANZMYapcOPveQrdt1AFjV8 9LtdhnJh5PVJwrZm3cXQMMfPNakwXDbNoBNtFx0ZDKNvQzb8ummj0/AawnahkOmi FPvjAdr77+P1yl2oOz4y9zMDpUx6AG9oaYVbfiG2IlOvgzubTD41xnjK14Z2cCDk GN4qgVX2KnGm15Lw1e3HnDuKa6peCRKQ/W7O8rugM/C+ZdiHjsXFo7JJ5Fxcc8aM objLfJFJuZV3U5pasdLs3LzlcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFbi+Syv U/u3YxmkTOqTGzAuhN27MB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlsXUczrIvS394xOMHmX/UOMPro3q5dJGTzLKu7/1IESG0+dOrgSVgLIh71La b/DyF5Xyc7pPTUChO6fBCEfl3bskrzDxqfpJmnw3NdAgoxmDWE++VDWEaN6JPEeo miF3gpXEGPSgt1/ZTzs5ysfXCMvj7piHIwQkdPPoeew5M+C/eDaX71puRs7dBQj/ T4fQxylBE2ipE2zYNUvmL3jZmlTX/BgvSUOcQ7Cu0S9+lBCzMLzYo1KbVZHDsWG/ 6jO7pshPEHKhUkLjVdAKLf0NKx7SvbkXBalps+TLcUkJsc82emAz7sZSGc20UnCQ czMWPmRurlxITKv/KxjYgVwrPQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:41 2026 by rpki-client