$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: IWvMcLaf4zf1OD6sTSrxuAXHL3AVq1m9/RYp9EsVqjE= Subject key identifier: 0F:8F:8F:02:24:35:50:F8:DC:86:2B:6A:7C:D9:E0:49:1D:88:BE:3D Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01B1 Signing time: Wed 25 Mar 2026 03:17:10 +0000 Manifest this update: Wed 25 Mar 2026 03:17:09 +0000 Manifest next update: Wed 01 Apr 2026 03:17:09 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: Fx6NffJI/4t6VmKHANyGxPwvqSo4Cd3+ZRaURl73wME=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: AWpj07zDh15fklZ/07HH5rxQ/lecHbJoawDHB8JKXuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Mar 25 03:17:09 2026 GMT Not After : Apr 1 03:17:09 2026 GMT Subject: CN=69c353b5-12de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ca:da:cb:50:c3:6d:a9:f3:69:e1:8f:f8:ef: 2e:97:b0:c1:11:be:d5:5b:ca:af:36:6f:da:3e:e7: 99:12:04:12:d0:aa:d0:49:b8:cb:64:06:62:c0:e8: 35:d3:16:36:89:31:cf:06:1f:87:c7:1a:c1:0b:ae: 87:0e:99:5c:5c:2d:d9:28:61:5d:2e:76:59:d0:62: 13:4e:a5:49:1d:9f:2a:0f:22:62:12:d6:64:55:87: 07:b3:02:ab:d1:02:27:71:60:ba:32:09:82:05:b4: 8b:c4:d6:7d:f1:34:52:e3:73:24:5e:d0:30:07:08: de:50:83:34:59:89:9d:06:17:e5:87:62:49:55:13: 5d:68:aa:c5:cd:15:0c:44:26:b8:31:dc:10:a4:f9: 86:de:92:be:fb:bf:9f:a3:7f:2e:33:d6:4d:43:89: 9d:84:cc:12:8e:8b:c5:f3:ae:9b:77:b0:44:a5:47: 7a:1b:67:b4:e2:8d:e5:e7:7f:65:55:b6:b8:41:fa: c1:7f:34:6c:bf:5e:e5:49:23:a1:7d:14:55:09:60: 22:3d:d3:44:ad:59:12:43:b3:52:c3:b6:e6:88:d2: 4e:1c:06:7e:a4:68:8f:6f:36:78:0e:ac:3f:6a:18: a7:4c:38:7f:bd:31:58:45:31:df:cd:b8:7b:fb:d2: ea:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8F:8F:02:24:35:50:F8:DC:86:2B:6A:7C:D9:E0:49:1D:88:BE:3D X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:e2:3b:53:27:21:21:99:24:9c:52:b2:a3:f0:6d:0a:41:52: cf:40:c7:50:52:ca:82:0e:21:12:4f:07:f5:3f:00:be:ff:a4: 74:88:9c:8b:96:47:4e:18:bb:9d:87:30:7f:a4:a3:c6:db:ac: 29:0e:64:84:0b:ca:39:ce:aa:bf:e9:66:f1:8e:09:5d:51:2a: ec:01:7f:6d:7a:18:f5:14:a6:08:a7:5e:33:6d:40:f9:8d:3c: bc:7b:a5:e4:73:a4:9a:89:2c:64:4a:e6:5c:4b:7d:3a:e4:64: fd:fc:17:35:24:2d:1f:bb:d0:54:7d:27:1f:12:21:e4:5c:7d: f4:6f:2d:a6:04:85:9d:83:98:88:fa:9c:cc:41:dd:65:e3:5f: 41:96:34:11:ec:09:f7:78:20:5b:e4:58:42:8f:70:20:43:d3: ae:4a:0c:b8:60:2a:fc:a9:72:00:26:95:69:c2:00:4f:55:fb: 13:a7:d4:f0:71:28:fe:86:e8:8c:65:82:d8:27:76:cd:d6:27: 37:b9:51:e5:7c:16:60:5a:1c:44:e5:01:73:01:d9:db:07:2d: c6:d2:fc:86:04:50:58:da:47:5c:6a:92:0d:eb:6c:d1:4a:32: d8:7a:fb:40:6c:9f:15:5c:e6:3f:a2:16:6d:4d:cf:64:c6:0c: ee:e1:4c:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwMzI1MDMxNzA5WhcNMjYwNDAxMDMxNzA5WjAYMRYwFAYD VQQDEw02OWMzNTNiNS0xMmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcray1DDbanzaeGP+O8ul7DBEb7VW8qvNm/aPueZEgQS0KrQSbjLZAZiwOg1 0xY2iTHPBh+HxxrBC66HDplcXC3ZKGFdLnZZ0GITTqVJHZ8qDyJiEtZkVYcHswKr 0QIncWC6MgmCBbSLxNZ98TRS43MkXtAwBwjeUIM0WYmdBhflh2JJVRNdaKrFzRUM RCa4MdwQpPmG3pK++7+fo38uM9ZNQ4mdhMwSjovF866bd7BEpUd6G2e04o3l539l Vba4QfrBfzRsv17lSSOhfRRVCWAiPdNErVkSQ7NSw7bmiNJOHAZ+pGiPbzZ4Dqw/ ahinTDh/vTFYRTHfzbh7+9LqRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA+PjwIk NVD43IYranzZ4EkdiL49MB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACeI7UychIZkknFKyo/BtCkFSz0DHUFLKgg4hEk8H9T8Avv+kdIici5ZHThi7 nYcwf6SjxtusKQ5khAvKOc6qv+lm8Y4JXVEq7AF/bXoY9RSmCKdeM21A+Y08vHul 5HOkmoksZErmXEt9OuRk/fwXNSQtH7vQVH0nHxIh5Fx99G8tpgSFnYOYiPqczEHd ZeNfQZY0EewJ93ggW+RYQo9wIEPTrkoMuGAq/KlyACaVacIAT1X7E6fU8HEo/obo jGWC2Cd2zdYnN7lR5XwWYFocROUBcwHZ2wctxtL8hgRQWNpHXGqSDets0Uoy2Hr7 QGyfFVzmP6IWbU3PZMYM7uFMkg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:58:17 2026 by rpki-client