$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: iYg4a7uTAZvboWCrrF/Wl2Ch9jfeCN5Y5H5dYquTLBA= Subject key identifier: 43:62:1C:57:A7:58:8A:1B:C2:80:B0:8A:E7:21:29:6A:BB:F7:5C:6F Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3524 Signing time: Tue 24 Mar 2026 15:10:20 +0000 Manifest this update: Tue 24 Mar 2026 15:10:20 +0000 Manifest next update: Tue 31 Mar 2026 15:10:20 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: VK6yoTVjZbHOdUzs8jg7oJ9mxedmf7FTzR3EsvuEiiw=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: S+2nZ/LwiFl9lCGr/q1pgYuQMM2ksAuYCF9P9dTV9cI=) 3: 41623A12778111ED8F236A62C4F9AE02.roa (hash: oWvONdzVtdNZzN0GXwvLtJk1cQSVlxMNqPZEYE5ztwk=) 4: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: +F9H9L+0+ICkfZDERWmYJJTvYvZTjlwlv2iEB9U5xD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13621 (0x3535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Mar 24 15:10:20 2026 GMT Not After : Mar 31 15:10:20 2026 GMT Subject: CN=69c2a95c-8fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:c5:8f:7f:f5:dc:65:d0:ec:60:40:d0:9a: 48:60:a3:eb:40:84:9f:4b:f4:44:2a:9c:af:13:38: 61:1f:65:e6:fa:a9:fa:7b:cd:47:c8:43:b5:c0:d8: 08:cc:08:75:8b:a8:b9:08:ca:aa:da:97:17:fb:14: 1d:f8:cd:28:d2:35:1d:d2:0a:b1:c0:2a:05:be:cf: fd:76:31:90:93:a7:9d:c0:88:94:8e:11:e1:60:68: 26:d5:9c:c3:1c:ac:81:10:c7:4d:18:22:10:a1:c5: 00:df:26:59:24:2a:e4:7c:bc:6e:de:a9:96:4e:7d: 3e:82:e3:20:70:28:0e:62:37:8c:7a:2b:2a:b3:e1: 52:8a:ed:3e:bd:f6:32:eb:8d:a8:8d:3e:61:a1:6e: 12:00:11:3c:61:47:d4:c4:87:12:96:bb:11:34:fa: 15:a0:67:f4:26:cc:7e:68:1e:eb:2d:d2:7c:63:7e: 90:8d:32:84:4a:25:e6:7e:ed:41:8f:f0:e8:13:d2: d8:bf:72:64:38:65:2b:fe:e4:1e:e9:9d:c5:15:91: 76:a4:70:d3:39:ed:52:bf:10:84:c9:96:5b:23:4c: 47:21:18:9d:3b:e0:36:f4:96:b0:2d:4e:eb:6b:b0: b9:4c:9c:65:34:52:de:e3:46:6c:0c:fc:7f:c5:e6: 45:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:62:1C:57:A7:58:8A:1B:C2:80:B0:8A:E7:21:29:6A:BB:F7:5C:6F X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:83:ee:11:2e:67:05:70:95:31:4d:5f:f3:36:bb:d3:98:3f: 95:9c:a4:de:d6:5c:4c:ad:d0:c7:57:c6:b3:8e:fd:cf:31:f5: ac:86:e8:c5:4e:a2:ac:fe:b5:17:89:c9:0e:eb:6a:69:a9:30: 2c:a9:25:ec:25:b2:0d:cf:14:81:f5:9d:6e:4c:b5:76:f3:ae: 09:7f:32:e6:0b:61:9c:2f:13:60:f5:74:5e:ef:3f:3c:cb:79: 9f:e5:c2:cd:a1:05:69:9b:f5:99:1c:75:2b:6e:32:b8:27:63: 8e:2d:17:67:51:d3:56:fa:8a:49:35:c1:b6:63:f6:56:a9:d6: 72:e8:28:af:01:dd:53:39:65:b3:bc:38:12:36:ee:79:b3:03: 86:9c:ae:c6:41:87:4e:10:92:38:ab:0a:ed:da:e8:88:a9:ce: 3e:f2:f6:3a:03:2e:67:3d:e3:33:bd:29:fc:55:2d:5d:6c:80: b1:88:6a:d0:76:fe:11:0c:44:0a:ea:d8:26:3c:eb:51:45:35: 1d:2e:d0:a2:66:da:44:a6:91:e4:bb:fd:5d:61:a3:87:e1:97: 18:0b:2a:6a:44:0f:fb:21:2d:d3:a6:43:8b:13:ba:ae:6b:34: 3a:d4:cd:88:72:a4:62:1c:cf:b4:3a:5c:96:1a:13:f6:32:f8: c4:f4:bc:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwMzI0MTUxMDIwWhcNMjYwMzMxMTUxMDIwWjAYMRYwFAYD VQQDEw02OWMyYTk1Yy04ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbfFj3/13GXQ7GBA0JpIYKPrQISfS/REKpyvEzhhH2Xm+qn6e81HyEO1wNgI zAh1i6i5CMqq2pcX+xQd+M0o0jUd0gqxwCoFvs/9djGQk6edwIiUjhHhYGgm1ZzD HKyBEMdNGCIQocUA3yZZJCrkfLxu3qmWTn0+guMgcCgOYjeMeisqs+FSiu0+vfYy 642ojT5hoW4SABE8YUfUxIcSlrsRNPoVoGf0Jsx+aB7rLdJ8Y36QjTKESiXmfu1B j/DoE9LYv3JkOGUr/uQe6Z3FFZF2pHDTOe1SvxCEyZZbI0xHIRidO+A29JawLU7r a7C5TJxlNFLe40ZsDPx/xeZFuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFENiHFen WIobwoCwiuchKWq791xvMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVoPuES5nBXCVMU1f8za705g/lZyk3tZcTK3Qx1fGs479zzH1rIboxU6irP61 F4nJDutqaakwLKkl7CWyDc8UgfWdbky1dvOuCX8y5gthnC8TYPV0Xu8/PMt5n+XC zaEFaZv1mRx1K24yuCdjji0XZ1HTVvqKSTXBtmP2VqnWcugorwHdUzlls7w4Ejbu ebMDhpyuxkGHThCSOKsK7droiKnOPvL2OgMuZz3jM70p/FUtXWyAsYhq0Hb+EQxE CurYJjzrUUU1HS7QombaRKaR5Lv9XWGjh+GXGAsqakQP+yEt06ZDixO6rms0OtTN iHKkYhzPtDpclhoT9jL4xPS8ng== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:29 2026 by rpki-client