$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: bUAFINOQZ0QIyfxte6D4ElsNQ2O9YVMYGVLUHH5a+Lw= Subject key identifier: 5F:A9:BC:3C:21:AC:5C:9A:E5:31:55:7A:B5:80:87:41:65:9E:C4:94 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 0207 Signing time: Wed 25 Mar 2026 02:25:11 +0000 Manifest this update: Wed 25 Mar 2026 02:25:11 +0000 Manifest next update: Wed 01 Apr 2026 02:25:11 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: zBRRYuSOKKCzQKe7j3IJ+KitZCH1dYsYUgW/z9jXd38=) 2: CD1C75D8B98A11F0A26C3854C4F9AE02.roa (hash: VCOjCSF/4xzIAgt9Ri0TgNyMKXdtQbA3xkgLmkwNolc=) 3: 4F9AF642C51611F0BA6C053AC4F9AE02.roa (hash: 5zAOgB22zL6pVph9qm3voiT68sx6u2vMp/yVRjtWQK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Mar 25 02:25:11 2026 GMT Not After : Apr 1 02:25:11 2026 GMT Subject: CN=69c34787-399f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5b:9d:25:ed:a5:04:b4:6b:2b:4c:c6:15:4f: 01:ae:e4:87:ba:8d:64:ed:f5:bc:df:68:86:0a:cc: 36:46:47:88:e3:04:a1:dc:a2:02:68:ba:c7:65:a1: 52:cf:ea:af:ee:c4:4d:88:76:d0:a8:be:d9:a8:0e: 80:8c:8c:0c:03:81:36:c8:53:2c:b4:cb:ea:69:a2: d6:ec:6f:75:88:77:83:f9:46:57:4c:ed:ca:89:10: 8a:9c:e7:10:79:eb:ba:6f:f9:ab:45:86:c7:28:40: 4a:0a:f4:b1:f2:f7:20:ec:f6:d8:5e:2f:77:06:7f: 9e:26:86:7d:a8:cd:f7:c2:9f:91:cc:23:df:0b:e1: bd:7f:7f:46:69:47:b3:e9:34:6b:ab:69:ae:26:8a: 90:f1:ab:d2:b5:eb:37:ab:5f:19:24:d4:19:2c:ae: 2a:0a:69:83:c2:d0:b1:4c:30:6f:1e:6e:8d:46:83: 50:79:e2:69:23:cd:94:0f:24:bd:6a:2a:ad:ce:fa: 2a:42:34:f5:2d:1b:90:65:a6:48:e5:c5:88:42:08: 10:71:34:6c:a7:1a:ae:0c:54:25:b6:24:e6:b7:0c: 49:de:8c:78:1c:ee:f1:b6:5e:60:a0:b0:58:8c:16: 0e:e1:2e:ca:bc:6f:1f:4c:80:ae:8a:fa:0d:95:1b: 33:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A9:BC:3C:21:AC:5C:9A:E5:31:55:7A:B5:80:87:41:65:9E:C4:94 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:d8:98:f0:83:36:75:2b:f1:ed:39:0a:c0:b3:ba:b5:e7:06: 3e:1c:0e:1b:39:5c:aa:f9:45:9d:70:2b:d9:49:27:10:df:d4: 8e:48:63:48:3b:93:3e:26:e3:a5:96:ce:a4:c1:ec:45:12:47: 26:86:12:b3:55:78:4b:77:6b:e1:09:e1:2e:fa:61:83:97:27: e0:ab:ed:0a:e3:11:33:f1:30:dc:57:52:28:eb:32:13:24:c6: 2b:40:5e:d9:a1:c3:2e:87:2b:9a:1b:7d:40:08:d8:8b:26:03: d0:c0:c0:a0:07:4c:d3:ae:49:6e:8c:c6:d9:ad:7e:0c:d2:fa: 80:0a:f0:db:7b:d2:e8:73:5a:cb:32:52:e3:0a:7a:35:6f:cc: df:1c:30:52:07:93:d2:9d:4a:36:0b:8c:c7:0e:e1:30:d7:46: d8:a7:52:ce:16:81:10:5d:6e:23:33:51:7a:14:5a:ed:9b:22: 14:8a:82:15:d2:72:7c:b2:4d:a7:12:d5:82:85:2a:12:c3:fa: 85:23:f0:d5:7d:12:c7:e8:22:8c:c9:be:15:c9:cb:8b:a7:12: 27:9b:b9:32:68:0e:3f:0e:ea:7c:c6:c2:0d:22:5a:65:1e:88: ef:f9:11:bf:40:40:f5:62:b2:20:82:37:2f:f0:06:aa:b6:6f: db:d0:dc:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjYwMzI1MDIyNTExWhcNMjYwNDAxMDIyNTExWjAYMRYwFAYD VQQDEw02OWMzNDc4Ny0zOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1udJe2lBLRrK0zGFU8BruSHuo1k7fW832iGCsw2RkeI4wSh3KICaLrHZaFS z+qv7sRNiHbQqL7ZqA6AjIwMA4E2yFMstMvqaaLW7G91iHeD+UZXTO3KiRCKnOcQ eeu6b/mrRYbHKEBKCvSx8vcg7PbYXi93Bn+eJoZ9qM33wp+RzCPfC+G9f39GaUez 6TRrq2muJoqQ8avStes3q18ZJNQZLK4qCmmDwtCxTDBvHm6NRoNQeeJpI82UDyS9 aiqtzvoqQjT1LRuQZaZI5cWIQggQcTRspxquDFQltiTmtwxJ3ox4HO7xtl5goLBY jBYO4S7KvG8fTICuivoNlRszRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF+pvDwh rFya5TFVerWAh0FlnsSUMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmtiY8IM2dSvx7TkKwLO6tecGPhwOGzlcqvlFnXAr2UknEN/UjkhjSDuTPibj pZbOpMHsRRJHJoYSs1V4S3dr4QnhLvphg5cn4KvtCuMRM/Ew3FdSKOsyEyTGK0Be 2aHDLocrmht9QAjYiyYD0MDAoAdM065JbozG2a1+DNL6gArw23vS6HNayzJS4wp6 NW/M3xwwUgeT0p1KNguMxw7hMNdG2KdSzhaBEF1uIzNRehRa7ZsiFIqCFdJyfLJN pxLVgoUqEsP6hSPw1X0Sx+gijMm+FcnLi6cSJ5u5MmgOPw7qfMbCDSJaZR6I7/kR v0BA9WKyIII3L/AGqrZv29DcWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:56:55 2026 by rpki-client