$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: UG0S0Pa1iXglU9j/D/6xWIlqryewz+DYaOLKpkIACec= Subject key identifier: EF:E8:78:0C:42:E7:87:A5:B1:F8:BE:7B:FB:39:D9:21:F9:D8:56:64 Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 0358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 0352 Signing time: Wed 25 Mar 2026 00:35:25 +0000 Manifest this update: Wed 25 Mar 2026 00:35:25 +0000 Manifest next update: Wed 01 Apr 2026 00:35:25 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: iB68hflHZeaPxgW0wcT5GbRa/umYefKR2W5iYtASOzM=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: /az6S07hruj2MI8zT0Jdx+G9dMfedswkpkDUNrwlWX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Mar 25 00:35:25 2026 GMT Not After : Apr 1 00:35:25 2026 GMT Subject: CN=69c32dcd-4950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e0:32:48:65:c7:c3:48:20:a5:15:0b:4e:f1: 94:21:e3:fa:5e:4c:70:7b:1e:64:3c:e5:06:4a:1e: 83:d6:63:88:d5:c5:25:93:8d:e4:fd:22:15:19:a1: 5a:2b:68:e9:e2:da:79:a2:d6:32:31:57:7e:35:7a: d9:d8:4e:22:95:f0:7f:20:55:7c:e5:b5:0f:34:1f: 41:65:89:21:95:88:99:90:5e:51:1a:34:b2:75:e4: c6:85:8c:c2:29:fa:09:67:08:36:76:87:9f:4e:7b: 87:3b:51:73:d6:72:14:e3:4f:14:80:a5:db:07:19: e6:9f:f9:1c:cd:82:fa:ba:5b:00:39:08:52:79:cb: f3:05:4f:2c:37:58:84:0b:7f:43:28:61:e3:b5:25: ea:29:1d:9a:e9:ac:2a:4e:a0:8d:1e:6c:83:bf:e7: 61:5c:72:63:ba:4e:55:c4:1e:60:6b:c3:c6:53:0e: 38:de:72:1b:a6:43:14:46:30:91:05:f0:8e:a2:3e: 77:2c:f3:12:fb:8f:1e:c7:9b:5d:05:ee:e7:b7:b0: ad:e6:d1:ff:4e:f0:fb:0f:3e:7e:10:6b:c8:95:9f: 01:5d:1f:55:d4:03:79:34:9f:12:f4:a3:30:6c:9b: ed:87:5c:c3:d7:78:91:f6:27:23:67:60:ad:04:d1: 20:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E8:78:0C:42:E7:87:A5:B1:F8:BE:7B:FB:39:D9:21:F9:D8:56:64 X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:64:30:ce:c7:70:40:ae:4e:56:b3:60:53:48:bf:7a:9e:ad: b4:78:bc:a4:2d:07:d1:ed:08:e3:99:33:d6:7d:ce:2b:e2:f4: 90:78:a2:f2:88:07:15:40:10:74:85:66:b4:85:a0:a1:84:c6: 07:44:dc:21:cd:8b:1f:f0:e4:c0:8a:83:e2:0c:eb:0a:7b:14: 1e:70:67:d0:44:99:0f:72:15:c2:06:b4:51:b8:f7:4b:9c:08: eb:9d:46:f2:08:74:dc:86:6a:a8:a7:90:24:0b:39:d8:fd:ad: 4f:b4:a0:f9:ea:26:66:da:9a:b1:b7:d7:d2:c7:dd:37:a6:3a: 5e:5b:76:a1:11:6b:9c:39:cb:7c:da:ea:c7:e9:5f:2e:dd:72: ec:86:69:c5:6a:53:74:d8:59:4a:c2:9c:58:fb:ef:7c:7b:cc: f3:5d:f6:e1:42:45:dd:f7:b6:7f:c6:33:05:7c:d6:bb:d9:a3: 03:9a:21:df:3a:10:98:20:8f:49:8b:c3:26:df:f4:a2:b2:c9: 51:b0:04:81:13:40:80:77:f9:ce:45:6b:83:b0:2e:e5:85:e3: 6e:ec:4f:a2:d5:cc:fb:e5:24:da:11:57:6c:40:0a:75:65:34: cf:7b:54:de:27:44:a1:32:e9:8b:ba:3a:08:be:f9:22:69:62: a0:3b:12:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjYwMzI1MDAzNTI1WhcNMjYwNDAxMDAzNTI1WjAYMRYwFAYD VQQDEw02OWMzMmRjZC00OTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOAySGXHw0ggpRULTvGUIeP6Xkxwex5kPOUGSh6D1mOI1cUlk43k/SIVGaFa K2jp4tp5otYyMVd+NXrZ2E4ilfB/IFV85bUPNB9BZYkhlYiZkF5RGjSydeTGhYzC KfoJZwg2doefTnuHO1Fz1nIU408UgKXbBxnmn/kczYL6ulsAOQhSecvzBU8sN1iE C39DKGHjtSXqKR2a6awqTqCNHmyDv+dhXHJjuk5VxB5ga8PGUw443nIbpkMURjCR BfCOoj53LPMS+48ex5tdBe7nt7Ct5tH/TvD7Dz5+EGvIlZ8BXR9V1AN5NJ8S9KMw bJvth1zD13iR9icjZ2CtBNEgZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO/oeAxC 54elsfi+e/s52SH52FZkMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo2QwzsdwQK5OVrNgU0i/ep6ttHi8pC0H0e0I45kz1n3OK+L0kHii8ogHFUAQ dIVmtIWgoYTGB0TcIc2LH/DkwIqD4gzrCnsUHnBn0ESZD3IVwga0Ubj3S5wI651G 8gh03IZqqKeQJAs52P2tT7Sg+eomZtqasbfX0sfdN6Y6Xlt2oRFrnDnLfNrqx+lf Lt1y7IZpxWpTdNhZSsKcWPvvfHvM81324UJF3fe2f8YzBXzWu9mjA5oh3zoQmCCP SYvDJt/0orLJUbAEgRNAgHf5zkVrg7Au5YXjbuxPotXM++Uk2hFXbEAKdWU0z3tU 3idEoTLpi7o6CL75ImlioDsS6g== -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:03 2026 by rpki-client