$ rpki-client -vvf rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft File: l3a_sejqihq8j4z9b2Yic23YyjQ.mft (raw, json) Hash identifier: +O4jMnHQeIF9mJml3rynYWe79Db0KV/Quk71zAGkic0= Subject key identifier: 4E:1A:9D:A2:BB:91:74:DF:28:C0:4D:6C:04:CF:40:CE:AC:D2:1E:23 Authority key identifier: 97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 Certificate issuer: /CN=A91616DC/serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Certificate serial: 0D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft Manifest number: 0CF6 Signing time: Tue 24 Mar 2026 18:12:58 +0000 Manifest this update: Tue 24 Mar 2026 18:12:58 +0000 Manifest next update: Tue 31 Mar 2026 18:12:58 +0000 Files and hashes: 1: l3a_sejqihq8j4z9b2Yic23YyjQ.crl (hash: I2sSE0d2UncvGpjdiDgCyIDzvAjBxIrndWxZCLf14ow=) 2: 64A2C96E919E11EEA5241125C4F9AE02.roa (hash: qjBgBEX3jOgtbJNGuGFTdQVysziOvPHYcPyyJLAbTnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3366 (0xd26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91616DC, serialNumber=9776BFB1E8EA8A1ABC8F8CFD6F6622736DD8CA34 Validity Not Before: Mar 24 18:12:58 2026 GMT Not After : Mar 31 18:12:58 2026 GMT Subject: CN=69c2d42a-499f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fa:1c:45:69:53:b9:70:ce:f1:60:7e:08:3a: 03:20:c6:00:97:0a:d3:e2:b8:a1:2e:f1:23:af:19: 82:e7:e1:a3:96:f7:6c:88:2e:c3:d6:94:97:08:9f: 9a:f8:a8:f0:07:a3:e0:db:97:8a:ea:94:fb:a0:53: b0:60:df:97:0d:eb:df:23:1b:b6:cf:99:fb:e9:48: 33:9f:92:ba:07:b6:e0:aa:bf:19:fb:22:ff:0b:6b: 3b:52:f9:b9:78:1e:16:87:97:3a:db:42:ef:e3:53: ed:de:a5:f5:01:aa:37:00:34:d9:1e:4e:2c:73:5f: f7:f9:84:4d:48:c7:31:6f:79:a1:79:d0:54:cb:37: 1d:89:ea:b0:ad:62:7c:4d:50:cb:e4:63:91:fe:bf: c2:af:1f:a2:88:3f:af:24:20:fe:f6:1f:30:27:14: 8b:76:4a:98:a8:ad:23:f9:fe:a2:4d:60:ce:7a:83: 9e:e6:c8:d7:b7:79:b3:2a:23:9d:ad:77:36:1c:cd: 82:8a:13:91:d9:db:ac:ec:6e:bc:a4:cf:25:95:4d: 2f:52:3c:8d:c1:02:32:94:5c:af:9f:d5:c7:95:65: 71:c7:d6:19:86:45:41:26:d7:4b:a1:63:65:c6:f2: 6f:06:55:a6:e3:4d:65:47:e3:1c:13:51:d3:80:07: 5a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1A:9D:A2:BB:91:74:DF:28:C0:4D:6C:04:CF:40:CE:AC:D2:1E:23 X509v3 Authority Key Identifier: keyid:97:76:BF:B1:E8:EA:8A:1A:BC:8F:8C:FD:6F:66:22:73:6D:D8:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l3a_sejqihq8j4z9b2Yic23YyjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91616DC/44A7E5E8095F11EAA281681DC4F9AE02/l3a_sejqihq8j4z9b2Yic23YyjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:c9:99:49:5e:06:7e:ac:b1:87:30:fe:d9:3d:91:84:65:c3: