$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: WYgGtSW2adFrhVih5tKKj7LGnzpXr4wtWN9f8/PQZdw= Subject key identifier: DD:4C:ED:18:65:07:06:57:96:9F:F0:C0:7A:7B:D6:0E:15:93:96:B5 Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0276 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 0244 Signing time: Wed 25 Mar 2026 02:18:18 +0000 Manifest this update: Wed 25 Mar 2026 02:18:18 +0000 Manifest next update: Wed 01 Apr 2026 02:18:18 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: /7X7o/w6tGcghpZyaoOtUPynvCGTV5wZzx5C61skKNE=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: j7L99bx7Ey41ZLd+2+aMZ4wqjEnPklq5VL7HIrKdyHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2, serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: Mar 25 02:18:18 2026 GMT Not After : Apr 1 02:18:18 2026 GMT Subject: CN=69c345ea-3af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:30:cf:e4:45:4f:48:1a:75:3d:8d:ea:19:77: ab:73:ed:66:12:f8:51:de:b8:7e:e6:0a:c5:af:74: 27:08:b6:a5:5a:b8:6d:ee:40:60:c4:8b:ac:29:86: 6a:b9:15:6c:54:7c:3c:bf:8f:c5:85:6e:4a:dc:64: 78:4e:3d:2d:97:e1:68:42:2d:0f:64:77:e3:08:8e: d2:aa:83:b3:1c:97:8d:52:d0:9f:67:40:a2:0d:d0: 3d:88:2d:0f:4c:d9:b8:ee:9f:3b:dc:87:fd:cd:da: e3:92:25:cc:df:53:52:a5:13:22:5e:14:c3:99:d6: 6d:29:41:e2:50:01:89:45:cb:84:91:29:41:5a:47: 23:cc:1b:c9:4e:46:dc:b0:62:db:5a:5c:f2:39:3b: 0d:08:bb:34:74:9d:cb:79:d4:8b:ab:03:c5:84:0a: a9:b9:8b:2b:b9:94:10:12:55:0c:54:24:c4:82:f1: d8:b6:ed:17:78:be:7e:56:0f:57:ae:22:ce:3e:e8: 57:81:80:17:9e:74:8f:b8:4f:dc:f6:a4:50:de:a0: c5:79:f8:1e:9d:23:7a:b1:8f:f3:28:67:1a:70:af: cc:15:6f:94:c7:08:ec:1e:40:55:e8:f0:c7:d9:b4: 84:af:65:b4:b2:d1:0a:c3:67:ef:d0:94:41:f6:2c: fe:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:4C:ED:18:65:07:06:57:96:9F:F0:C0:7A:7B:D6:0E:15:93:96:B5 X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a6:9d:3d:21:55:ca:7d:f2:2f:c7:5b:48:cd:c7:29:ab:57: 2c:7e:41:ce:43:1f:7f:d7:32:b2:f9:49:59:47:77:7d:5c:dc: d7:bd:ea:45:fc:d0:ae:e2:5a:58:40:6d:44:12:6d:2e:38:9e: a9:3c:55:aa:61:ab:9f:da:31:18:11:0f:91:93:62:3f:c0:3a: 54:c6:ff:44:90:f5:d4:69:59:6f:91:cb:a8:84:5d:b0:41:fc: c0:88:25:16:2d:f7:1b:df:86:aa:2d:ef:6f:29:0e:c4:f1:95: 12:42:70:d1:43:01:25:bc:94:31:7e:72:c6:09:a6:73:0f:96: 79:84:33:3c:88:0a:96:cd:49:89:50:a8:46:a3:7d:85:21:d0: 90:4b:8a:a2:ca:41:7e:a0:45:70:2f:ff:04:ad:4c:59:56:1c: 86:bf:17:f0:bc:09:55:1d:61:35:d2:37:59:c8:0e:15:3c:84: 64:0f:85:55:6d:23:37:fe:73:b4:08:27:72:10:cb:10:d8:f6: 01:12:c2:d3:6c:40:43:46:43:f5:22:73:f6:29:68:9a:48:d7: 7e:bf:38:e3:1b:6f:dd:68:9f:b4:b7:64:f9:5d:ca:98:e5:d2: c4:60:1c:79:70:db:a0:c4:a4:fd:b3:d4:c0:49:c0:ef:13:52: a9:13:d2:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjYwMzI1MDIxODE4WhcNMjYwNDAxMDIxODE4WjAYMRYwFAYD VQQDEw02OWMzNDVlYS0zYWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDDP5EVPSBp1PY3qGXerc+1mEvhR3rh+5grFr3QnCLalWrht7kBgxIusKYZq uRVsVHw8v4/FhW5K3GR4Tj0tl+FoQi0PZHfjCI7SqoOzHJeNUtCfZ0CiDdA9iC0P TNm47p873If9zdrjkiXM31NSpRMiXhTDmdZtKUHiUAGJRcuEkSlBWkcjzBvJTkbc sGLbWlzyOTsNCLs0dJ3LedSLqwPFhAqpuYsruZQQElUMVCTEgvHYtu0XeL5+Vg9X riLOPuhXgYAXnnSPuE/c9qRQ3qDFefgenSN6sY/zKGcacK/MFW+UxwjsHkBV6PDH 2bSEr2W0stEKw2fv0JRB9iz+uQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1M7Rhl BwZXlp/wwHp71g4Vk5a1MB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS6adPSFVyn3yL8dbSM3HKatXLH5BzkMff9cysvlJWUd3fVzc173qRfzQruJa WEBtRBJtLjieqTxVqmGrn9oxGBEPkZNiP8A6VMb/RJD11GlZb5HLqIRdsEH8wIgl Fi33G9+Gqi3vbykOxPGVEkJw0UMBJbyUMX5yxgmmcw+WeYQzPIgKls1JiVCoRqN9 hSHQkEuKospBfqBFcC//BK1MWVYchr8X8LwJVR1hNdI3WcgOFTyEZA+FVW0jN/5z tAgnchDLENj2ARLC02xAQ0ZD9SJz9ilomkjXfr844xtv3WiftLdk+V3KmOXSxGAc eXDboMSk/bPUwEnA7xNSqRPSMQ== -----END CERTIFICATE-----Generated at Thu Mar 26 21:39:58 2026 by rpki-client