$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: q69OycJ985OdTmcsb4xgGyuXAqFGfbDnfq2M1rOg8qU= Subject key identifier: C7:72:A5:FF:32:17:60:80:CF:1B:7C:11:25:48:3C:3E:68:37:B8:9F Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0204 Signing time: Wed 25 Mar 2026 02:27:42 +0000 Manifest this update: Wed 25 Mar 2026 02:27:41 +0000 Manifest next update: Wed 01 Apr 2026 02:27:41 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: KK2haU/44TvVdAJ8FDrErUjudLh7t9gUxUO1Wn4SuTM=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 6YiHQS923AFAHNIQZq0OQFG6vXkTwTlPlKTi8KK2q5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:27:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Mar 25 02:27:41 2026 GMT Not After : Apr 1 02:27:41 2026 GMT Subject: CN=69c3481e-fe9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e4:1d:ff:30:8c:c3:38:91:98:78:f9:9c:89: 56:62:a3:b2:5c:06:00:29:97:a4:34:97:76:d8:0a: 43:a3:c9:2c:61:52:c2:c4:93:2a:7c:07:0c:72:3c: 76:2d:5e:f2:28:89:34:63:61:48:09:ae:06:cb:32: b1:28:61:35:84:8e:46:84:1d:ef:a4:c0:05:f5:84: 68:e8:b5:ae:02:2d:87:78:55:52:69:28:b1:6c:92: ea:bd:c9:0b:1b:6b:26:48:e5:a9:0b:c7:4f:63:48: 8f:79:d6:97:f7:96:5a:f1:3d:91:37:58:17:75:d2: dd:fa:b2:d4:d3:5c:73:1d:06:6b:c7:7f:d4:1c:dc: b8:79:f4:73:1e:58:a1:1c:02:70:0a:38:2b:6b:17: 4d:f8:aa:23:41:3e:3e:92:ef:41:ff:37:3c:c6:b0: bf:a3:dd:94:0b:71:1e:94:b9:97:ae:72:0d:28:66: bf:bf:ea:18:f6:b2:70:0d:51:d5:4a:82:ac:a2:86: 6a:5d:af:cb:e6:a3:2e:eb:27:2f:c1:48:33:ae:6b: fe:d2:96:29:cf:b3:ae:3e:f0:9b:16:38:79:89:f3: d2:84:4b:31:81:c3:bf:26:94:85:76:b1:57:92:6a: 26:10:92:97:04:83:e5:4c:a9:40:94:9e:e1:63:76: 26:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:72:A5:FF:32:17:60:80:CF:1B:7C:11:25:48:3C:3E:68:37:B8:9F X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:59:4a:36:1c:04:51:fe:6d:32:c0:2a:ab:e7:60:0c:ad:f3: 3a:7f:d5:e3:2b:f6:05:32:87:91:37:2f:96:d1:d9:01:78:4b: 70:40:1e:59:c3:a0:fd:09:08:cb:92:f5:ed:1a:7e:01:27:e6: bf:24:1a:32:89:de:c8:75:dd:cf:23:b1:f2:85:48:3c:0d:a3: 48:1e:aa:da:9c:e2:d0:22:b0:fe:cf:20:4d:c6:ee:c2:af:9a: e5:da:76:09:66:72:71:3e:9c:69:f1:75:15:c2:21:ee:b9:52: 49:04:e5:e9:f3:69:35:e9:d7:ce:16:1d:b4:d8:e6:c6:ee:92: 22:bb:d1:37:62:a5:f4:37:01:0a:62:c2:c0:5f:df:e8:15:60: 40:21:4c:7d:97:ec:b9:a5:0a:fe:5c:a6:f7:06:5d:46:29:6b: 12:99:d6:d6:37:a9:ff:dc:6a:0d:cc:02:73:9f:82:53:57:d0: d2:60:bb:0c:ef:9e:4e:79:84:af:05:a2:13:36:64:7f:72:24: 10:58:40:88:0a:22:59:72:d5:9f:c3:3d:76:ed:46:d4:7d:7b: 16:fd:33:5f:dd:21:f2:9c:ac:d2:eb:c7:88:70:f8:76:fd:4a: 56:de:24:30:11:0d:ef:a1:1d:1e:a9:fa:b0:d3:5f:3b:e4:ee: 68:01:a4:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjYwMzI1MDIyNzQxWhcNMjYwNDAxMDIyNzQxWjAYMRYwFAYD VQQDEw02OWMzNDgxZS1mZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOQd/zCMwziRmHj5nIlWYqOyXAYAKZekNJd22ApDo8ksYVLCxJMqfAcMcjx2 LV7yKIk0Y2FICa4GyzKxKGE1hI5GhB3vpMAF9YRo6LWuAi2HeFVSaSixbJLqvckL G2smSOWpC8dPY0iPedaX95Za8T2RN1gXddLd+rLU01xzHQZrx3/UHNy4efRzHlih HAJwCjgraxdN+KojQT4+ku9B/zc8xrC/o92UC3EelLmXrnINKGa/v+oY9rJwDVHV SoKsooZqXa/L5qMu6ycvwUgzrmv+0pYpz7OuPvCbFjh5ifPShEsxgcO/JpSFdrFX kmomEJKXBIPlTKlAlJ7hY3Ym+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMdypf8y F2CAzxt8ESVIPD5oN7ifMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ1lKNhwEUf5tMsAqq+dgDK3zOn/V4yv2BTKHkTcvltHZAXhLcEAeWcOg/QkI y5L17Rp+ASfmvyQaMoneyHXdzyOx8oVIPA2jSB6q2pzi0CKw/s8gTcbuwq+a5dp2 CWZycT6cafF1FcIh7rlSSQTl6fNpNenXzhYdtNjmxu6SIrvRN2Kl9DcBCmLCwF/f 6BVgQCFMfZfsuaUK/lym9wZdRilrEpnW1jep/9xqDcwCc5+CU1fQ0mC7DO+eTnmE rwWiEzZkf3IkEFhAiAoiWXLVn8M9du1G1H17Fv0zX90h8pys0uvHiHD4dv1KVt4k MBEN76EdHqn6sNNfO+TuaAGkiQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:12:56 2026 by rpki-client