$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: 0kQ5gZC4OFxVux0wkqaxBjNp9w+SaQ+RWH6z3EEIErM= Subject key identifier: 39:8A:8E:43:B6:23:02:19:31:8E:60:68:77:F9:01:57:88:D1:77:64 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: B4 Signing time: Wed 25 Mar 2026 22:42:49 +0000 Manifest this update: Wed 25 Mar 2026 22:42:49 +0000 Manifest next update: Wed 01 Apr 2026 22:42:49 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: LL/38Pi/J28PTYl+KXo5bpo1AHaIUAPxz4Zj8O4IwGg=) 2: 88E4BD9A288D11F1BCA0C177AC833773.roa (hash: ePFNe4XO2TIzeYfRmxq7NksAW3nOo1W0WY0Fjnbncb4=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: yz2U9PDGW5yj6K3epzpiZUOJr61JO2DFHRCaKrcoOK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 22:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Mar 25 22:42:49 2026 GMT Not After : Apr 1 22:42:49 2026 GMT Subject: CN=69c464e9-579b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:61:ee:87:47:30:43:a7:10:a1:c9:62:34: ca:0e:0a:18:01:87:87:cf:e7:1e:4b:ee:ca:ff:b9: 88:f5:1d:aa:c9:6f:87:3f:2a:9a:d9:08:db:7b:aa: 37:c3:24:a7:12:64:a5:24:dd:55:2e:72:bf:53:06: 4d:a0:20:06:97:90:9e:90:d0:a9:11:61:25:07:cb: 10:46:7b:85:63:a4:17:96:9a:02:16:c7:57:4b:f5: 5f:d0:fc:28:04:de:bd:54:f2:00:82:ea:08:13:60: 73:6d:3c:41:36:0f:b1:10:b4:20:d7:b9:cf:d0:aa: 1a:1c:0a:85:4e:5e:93:45:b7:d9:2a:0e:2a:2b:71: ef:31:a6:ba:2d:be:d3:1a:6a:68:4c:2f:12:cb:c1: 63:dd:90:d8:02:5a:83:62:48:30:7c:39:0d:4f:d7: 1b:5e:c8:0a:b2:ee:50:7f:ae:55:ef:21:55:87:a9: f7:9c:fc:9b:ba:d2:b3:0a:43:82:c5:0b:77:86:58: 65:87:89:14:c0:7b:4c:2a:31:dc:f7:e1:e9:1e:b4: eb:e9:5f:d7:4d:54:d5:51:69:cb:66:f7:e4:2c:01: 3c:cf:c4:b7:95:15:ec:54:fa:8a:17:83:3d:b8:1d: bf:b4:2a:58:d0:9d:ea:fb:43:68:d2:49:5d:c7:88: b2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8A:8E:43:B6:23:02:19:31:8E:60:68:77:F9:01:57:88:D1:77:64 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ac:c2:b5:50:dd:a5:23:92:9e:41:0e:20:99:fb:e9:ee:60: 1a:d8:82:e7:5e:78:29:14:d8:64:21:f7:b8:69:67:71:36:d6: e3:d6:32:56:a3:35:82:36:9a:af:6b:3c:e8:60:be:7c:5e:ce: 21:57:fc:d4:4a:16:f5:b3:8b:de:c0:aa:ab:01:08:1b:b2:97: 4f:4d:3f:68:e0:43:8b:9c:2b:7c:8c:0f:7a:d5:e0:a6:45:7c: 19:4f:83:96:d1:d2:b3:8c:5d:52:ca:b7:7b:34:39:fb:d3:a6: 70:e1:e0:d4:8b:36:20:e1:03:65:9c:bd:0f:82:15:f4:e9:63: 30:8f:a1:5c:bb:c9:d4:0f:ce:3c:33:41:30:a0:3f:f4:87:34: 2c:71:41:36:fa:02:a8:bb:34:8a:d4:bd:d4:6d:52:db:1b:2d: 7f:81:df:62:0a:49:3d:27:3a:9b:ec:62:c3:c5:09:64:5f:d9: de:7d:f1:35:ff:b7:58:ea:79:61:fa:0c:6b:20:24:fa:90:18: 35:f7:6f:14:26:85:9d:02:19:e0:a2:de:2f:6e:1b:7b:17:32: 2c:4d:e6:ab:ce:f9:e9:f6:e0:3c:b4:b5:18:60:1b:7b:76:b9: 72:05:29:11:67:25:67:b9:19:84:b4:f3:e0:83:0e:96:24:59: 9f:45:4c:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjYwMzI1MjI0MjQ5WhcNMjYwNDAxMjI0MjQ5WjAYMRYwFAYD VQQDEw02OWM0NjRlOS01NzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCNh7odHMEOnEKHJYjTKDgoYAYeHz+ceS+7K/7mI9R2qyW+HPyqa2Qjbe6o3 wySnEmSlJN1VLnK/UwZNoCAGl5CekNCpEWElB8sQRnuFY6QXlpoCFsdXS/Vf0Pwo BN69VPIAguoIE2BzbTxBNg+xELQg17nP0KoaHAqFTl6TRbfZKg4qK3HvMaa6Lb7T GmpoTC8Sy8Fj3ZDYAlqDYkgwfDkNT9cbXsgKsu5Qf65V7yFVh6n3nPybutKzCkOC xQt3hlhlh4kUwHtMKjHc9+HpHrTr6V/XTVTVUWnLZvfkLAE8z8S3lRXsVPqKF4M9 uB2/tCpY0J3q+0No0kldx4iynQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDmKjkO2 IwIZMY5gaHf5AVeI0XdkMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgazCtVDdpSOSnkEOIJn76e5gGtiC5154KRTYZCH3uGlncTbW49YyVqM1gjaa r2s86GC+fF7OIVf81EoW9bOL3sCqqwEIG7KXT00/aOBDi5wrfIwPetXgpkV8GU+D ltHSs4xdUsq3ezQ5+9OmcOHg1Is2IOEDZZy9D4IV9OljMI+hXLvJ1A/OPDNBMKA/ 9Ic0LHFBNvoCqLs0itS91G1S2xstf4HfYgpJPSc6m+xiw8UJZF/Z3n3xNf+3WOp5 YfoMayAk+pAYNfdvFCaFnQIZ4KLeL24bexcyLE3mq8756fbgPLS1GGAbe3a5cgUp EWclZ7kZhLTz4IMOliRZn0VMLg== -----END CERTIFICATE-----Generated at Thu Mar 26 12:40:05 2026 by rpki-client