$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: QrlIdh7wEIHdLi8o86BXpRHIRbMuxI2VYXVMToITDTU= Subject key identifier: 16:F7:D1:1B:03:F7:37:A2:3D:B0:74:9A:19:A9:E1:F0:E5:56:17:BF Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C89 Signing time: Tue 24 Mar 2026 18:25:27 +0000 Manifest this update: Tue 24 Mar 2026 18:25:27 +0000 Manifest next update: Tue 31 Mar 2026 18:25:27 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: SeV/UijzxIapv+msov5Pj0Owt23l4jGzrIE1FVF4prc=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:25:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Mar 24 18:25:27 2026 GMT Not After : Mar 31 18:25:27 2026 GMT Subject: CN=69c2d717-dd0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:86:e9:ac:a6:03:8a:7d:64:90:62:b5:43:90: df:6d:73:d9:9f:67:4a:e4:09:83:05:f2:4c:a8:af: 15:6b:3c:a1:7a:b9:6d:af:48:ed:90:ef:23:2d:60: 5b:6a:09:44:c1:b8:a1:ee:bc:35:19:17:d0:7a:ed: 85:71:33:87:29:f9:c7:dc:c4:49:8a:19:c5:88:da: ab:fd:51:ac:1d:da:1c:4e:57:59:67:17:a4:b0:1d: c9:31:f3:9f:90:4e:61:ee:b3:82:98:05:20:76:27: fc:af:e9:42:5a:b1:66:8b:38:ef:41:94:b1:29:2d: 5d:b1:13:b3:e2:18:0f:6d:97:8b:ba:3c:e0:d1:a0: 55:50:d1:f1:59:25:78:10:bf:a6:a0:89:38:19:79: 4d:37:d3:0e:85:2c:b5:07:e0:27:3f:b6:2e:46:50: fc:84:f8:8b:cc:e5:b6:1b:ff:00:4e:b3:59:a2:c5: da:e2:1d:b5:13:f1:2a:c5:7a:27:cd:fd:cf:f1:c3: 35:78:57:a3:5f:7d:12:bc:a5:3b:94:df:ae:1c:f9: c0:7b:79:38:78:c7:2e:3c:0e:4b:4f:08:0e:52:91: 59:0f:52:4c:da:a2:65:82:9e:62:57:ae:86:ef:27: be:43:ee:6c:a6:5c:f1:cc:0f:e3:37:fb:22:9e:3b: 52:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F7:D1:1B:03:F7:37:A2:3D:B0:74:9A:19:A9:E1:F0:E5:56:17:BF X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:45:95:44:44:0d:60:4b:ce:fe:a8:f8:01:25:1d:22:ef:bf: ad:29:e9:1c:6b:b0:b9:87:e2:68:ac:43:5c:e1:81:35:bd:ff: ab:55:cc:bc:27:67:77:8f:2b:c3:e9:86:da:ce:9c:7b:0d:54: 08:07:11:0d:0f:c5:40:39:f0:71:68:69:c6:de:85:1c:04:1d: 50:fd:4a:6b:d2:4a:03:fe:80:bd:07:10:7e:b2:c3:10:b1:fb: dc:b0:55:19:34:18:2b:e5:e5:9e:cd:c5:c9:7c:6b:ae:1f:dd: bd:f4:f8:01:60:a8:16:be:4a:6e:4e:11:c5:43:f4:fe:1f:a8: d0:00:4c:1b:25:b4:ef:eb:5b:a2:5f:f1:78:b2:75:66:c2:05: 5b:0a:63:92:11:e7:b3:3a:aa:52:50:b7:3b:5e:82:56:15:03: ca:32:22:76:8b:b8:cd:94:fc:bb:c1:20:66:2f:01:0a:af:a2: 9e:ef:77:6c:d3:c8:e3:da:62:23:8c:0d:f0:1e:6a:7b:44:3f: 20:e5:6a:34:95:cf:ae:ea:ba:8c:9c:c8:c5:a1:a8:15:ff:5f: f3:cf:88:28:ee:62:a2:d4:e6:99:3b:75:f3:fd:6d:dd:b5:b3: fb:04:86:c4:07:de:f3:9c:18:60:8c:b0:a3:8f:4a:82:ac:28: 40:28:b7:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMzI0MTgyNTI3WhcNMjYwMzMxMTgyNTI3WjAYMRYwFAYD VQQDEw02OWMyZDcxNy1kZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIbprKYDin1kkGK1Q5DfbXPZn2dK5AmDBfJMqK8Vazyherltr0jtkO8jLWBb aglEwbih7rw1GRfQeu2FcTOHKfnH3MRJihnFiNqr/VGsHdocTldZZxeksB3JMfOf kE5h7rOCmAUgdif8r+lCWrFmizjvQZSxKS1dsROz4hgPbZeLujzg0aBVUNHxWSV4 EL+moIk4GXlNN9MOhSy1B+AnP7YuRlD8hPiLzOW2G/8ATrNZosXa4h21E/EqxXon zf3P8cM1eFejX30SvKU7lN+uHPnAe3k4eMcuPA5LTwgOUpFZD1JM2qJlgp5iV66G 7ye+Q+5splzxzA/jN/sinjtS/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBb30RsD 9zeiPbB0mhmp4fDlVhe/MB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGkWVREQNYEvO/qj4ASUdIu+/rSnpHGuwuYfiaKxDXOGBNb3/q1XMvCdnd48r w+mG2s6cew1UCAcRDQ/FQDnwcWhpxt6FHAQdUP1Ka9JKA/6AvQcQfrLDELH73LBV GTQYK+Xlns3FyXxrrh/dvfT4AWCoFr5Kbk4RxUP0/h+o0ABMGyW07+tbol/xeLJ1 ZsIFWwpjkhHnszqqUlC3O16CVhUDyjIidou4zZT8u8EgZi8BCq+inu93bNPI49pi I4wN8B5qe0Q/IOVqNJXPruq6jJzIxaGoFf9f88+IKO5iotTmmTt18/1t3bWz+wSG xAfe85wYYIywo49KgqwoQCi32Q== -----END CERTIFICATE-----Generated at Thu Mar 26 00:59:35 2026 by rpki-client