$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft File: 3dzECt5nfyP4p5ukFo729r7wZcc.mft (raw, json) Hash identifier: drRrbwrUZFb7ZQoiNFBLIvGWzuZ6W59I2A2owuYMDus= Subject key identifier: 57:D1:3C:B9:7E:26:81:E4:43:45:05:7E:DA:FB:A4:33:9D:57:35:FD Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft Manifest number: 6B Signing time: Fri 27 Mar 2026 07:27:36 +0000 Manifest this update: Fri 27 Mar 2026 07:27:35 +0000 Manifest next update: Fri 03 Apr 2026 07:27:35 +0000 Files and hashes: 1: 3dzECt5nfyP4p5ukFo729r7wZcc.crl (hash: HcjxSzbIwex0fjH8C7owwTIVo1THUKBrg1fl2Z2Rw/E=) 2: 240EF95E896311F0B911053BC4F9AE02.roa (hash: bgfPYSTEsSkfhGSuxOoFNVtQR8SOazKoHfsSU4GrHl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 07:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: Mar 27 07:27:35 2026 GMT Not After : Apr 3 07:27:35 2026 GMT Subject: CN=69c63167-55af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:df:b9:fe:35:83:26:d8:2a:cd:3c:58:1a:0a: 39:ba:9a:e1:3c:8c:41:06:07:b2:d4:74:c8:e1:80: be:7d:b8:24:be:ee:ae:94:bb:1e:6e:f4:4c:4b:7f: 74:24:83:25:c2:67:2f:e3:eb:d6:04:42:54:62:0a: bf:13:86:be:c3:9a:64:04:47:95:3a:12:87:d4:0b: d2:7a:92:15:c4:41:c9:a8:bf:cb:44:fe:aa:e7:69: 73:41:ee:2b:18:7b:a1:84:e5:19:a6:80:89:5e:cf: 6f:d5:f8:8a:fa:bd:9b:2b:71:00:a8:a7:10:2b:92: 78:9d:04:0a:a3:e2:95:1f:9a:85:53:4a:c2:15:db: 64:96:60:67:d4:20:71:e3:9e:a5:b0:ba:1c:23:20: 82:a5:39:22:67:df:53:3d:94:e2:a5:50:0c:4f:41: f9:d1:22:fe:01:f5:48:70:52:25:ff:49:d8:b4:66: 3c:90:ed:7f:06:a9:9f:8e:14:9d:7a:09:bd:76:6f: b6:be:03:ee:a5:37:e2:57:45:94:29:50:40:ce:39: 3a:2e:25:c5:04:35:7c:81:2c:5d:a1:94:32:8b:cd: ac:c0:ec:69:89:a4:99:d0:56:fc:9e:a0:bd:f0:fe: 56:90:30:87:8e:6a:de:b4:b0:fd:b3:eb:cb:6b:7c: 3e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D1:3C:B9:7E:26:81:E4:43:45:05:7E:DA:FB:A4:33:9D:57:35:FD X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:82:bd:4f:ba:27:ea:44:4e:7c:b6:e2:81:7f:38:74:f5:99: 22:13:6f:1d:16:8a:d4:81:ff:1f:db:35:c8:b6:8e:48:0f:02: b7:2a:9f:a7:96:85:3b:26:a8:69:b0:bc:77:a1:19:1e:99:71: d1:c6:54:fb:a0:45:b7:ad:c4:ff:d3:e3:b6:88:d8:9e:54:6b: 3f:5c:19:58:dd:11:57:f5:f7:77:17:b5:42:dd:51:3c:d2:86: 31:e8:f1:3e:91:6c:11:57:d4:6b:9e:82:85:0b:c3:3b:d3:0a: 90:a4:a7:53:54:61:3c:37:0b:5d:cb:ef:34:3c:97:c3:bd:29: 72:38:52:7f:c6:85:c5:48:59:d4:7c:e7:49:8d:c7:05:36:b9: 9c:75:db:c7:10:74:6f:74:68:33:b1:7b:5a:fc:18:5f:fa:a0: 1e:53:aa:43:09:2c:4d:73:05:e5:87:ad:d7:72:a7:2b:f6:63: 92:34:1b:50:2b:c5:83:1e:06:66:68:e1:ba:3d:a5:ab:ff:aa: 20:ae:0e:6a:14:43:0c:9e:74:6a:bd:6b:cf:da:4a:dc:b2:e2: dc:84:96:59:13:d5:45:39:65:28:ff:f3:d5:9e:c4:cf:b2:cf: d9:52:9f:63:3f:1d:66:39:5b:41:97:ae:1a:3b:26:46:09:2e: 26:b7:e7:0f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjJFMjExMC8GA1UEBRMoREREQ0M0MEFERTY3N0YyM0Y4QTc5QkE0MTY4RUY2RjZC RUYwNjVDNzAeFw0yNjAzMjcwNzI3MzVaFw0yNjA0MDMwNzI3MzVaMBgxFjAUBgNV BAMTDTY5YzYzMTY3LTU1YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy37n+NYMm2CrNPFgaCjm6muE8jEEGB7LUdMjhgL59uCS+7q6Uux5u9ExLf3Qk gyXCZy/j69YEQlRiCr8Thr7DmmQER5U6EofUC9J6khXEQcmov8tE/qrnaXNB7isY e6GE5RmmgIlez2/V+Ir6vZsrcQCopxArknidBAqj4pUfmoVTSsIV22SWYGfUIHHj nqWwuhwjIIKlOSJn31M9lOKlUAxPQfnRIv4B9UhwUiX/Sdi0ZjyQ7X8GqZ+OFJ16 Cb12b7a+A+6lN+JXRZQpUEDOOTouJcUENXyBLF2hlDKLzazA7GmJpJnQVvyeoL3w /laQMIeOat60sP2z68trfD7pAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUV9E8uX4m geRDRQV+2vukM51XNf0wHwYDVR0jBBgwFoAU3dzECt5nfyP4p5ukFo729r7wZccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMkUyLzQxMUM2M0IwODk1 OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pj Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2R6RUN0NW5meVA0cDV1a0ZvNzI5cjd3WmNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MkUyLzQxMUM2M0IwODk1OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQ NHA1dWtGbzcyOXI3d1pjYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBVgr1PuifqRE58tuKBfzh09ZkiE28dForUgf8f2zXIto5IDwK3Kp+nloU7Jqhp sLx3oRkemXHRxlT7oEW3rcT/0+O2iNieVGs/XBlY3RFX9fd3F7VC3VE80oYx6PE+ kWwRV9RrnoKFC8M70wqQpKdTVGE8Nwtdy+80PJfDvSlyOFJ/xoXFSFnUfOdJjccF NrmcddvHEHRvdGgzsXta/Bhf+qAeU6pDCSxNcwXlh63Xcqcr9mOSNBtQK8WDHgZm aOG6PaWr/6ogrg5qFEMMnnRqvWvP2krcsuLchJZZE9VFOWUo//PVnsTPss/ZUp9j Px1mOVtBl64aOyZGCS4mt+cP -----END CERTIFICATE-----Generated at Sat Mar 28 12:12:50 2026 by rpki-client