e2:1e:04:a6:fa:ce:cb:6a:c1:4f:b9:2d:4f:89:3d:99:1d:61: b5:c1:b8:50:89:ef:d7:68:df:eb:d8:6e:9c:8c:af:62:7b:c4: 8c:1d:4b:d6:7c:90:43:c5:2c:8a:cc:15:86:2b:57:c0:f6:c2: 44:82:a7:54:6d:04:ee:9b:33:da:4e:68:c5:98:2a:15:21:7a: bf:f4:cd:fd:63:71:ce:5d:85:0d:36:52:42:42:c6:86:33:d9: 1c:91:38:69:94:e0:b2:0f:57:cc:16:12:b1:48:d7:1e:39:1e: 86:9a:95:b1:30:e3:b3:a9:13:ba:2b:ab:7e:ad:1c:8d:ed:96: 3a:38:aa:1a:63:2b:56:79:9a:f6:85:8e:3c:74:77:15:7f:55: e4:d4:01:1e:38:70:ad:de:d5:24:ae:16:2b:d3:53:7f:95:15: 26:fe:bf:0a:2b:58:6b:f6:96:f0:a3:8f:1c:04:82:a8:4d:fd: da:a4:c7:09:0a:c3:a1:0a:5f:4a:7d:82:8d:14:ce:e1:49:d2: 17:1d:29:7b:44:54:e1:3d:f7:a6:d9:95:34:0d:59:24:bf:32: 06:0d:b7:d4:f4:bd:f1:10:82:53:a7:08:ca:71:e1:44:54:2a: 1e:ef:de:b0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2REMxMTAvBgNVBAUTKDk3NzZCRkIxRThFQThBMUFCQzhGOENGRDZGNjYyMjcz NkREOENBMzQwHhcNMjYwMzI0MTgxMjU4WhcNMjYwMzMxMTgxMjU4WjAYMRYwFAYD VQQDEw02OWMyZDQyYS00OTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfocRWlTuXDO8WB+CDoDIMYAlwrT4rihLvEjrxmC5+GjlvdsiC7D1pSXCJ+a +KjwB6Pg25eK6pT7oFOwYN+XDevfIxu2z5n76Ugzn5K6B7bgqr8Z+yL/C2s7Uvm5 eB4Wh5c620Lv41Pt3qX1Aao3ADTZHk4sc1/3+YRNSMcxb3mhedBUyzcdieqwrWJ8 TVDL5GOR/r/Crx+iiD+vJCD+9h8wJxSLdkqYqK0j+f6iTWDOeoOe5sjXt3mzKiOd rXc2HM2CihOR2dus7G68pM8llU0vUjyNwQIylFyvn9XHlWVxx9YZhkVBJtdLoWNl xvJvBlWm401lR+McE1HTgAda5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE4anaK7 kXTfKMBNbATPQM6s0h4jMB8GA1UdIwQYMBaAFJd2v7Ho6ooavI+M/W9mInNt2Mo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTZEQy80NEE3RTVFODA5 NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlocThqNHo5YjJZaWMyM1l5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wzYV9zZWpxaWhxOGo0ejliMllpYzIzWXlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTZEQy80NEE3RTVFODA5NUYxMUVBQTI4MTY4MURDNEY5QUUwMi9sM2Ffc2VqcWlo cThqNHo5YjJZaWMyM1l5alEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAucmZSV4GfqyxhzD+2T2RhGXD4h4EpvrOy2rBT7ktT4k9mR1htcG4UInv12jf 69hunIyvYnvEjB1L1nyQQ8UsiswVhitXwPbCRIKnVG0E7psz2k5oxZgqFSF6v/TN /WNxzl2FDTZSQkLGhjPZHJE4aZTgsg9XzBYSsUjXHjkehpqVsTDjs6kTuiurfq0c je2WOjiqGmMrVnma9oWOPHR3FX9V5NQBHjhwrd7VJK4WK9NTf5UVJv6/CitYa/aW 8KOPHASCqE392qTHCQrDoQpfSn2CjRTO4UnSFx0pe0RU4T33ptmVNA1ZJL8yBg23 1PS98RCCU6cIynHhRFQqHu/esA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:46:04 2026 by rpki-client