$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: EXUtnzvI/9ag0/iXIJIVuwvdaDFNGgXQflM6Bj1R34Y= Subject key identifier: E2:46:77:B0:AB:0F:96:77:1E:F7:66:97:1A:7A:28:22:4C:A9:A8:7C Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 03AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 039C Signing time: Wed 25 Mar 2026 00:24:53 +0000 Manifest this update: Wed 25 Mar 2026 00:24:52 +0000 Manifest next update: Wed 01 Apr 2026 00:24:52 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: Hjau2uIogCVTwaj8Z+DYliwWzY24a9aAKPNKYN41ABY=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: RJPc40XFK5jtMh57bQpC2ukr/5ePr0qsfi6VvsDutiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Mar 25 00:24:52 2026 GMT Not After : Apr 1 00:24:52 2026 GMT Subject: CN=69c32b55-3e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f9:b5:d1:4a:a0:81:5d:ad:b1:fe:cf:42:e6: 12:ef:60:63:e2:04:54:b9:27:49:10:cc:7b:b3:8e: 8e:e8:18:c4:1a:a4:a6:b7:d1:c7:45:e7:19:1b:4c: eb:20:9f:29:d9:1f:e2:c3:65:e2:a1:00:60:db:c4: 2a:bf:00:c3:e9:a6:8a:d2:bc:ac:1e:2a:0b:8f:e8: 57:6a:24:64:38:57:04:2d:00:a2:fe:f7:88:d7:0a: 8a:7e:09:0c:71:d6:bd:50:0a:5f:fa:80:01:cd:3b: 10:36:14:61:5f:ec:7b:7a:9d:1b:98:49:7a:49:42: 96:27:9d:dd:65:78:01:2b:de:2c:19:73:76:23:58: b7:db:de:c0:8e:bc:a0:1b:24:a2:d1:58:be:fb:9d: b7:cb:ae:86:7e:9a:b4:fd:09:3e:f0:d9:07:1e:61: 49:52:a9:d4:9a:e0:3b:8a:22:39:6f:15:54:71:3d: 69:8b:55:cf:6a:7e:d6:00:23:a9:f3:35:ef:55:f1: 81:e8:63:3f:9d:02:ed:dc:c5:42:d6:68:bb:c2:f9: 63:41:47:27:a1:2c:08:2e:e6:06:52:12:4e:e2:b1: 41:88:db:e2:0c:c2:d2:b4:14:ad:f1:6b:4a:6a:29: 6a:11:80:06:4a:ef:d4:c5:6b:7f:44:62:69:78:99: 39:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:46:77:B0:AB:0F:96:77:1E:F7:66:97:1A:7A:28:22:4C:A9:A8:7C X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:36:d0:c6:7e:5d:b4:45:04:6b:d1:4e:a9:1a:b4:57:c1:17: 7d:51:f2:10:40:c7:f3:f6:97:cd:1d:87:56:de:b8:ca:af:64: b0:07:f8:8f:4b:b0:1e:4a:c3:2c:b3:a2:3b:92:e5:ab:dd:c8: 67:9b:b1:eb:24:0b:c8:12:fc:da:dd:26:39:95:a6:6e:bc:1c: cb:31:fb:23:13:6b:cf:99:48:d6:c9:7d:68:08:70:60:dd:34: 17:af:16:bd:14:ba:03:01:47:5f:ab:db:cb:fa:63:14:a5:0a: 1d:9d:a6:c4:35:63:65:08:52:7a:74:d0:84:dd:d9:80:d0:ba: d8:d8:5b:db:31:c1:0b:80:7c:be:60:dc:3a:00:42:8e:91:00: 6a:ec:09:8d:ff:bd:af:5f:67:44:00:d3:e2:8d:8f:17:d8:15: ec:e6:fa:ae:42:36:ef:be:7c:3e:98:16:d5:8a:ef:75:69:9e: dc:12:10:e8:a1:88:63:81:a8:db:7d:59:05:71:5b:1b:84:2e: 48:a1:f4:22:34:3d:a7:a0:a3:0c:1b:a0:a6:75:26:a6:57:ef: 94:c4:29:4a:d6:16:eb:ad:c3:72:e4:b0:c8:8f:8f:ce:70:3a: 2e:51:77:39:47:7d:ca:b3:c4:7f:d8:26:0f:ae:b7:7d:51:69: fc:b4:9b:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjYwMzI1MDAyNDUyWhcNMjYwNDAxMDAyNDUyWjAYMRYwFAYD VQQDEw02OWMzMmI1NS0zZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvm10UqggV2tsf7PQuYS72Bj4gRUuSdJEMx7s46O6BjEGqSmt9HHRecZG0zr IJ8p2R/iw2XioQBg28QqvwDD6aaK0rysHioLj+hXaiRkOFcELQCi/veI1wqKfgkM cda9UApf+oABzTsQNhRhX+x7ep0bmEl6SUKWJ53dZXgBK94sGXN2I1i3297Ajryg GySi0Vi++523y66Gfpq0/Qk+8NkHHmFJUqnUmuA7iiI5bxVUcT1pi1XPan7WACOp 8zXvVfGB6GM/nQLt3MVC1mi7wvljQUcnoSwILuYGUhJO4rFBiNviDMLStBSt8WtK ailqEYAGSu/UxWt/RGJpeJk5qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJGd7Cr D5Z3Hvdmlxp6KCJMqah8MB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsTbQxn5dtEUEa9FOqRq0V8EXfVHyEEDH8/aXzR2HVt64yq9ksAf4j0uwHkrD LLOiO5Llq93IZ5ux6yQLyBL82t0mOZWmbrwcyzH7IxNrz5lI1sl9aAhwYN00F68W vRS6AwFHX6vby/pjFKUKHZ2mxDVjZQhSenTQhN3ZgNC62Nhb2zHBC4B8vmDcOgBC jpEAauwJjf+9r19nRADT4o2PF9gV7Ob6rkI27758PpgW1YrvdWme3BIQ6KGIY4Go 231ZBXFbG4QuSKH0IjQ9p6CjDBugpnUmplfvlMQpStYW663DcuSwyI+PznA6LlF3 OUd9yrPEf9gmD663fVFp/LSbHw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:15:06 2026 by rpki-client