$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: XFSiLWptNe4hXIQLFciy6RkStM5p8C/28uZ4yu67kIs= Subject key identifier: 98:C3:31:07:44:4B:C4:05:BC:82:CE:90:CB:6E:B4:CB:EA:C4:61:E6 Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: D7 Signing time: Wed 25 Mar 2026 05:54:43 +0000 Manifest this update: Wed 25 Mar 2026 05:54:42 +0000 Manifest next update: Wed 01 Apr 2026 05:54:42 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: bXxhgl2ZGBuI+r4Nb0K6IqyB258sOxGa8GLXDVfBQyM=) 2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: xBMqZvhUayr3U1URgwrl8EIqJ+zMDOpes797KaEjYwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Mar 25 05:54:42 2026 GMT Not After : Apr 1 05:54:42 2026 GMT Subject: CN=69c378a3-5815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:78:cc:29:a1:94:21:e0:fa:9f:d6:dd:53:ea: ba:f3:08:27:a2:f6:59:4a:92:16:c3:d3:d4:c4:6c: f4:44:b6:37:9b:ff:79:66:14:f0:83:11:c8:e4:3c: a8:9d:b4:17:ab:2c:57:54:83:1c:9d:fc:22:a9:8d: 18:64:cb:53:eb:82:6f:59:d4:d3:8a:91:f7:df:fb: 2d:14:c3:5c:3e:fa:77:5b:b7:c8:59:84:b5:40:3e: d0:fd:de:7d:a0:b5:53:71:d4:95:00:85:b5:fc:88: d5:c6:3b:f8:76:7e:28:4b:c4:4d:e8:69:05:83:4b: f8:bf:9c:39:55:ba:c6:32:51:52:98:78:f2:0a:df: d9:0c:04:e8:8b:d5:0d:57:1a:6f:df:da:d7:a7:34: 18:bf:74:9e:c3:a5:81:c6:b0:4c:ba:e5:17:41:bd: 92:9a:f4:e7:39:59:2c:8b:08:73:a4:23:0a:b6:ae: df:d5:ae:84:bc:ee:24:d6:78:17:3c:6c:9c:90:75: 98:e0:19:57:8e:83:68:42:57:b1:52:11:15:98:1a: e4:06:ff:76:23:d4:e5:4e:35:27:3d:de:89:5f:02: 4a:ed:5e:7a:28:46:da:0e:25:3c:7c:6d:69:9d:59: 9e:6c:64:48:ae:44:a3:4c:df:75:88:d5:29:14:44: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C3:31:07:44:4B:C4:05:BC:82:CE:90:CB:6E:B4:CB:EA:C4:61:E6 X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:91:39:5c:fa:f2:52:23:a7:fa:b4:fe:57:cf:ef:8a:f8:f5: b1:82:6b:ad:98:46:fd:3d:6a:65:75:7b:1a:92:d5:24:16:07: 4a:6d:2d:0f:f5:e1:cd:56:a7:b3:a6:0c:79:ea:bb:bb:36:fe: 54:3e:cc:c0:d1:90:d3:c0:76:c1:a3:cb:0b:d3:8a:2a:1e:7e: d3:01:64:70:ca:bd:3b:2d:40:7c:14:6b:51:27:2f:5b:b0:e4: 67:4b:0a:87:26:f8:20:cf:30:f8:17:3d:c0:cd:a2:d5:49:40: 97:cd:75:c1:9b:af:92:cb:43:69:ec:9b:00:5a:13:b4:27:82: d7:91:3e:97:c8:4c:63:bc:0c:85:36:5a:07:f4:e8:2f:c9:fd: ba:43:96:b8:f8:76:a1:3a:35:72:1a:93:40:2a:cc:1e:ef:d8: 7a:82:2f:51:1e:0d:2f:f7:98:62:34:c3:a0:bd:4e:46:5a:7d: 00:01:a6:29:60:ce:3e:85:e8:9e:c3:70:7c:ef:ee:38:3b:4f: dc:c8:5f:bf:8b:d4:cc:af:a6:b7:6f:bd:29:1f:3c:9a:36:66: d4:ef:6e:15:07:a3:2e:c7:c1:c4:2d:4a:06:be:6c:74:42:5e: 35:f8:9e:92:5a:c9:4d:ba:2d:dc:ec:c4:03:9e:9a:f3:2c:73: 58:5d:a9:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjYwMzI1MDU1NDQyWhcNMjYwNDAxMDU1NDQyWjAYMRYwFAYD VQQDEw02OWMzNzhhMy01ODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HjMKaGUIeD6n9bdU+q68wgnovZZSpIWw9PUxGz0RLY3m/95ZhTwgxHI5Dyo nbQXqyxXVIMcnfwiqY0YZMtT64JvWdTTipH33/stFMNcPvp3W7fIWYS1QD7Q/d59 oLVTcdSVAIW1/IjVxjv4dn4oS8RN6GkFg0v4v5w5VbrGMlFSmHjyCt/ZDAToi9UN Vxpv39rXpzQYv3Sew6WBxrBMuuUXQb2SmvTnOVksiwhzpCMKtq7f1a6EvO4k1ngX PGyckHWY4BlXjoNoQlexUhEVmBrkBv92I9TlTjUnPd6JXwJK7V56KEbaDiU8fG1p nVmebGRIrkSjTN91iNUpFETBqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJjDMQdE S8QFvILOkMtutMvqxGHmMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW LWNwOF9GVzY2bnRoYlpWMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzJE5XPryUiOn+rT+V8/vivj1sYJrrZhG/T1qZXV7GpLVJBYHSm0tD/XhzVan s6YMeeq7uzb+VD7MwNGQ08B2waPLC9OKKh5+0wFkcMq9Oy1AfBRrUScvW7DkZ0sK hyb4IM8w+Bc9wM2i1UlAl811wZuvkstDaeybAFoTtCeC15E+l8hMY7wMhTZaB/To L8n9ukOWuPh2oTo1chqTQCrMHu/YeoIvUR4NL/eYYjTDoL1ORlp9AAGmKWDOPoXo nsNwfO/uODtP3Mhfv4vUzK+mt2+9KR88mjZm1O9uFQejLsfBxC1KBr5sdEJeNfie klrJTbot3OzEA56a8yxzWF2pbA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:21 2026 by rpki-client