$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft File: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft (raw, json) Hash identifier: oX85EwttkHQgMtjreUfv49roeuf4MJh94tHoyhona+Y= Subject key identifier: 43:E7:50:09:DD:F2:68:C8:65:97:93:4F:AE:2C:78:53:06:BD:8F:5F Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft Manifest number: 01DF Signing time: Wed 25 Mar 2026 02:54:25 +0000 Manifest this update: Wed 25 Mar 2026 02:54:25 +0000 Manifest next update: Wed 01 Apr 2026 02:54:25 +0000 Files and hashes: 1: Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl (hash: X0wqpZicdvBTe6CmOoUkbZ9IIhL07wFJOkK/A9qP2Go=) 2: 553596D65DB511EE841C151FC4F9AE02.roa (hash: ENKRczYYvLUIozCAd5X4sketAA/sYkbVgxD+0/V4DAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Mar 25 02:54:25 2026 GMT Not After : Apr 1 02:54:25 2026 GMT Subject: CN=69c34e61-4a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:39:f1:1d:06:15:73:6d:d4:0a:99:8a:83:30: 5c:e7:8c:07:ac:a1:35:aa:17:47:b4:a4:93:68:e9: bf:43:4c:04:46:c0:64:9f:eb:e9:de:9f:e1:f1:b8: c1:92:33:03:a3:2e:f0:55:cf:8e:73:ca:50:5d:b8: a0:c5:64:81:b0:8a:fa:25:9c:04:0e:b4:56:b3:cb: ec:91:7d:08:5d:53:1d:52:2a:43:66:59:db:bf:64: 68:38:db:44:7d:05:2e:e9:d1:c5:b1:f6:36:ee:21: 4d:c0:07:ad:05:92:55:c5:1c:f9:9c:a7:b7:ac:77: 6f:d7:ed:0a:41:92:13:1d:a2:b4:cb:68:e9:59:13: 7a:10:44:5c:5c:0b:65:0a:c1:08:10:42:0f:b4:30: de:96:80:f9:a7:1b:ee:41:0c:4e:2c:c2:79:75:91: 72:41:d7:86:8e:50:04:f7:e5:48:54:b7:6d:60:9a: cf:d2:64:c6:68:88:88:f8:cd:43:59:52:ad:c5:6f: c3:5d:bf:d1:bc:ac:12:ba:70:a2:17:fa:06:d1:98: 1a:ba:a9:42:33:cc:23:7d:4f:a4:3a:b2:7b:5d:62: 02:8e:60:10:a6:c4:eb:e9:1d:b0:5a:55:70:eb:11: b9:f3:95:20:fe:b9:56:a0:b5:fc:6e:88:d9:84:b9: c9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E7:50:09:DD:F2:68:C8:65:97:93:4F:AE:2C:78:53:06:BD:8F:5F X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a4:b8:25:3c:38:ad:df:b9:48:85:01:54:b2:49:9e:ec:13: 2e:37:69:b0:1f:32:bb:0c:25:4b:78:f9:c0:1c:9d:7c:ef:f4: ca:bc:3f:ac:7c:bc:0c:a4:dd:4d:d5:57:98:86:53:97:45:b0: 56:4f:eb:bc:fe:14:33:69:c9:ad:9e:51:12:9e:fc:79:72:19: b8:f7:9f:09:f8:3d:2e:77:3f:b4:3c:07:31:76:be:57:a3:63: 24:91:19:7c:37:43:08:fc:bb:7d:8b:79:3b:d5:21:e2:6a:4f: 64:dc:fc:7d:d9:05:07:16:97:d3:c8:b3:b3:39:ac:f7:de:1c: d4:f9:72:55:94:43:0a:95:7b:0c:ee:a1:12:e4:e0:fa:42:c0: a1:f7:c1:08:07:d6:49:13:b8:af:ae:8b:22:f1:10:81:71:e0: 72:22:b0:5f:ef:23:89:9c:2a:ad:11:e4:3d:99:5a:b6:48:74: 9d:52:fe:0d:95:5e:4f:3c:3b:5c:35:2e:13:90:62:73:ae:60: 69:a2:4a:fe:17:3d:a1:63:22:82:d8:cf:e6:c2:20:33:ef:a6: aa:63:c5:aa:8c:0d:c7:e8:5b:73:dc:24:c4:f1:04:9f:20:2b: 78:0f:27:47:ce:e3:45:39:6d:37:14:41:fa:9c:bf:10:03:e5: 3b:68:10:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjYwMzI1MDI1NDI1WhcNMjYwNDAxMDI1NDI1WjAYMRYwFAYD VQQDEw02OWMzNGU2MS00YTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhznxHQYVc23UCpmKgzBc54wHrKE1qhdHtKSTaOm/Q0wERsBkn+vp3p/h8bjB kjMDoy7wVc+Oc8pQXbigxWSBsIr6JZwEDrRWs8vskX0IXVMdUipDZlnbv2RoONtE fQUu6dHFsfY27iFNwAetBZJVxRz5nKe3rHdv1+0KQZITHaK0y2jpWRN6EERcXAtl CsEIEEIPtDDeloD5pxvuQQxOLMJ5dZFyQdeGjlAE9+VIVLdtYJrP0mTGaIiI+M1D WVKtxW/DXb/RvKwSunCiF/oG0ZgauqlCM8wjfU+kOrJ7XWICjmAQpsTr6R2wWlVw 6xG585Ug/rlWoLX8bojZhLnJTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPnUAnd 8mjIZZeTT64seFMGvY9fMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzM5OS9CQTY4QzMyODVDQjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dP azFYQ2Z6d1JPMVpBMHhock0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKqS4JTw4rd+5SIUBVLJJnuwTLjdpsB8yuwwlS3j5wBydfO/0yrw/rHy8DKTd TdVXmIZTl0WwVk/rvP4UM2nJrZ5REp78eXIZuPefCfg9Lnc/tDwHMXa+V6NjJJEZ fDdDCPy7fYt5O9Uh4mpPZNz8fdkFBxaX08izszms994c1PlyVZRDCpV7DO6hEuTg +kLAoffBCAfWSRO4r66LIvEQgXHgciKwX+8jiZwqrRHkPZlatkh0nVL+DZVeTzw7 XDUuE5Bic65gaaJK/hc9oWMigtjP5sIgM++mqmPFqowNx+hbc9wkxPEEnyAreA8n R87jRTltNxRB+py/EAPlO2gQlw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:57:23 2026 by rpki-client