$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft File: u3QQVrccdV0D-5zyFKQSTKTzdgw.mft (raw, json) Hash identifier: MB1KbBA5OZZLKLbFj3xSUF2NS+zHh85Tsz5+BYLOSYU= Subject key identifier: FE:BE:69:9C:6C:B1:09:6D:E3:D3:B1:25:21:1F:4D:B1:5C:B6:BE:B2 Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft Manifest number: 0CA9 Signing time: Tue 24 Mar 2026 18:18:36 +0000 Manifest this update: Tue 24 Mar 2026 18:18:36 +0000 Manifest next update: Tue 31 Mar 2026 18:18:36 +0000 Files and hashes: 1: u3QQVrccdV0D-5zyFKQSTKTzdgw.crl (hash: Wq+ZvSoIV6EYsjXK4qfpTADvGtsXpLXJSyWmxh4kLko=) 2: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (hash: 1c7oqXTwOjBxpWnURCwd9ROwsARCXBKMI1YgV6KP1z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA, serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: Mar 24 18:18:36 2026 GMT Not After : Mar 31 18:18:36 2026 GMT Subject: CN=69c2d57c-9060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bb:7e:81:5c:6c:10:05:bd:b6:db:74:7f:dd: 31:3e:d8:6b:4f:10:7e:4c:59:70:33:c7:a6:45:5d: bb:4b:c3:8a:64:60:cf:27:4a:a7:97:9e:2e:d8:e0: c5:38:59:73:2c:79:fb:d6:08:af:2c:96:ac:36:51: 90:a0:08:38:45:ee:a4:97:97:d4:73:a2:d3:0e:41: b9:f4:25:b7:9f:ea:27:bd:96:a5:d0:bd:38:26:35: bd:9e:ea:f5:05:93:c8:5d:8b:f9:df:32:d8:db:ea: ed:34:ce:19:f1:a8:aa:21:16:a3:13:04:05:99:9b: 74:dc:20:61:4d:65:fb:7d:61:c5:3a:db:ed:91:f7: 39:bb:96:24:cb:6f:dd:c5:21:c3:8a:7d:18:a8:0a: 7f:b5:41:cf:08:01:ec:8e:53:34:ee:10:01:21:65: aa:33:3a:a1:3a:84:09:0a:e1:1b:70:12:38:09:de: 4a:9b:a7:cb:45:ba:93:a7:97:d3:ca:39:99:77:99: 57:cd:a2:ce:90:77:8b:c4:e3:6b:17:55:ac:a8:45: ff:6c:fa:12:ba:88:e3:73:22:02:b8:bb:c7:ab:5b: d2:51:e2:49:37:bd:61:03:62:a3:10:10:9c:88:40: ff:8b:df:4d:8d:64:21:d5:bf:5f:a7:03:91:62:94: 04:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BE:69:9C:6C:B1:09:6D:E3:D3:B1:25:21:1F:4D:B1:5C:B6:BE:B2 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:16:3f:4d:92:04:b1:c1:7f:04:84:6e:22:d9:9a:86:78:48: 12:71:2d:17:d3:e1:ec:92:a3:fe:71:8c:cf:d3:87:59:85:99: 63:29:e8:7e:34:6c:78:01:65:b1:0b:13:35:05:57:98:fe:41: 20:a1:a9:ec:98:8d:94:eb:44:f4:8c:51:cb:e6:60:fc:e0:54: aa:f6:b1:f6:0f:72:74:8e:bc:ac:ed:ea:27:8f:fb:f1:3a:ef: 0f:4e:53:59:e8:f1:01:2f:73:5b:78:f0:e2:10:0d:cc:39:a9: e4:89:e1:c7:e5:0e:0d:8e:37:03:84:02:42:b2:fd:80:4b:2b: 36:94:db:24:a6:7f:c2:ff:ea:9c:19:b0:78:c0:fb:20:b7:0c: 29:37:87:33:97:ee:93:44:8a:04:72:de:de:28:5a:b1:53:6d: 06:a1:b8:0c:4c:fc:c6:c4:d7:ba:44:b1:e1:38:76:0a:4e:f7: 78:d3:9f:f5:75:71:7d:68:ff:ec:c2:6f:d0:1a:3d:58:f0:ad: 2c:d7:f1:9d:6a:39:72:01:22:06:57:d2:3e:a4:3a:03:32:fb: 88:ab:2a:58:33:44:02:77:ab:25:69:31:b8:fe:e2:e1:24:8b: 09:4a:28:26:69:57:b3:20:e0:cc:14:6d:82:a0:5d:ae:d9:2c: f5:e6:a9:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjYwMzI0MTgxODM2WhcNMjYwMzMxMTgxODM2WjAYMRYwFAYD VQQDEw02OWMyZDU3Yy05MDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbt+gVxsEAW9ttt0f90xPthrTxB+TFlwM8emRV27S8OKZGDPJ0qnl54u2ODF OFlzLHn71givLJasNlGQoAg4Re6kl5fUc6LTDkG59CW3n+onvZal0L04JjW9nur1 BZPIXYv53zLY2+rtNM4Z8aiqIRajEwQFmZt03CBhTWX7fWHFOtvtkfc5u5Yky2/d xSHDin0YqAp/tUHPCAHsjlM07hABIWWqMzqhOoQJCuEbcBI4Cd5Km6fLRbqTp5fT yjmZd5lXzaLOkHeLxONrF1WsqEX/bPoSuojjcyICuLvHq1vSUeJJN71hA2KjEBCc iED/i99NjWQh1b9fpwORYpQE/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP6+aZxs sQlt49OxJSEfTbFctr6yMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTBBQS82QTRGRkM3QTBGMTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RW MEQtNXp5RktRU1RLVHpkZ3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATRY/TZIEscF/BIRuItmahnhIEnEtF9Ph7JKj/nGMz9OHWYWZYynofjRseAFl sQsTNQVXmP5BIKGp7JiNlOtE9IxRy+Zg/OBUqvax9g9ydI68rO3qJ4/78TrvD05T WejxAS9zW3jw4hANzDmp5Inhx+UODY43A4QCQrL9gEsrNpTbJKZ/wv/qnBmweMD7 ILcMKTeHM5fuk0SKBHLe3ihasVNtBqG4DEz8xsTXukSx4Th2Ck73eNOf9XVxfWj/ 7MJv0Bo9WPCtLNfxnWo5cgEiBlfSPqQ6AzL7iKsqWDNEAnerJWkxuP7i4SSLCUoo JmlXsyDgzBRtgqBdrtks9eapnw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:06:02 2026 by rpki-client