$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: rJAwwpMBgJXbB956Lxixz43uEqDw9VowRGwmcWxHawA= Subject key identifier: 3B:73:4B:D3:8B:55:3C:A5:E7:AD:E8:EF:C1:2F:68:D8:80:B0:6A:8A Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: F6 Signing time: Wed 25 Mar 2026 05:32:09 +0000 Manifest this update: Wed 25 Mar 2026 05:32:08 +0000 Manifest next update: Wed 01 Apr 2026 05:32:08 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: Tf5DKeeyL+V9Hn79wucr1BjnpisOIkbIyK5rqCH3fxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Mar 25 05:32:08 2026 GMT Not After : Apr 1 05:32:08 2026 GMT Subject: CN=69c37358-34a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:a0:5b:47:59:44:be:88:0d:24:69:08:36: 3b:d8:28:7f:5a:d9:0a:b6:ee:dd:ea:90:9d:89:eb: d0:af:b6:06:19:f8:e4:7e:4b:37:5c:c2:21:8f:3e: a8:b6:00:c1:07:b3:a5:fc:75:cf:39:b2:e9:a5:31: 5c:5f:61:8f:f8:1f:ef:ba:7d:b4:03:94:a8:bd:48: 97:47:45:60:ab:6f:64:db:11:60:53:a1:52:18:1c: b0:c4:11:55:06:93:76:34:bf:e9:7c:79:58:eb:51: f6:21:61:01:4b:f9:c9:ad:e0:9f:01:88:d7:f1:f2: 04:1e:5e:a7:ee:10:2c:28:3b:3d:a5:af:a6:28:a3: 79:17:b3:fb:89:5f:b6:c0:dd:39:38:70:23:ea:8f: 2a:25:96:0c:3d:91:8c:92:fb:34:73:b9:e1:97:e1: 82:a3:41:6d:e1:c7:aa:99:b2:9e:44:d0:f3:f8:f9: 80:22:ee:9e:9f:21:c4:18:9c:52:97:a8:47:2c:41: a2:a1:15:83:4b:bd:bf:9d:0d:56:ee:0d:43:57:c0: f1:01:ac:48:5c:1f:8f:48:29:cd:ba:c3:36:99:a6: 47:52:2e:0a:2f:39:c3:d7:68:e5:c0:4b:0e:4a:55: e4:89:33:c6:86:ed:b7:99:37:87:b8:cf:ea:30:b2: a1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:73:4B:D3:8B:55:3C:A5:E7:AD:E8:EF:C1:2F:68:D8:80:B0:6A:8A X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c6:06:90:6f:cf:8e:f6:ab:1d:f2:b6:0a:71:a4:ce:f8:32: 22:32:00:9e:f3:e9:a4:2e:3e:d9:85:4e:cb:ae:50:72:fb:1b: dd:8a:68:9a:fe:4d:7f:cc:55:02:cf:cc:39:5a:f9:06:6b:d7: d5:65:3c:03:f4:73:4e:2a:dc:87:9e:bd:cf:84:14:8e:d2:f4: 84:4c:78:9e:16:30:1b:07:76:96:ef:40:96:ed:51:d2:aa:83: 66:fa:99:bb:b6:7b:5b:6f:51:c7:2e:3d:69:a7:d2:4b:f0:fa: 11:7a:e0:59:66:e2:b2:6d:ac:c4:cc:da:93:14:82:4b:70:03: 58:e7:ef:57:c3:d6:56:1d:e2:e8:2c:24:8f:0b:01:19:c6:f1: 05:46:71:98:a1:f7:cb:09:7d:b4:70:3c:90:63:3f:4a:a9:d3: ed:86:5c:ab:a0:92:40:35:30:f2:b8:a5:0d:8e:b3:05:10:1b: f0:23:c8:eb:54:d8:8b:a7:5a:7f:78:ba:3c:db:4a:a3:72:1a: 3d:2e:60:e3:0b:d4:93:3c:16:ad:88:eb:6f:96:00:ab:2c:80: 84:55:1e:52:c6:06:ac:ff:71:4e:67:94:4e:44:7b:03:5f:9a: ca:0e:bd:ad:49:6f:da:23:ee:dd:f2:91:70:ad:0d:04:9f:6b: 2a:03:da:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKERDMTEzMEQ4NjE2QkFCQzZDRTA4OEY1RjIwRTY5NzE5 QTk5QzMyQkIwHhcNMjYwMzI1MDUzMjA4WhcNMjYwNDAxMDUzMjA4WjAYMRYwFAYD VQQDEw02OWMzNzM1OC0zNGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovigW0dZRL6IDSRpCDY72Ch/WtkKtu7d6pCdievQr7YGGfjkfks3XMIhjz6o tgDBB7Ol/HXPObLppTFcX2GP+B/vun20A5SovUiXR0Vgq29k2xFgU6FSGBywxBFV BpN2NL/pfHlY61H2IWEBS/nJreCfAYjX8fIEHl6n7hAsKDs9pa+mKKN5F7P7iV+2 wN05OHAj6o8qJZYMPZGMkvs0c7nhl+GCo0Ft4ceqmbKeRNDz+PmAIu6enyHEGJxS l6hHLEGioRWDS72/nQ1W7g1DV8DxAaxIXB+PSCnNusM2maZHUi4KLznD12jlwEsO SlXkiTPGhu23mTeHuM/qMLKh8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDtzS9OL VTyl563o78EvaNiAsGqKMB8GA1UdIwQYMBaAFNwRMNhha6vGzgiPXyDmlxmpnDK7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS8wODlCQzRFNkI2 MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4Yk9DSTlmSU9hWEdhbWNN cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS8wODlCQzRFNkI2MzExMUVGQTJEN0ZCNjNDNEY5QUUwMi8zQkV3MkdGcnE4 Yk9DSTlmSU9hWEdhbWNNcnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK8YGkG/PjvarHfK2CnGkzvgyIjIAnvPppC4+2YVOy65Qcvsb3Ypomv5Nf8xV As/MOVr5BmvX1WU8A/RzTirch569z4QUjtL0hEx4nhYwGwd2lu9Alu1R0qqDZvqZ u7Z7W29Rxy49aafSS/D6EXrgWWbism2sxMzakxSCS3ADWOfvV8PWVh3i6CwkjwsB GcbxBUZxmKH3ywl9tHA8kGM/SqnT7YZcq6CSQDUw8rilDY6zBRAb8CPI61TYi6da f3i6PNtKo3IaPS5g4wvUkzwWrYjrb5YAqyyAhFUeUsYGrP9xTmeUTkR7A1+ayg69 rUlv2iPu3fKRcK0NBJ9rKgPauw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:10:02 2026 by rpki-client