$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: 4wl+tnXODjMcKBv90ritFjFWpyCM4dfD76I3FAvMo6A= Subject key identifier: FD:D1:9D:16:EA:D6:95:ED:DD:B0:06:BA:47:6B:2B:45:CF:2B:AC:60 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F75 Signing time: Tue 24 Mar 2026 17:25:24 +0000 Manifest this update: Tue 24 Mar 2026 17:25:23 +0000 Manifest next update: Tue 31 Mar 2026 17:25:23 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: cz11p1307GxJsqQmuMi6OGoWtdjj6px+ZmmAdMcl5R8=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: rVqpkfIia95fH7hrm3/K25j3N5yZHWL25KnyFo0eRas=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: M1O0TrYvAUms1ssHPRAoRq4bhn4VdK0pL3BB4ocE2jg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3975 (0xf87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Mar 24 17:25:23 2026 GMT Not After : Mar 31 17:25:23 2026 GMT Subject: CN=69c2c903-d85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:cd:6a:80:05:84:be:37:04:b4:d7:a1:cb:5d: d3:1f:81:21:7e:c1:23:4f:cc:68:bb:37:de:ab:c2: 28:53:13:b3:b7:5a:3a:92:77:88:33:78:a3:b1:95: 18:41:62:c2:e2:85:54:ac:59:a0:13:25:e6:36:17: 08:cd:50:f9:b8:de:d7:17:b6:aa:c5:08:05:47:57: 08:e4:de:53:8a:1f:e0:d6:12:6c:67:00:f7:fe:f2: 28:cd:fb:13:2c:55:cb:66:08:2f:47:94:a0:d8:34: bf:d7:27:06:28:4a:f0:e8:a4:22:b9:54:ac:06:87: 76:d4:30:23:51:0a:30:5c:38:0d:a7:fd:3e:1e:7a: a6:2d:7b:49:f1:c0:f8:a2:16:ea:e2:f1:3d:49:83: f6:23:22:c8:db:ce:33:54:13:49:83:94:0c:b8:50: 6f:4d:02:4a:37:2e:ce:56:a2:df:72:2d:bc:73:64: aa:45:d2:89:15:03:ed:94:39:0c:1e:20:1b:8d:54: 90:b7:4e:0d:25:df:d8:b4:a2:86:74:07:be:36:fe: a1:7c:6e:53:38:81:aa:60:90:0f:b4:b3:06:2c:70: 19:d6:27:30:92:f0:58:26:42:7c:19:8a:f5:ad:ed: fd:77:c3:e1:5b:a9:e8:45:0d:c9:cf:fa:43:d2:e1: f6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D1:9D:16:EA:D6:95:ED:DD:B0:06:BA:47:6B:2B:45:CF:2B:AC:60 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:6a:4c:ad:0a:9d:f2:01:95:81:d1:52:02:ca:62:75:b4:2d: 12:64:e7:e4:c1:5d:17:ea:e8:bc:b7:0d:2d:f2:96:5b:66:ee: 64:d6:90:71:c2:b7:ad:af:9d:54:26:fa:88:c9:77:c2:47:85: 9b:1f:a4:e7:77:80:40:26:1d:db:08:6f:84:18:d0:4a:d4:e4: 41:20:f6:96:1d:17:06:21:51:76:fc:58:8b:ed:1a:05:40:0a: 31:24:88:d8:42:77:8c:43:13:1e:54:b8:22:c1:30:23:ab:2b: dd:10:a8:67:6b:a5:f0:22:c4:32:ee:9f:3e:92:11:8b:e1:9d: 7d:b9:35:d6:89:f7:64:25:35:c8:8a:9b:50:f6:e4:89:bf:0b: d4:3a:6d:f6:16:73:3c:8b:91:14:ea:07:a0:70:78:53:14:69: 03:9c:88:be:7c:d2:64:57:e8:45:f9:ba:24:ca:70:72:51:43: a1:2a:8b:79:f2:0e:69:f9:ce:4a:4c:7a:c8:7f:b8:79:41:b3: 60:e1:ea:77:fd:da:a3:d7:6a:da:da:f4:ca:18:d4:9e:ac:c8: 91:2e:40:29:4b:05:ce:2c:a5:72:07:a4:49:a4:b7:16:bb:22: 23:de:40:e9:cc:5d:d7:e3:4c:49:6b:c0:1a:8c:cb:38:d9:03: 3c:07:6a:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwMzI0MTcyNTIzWhcNMjYwMzMxMTcyNTIzWjAYMRYwFAYD VQQDEw02OWMyYzkwMy1kODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlM1qgAWEvjcEtNehy13TH4EhfsEjT8xouzfeq8IoUxOzt1o6kneIM3ijsZUY QWLC4oVUrFmgEyXmNhcIzVD5uN7XF7aqxQgFR1cI5N5Tih/g1hJsZwD3/vIozfsT LFXLZggvR5Sg2DS/1ycGKErw6KQiuVSsBod21DAjUQowXDgNp/0+HnqmLXtJ8cD4 ohbq4vE9SYP2IyLI284zVBNJg5QMuFBvTQJKNy7OVqLfci28c2SqRdKJFQPtlDkM HiAbjVSQt04NJd/YtKKGdAe+Nv6hfG5TOIGqYJAPtLMGLHAZ1icwkvBYJkJ8GYr1 re39d8PhW6noRQ3Jz/pD0uH21QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP3RnRbq 1pXt3bAGukdrK0XPK6xgMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWWpMrQqd8gGVgdFSAspidbQtEmTn5MFdF+rovLcNLfKWW2buZNaQccK3ra+d VCb6iMl3wkeFmx+k53eAQCYd2whvhBjQStTkQSD2lh0XBiFRdvxYi+0aBUAKMSSI 2EJ3jEMTHlS4IsEwI6sr3RCoZ2ul8CLEMu6fPpIRi+Gdfbk11on3ZCU1yIqbUPbk ib8L1Dpt9hZzPIuRFOoHoHB4UxRpA5yIvnzSZFfoRfm6JMpwclFDoSqLefIOafnO Skx6yH+4eUGzYOHqd/3ao9dq2tr0yhjUnqzIkS5AKUsFziylcgekSaS3FrsiI95A 6cxd1+NMSWvAGozLONkDPAdqxg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:45:58 2026 by rpki-client