$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: coY9+Y2bcK3otDVxAnfiiTynQV3CKy/6o+/S1UDOkeA= Subject key identifier: 17:AF:B8:D2:A3:3C:F6:5C:14:73:69:F0:CB:77:00:97:F6:00:DE:32 Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: F0 Signing time: Wed 25 Mar 2026 05:44:15 +0000 Manifest this update: Wed 25 Mar 2026 05:44:15 +0000 Manifest next update: Wed 01 Apr 2026 05:44:15 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: XfpR6CCQ7r+uCwDnm5KZVtQsvub6G/s6S6L/ObcUDeY=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: q0DHa5Wl8wyW8RcDFN0Qyu7ppbrZZWsxIyNW/w1xs0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Mar 25 05:44:15 2026 GMT Not After : Apr 1 05:44:15 2026 GMT Subject: CN=69c3762f-4424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1b:86:4f:fe:43:3d:e2:f2:30:eb:57:ac:9f: 67:cf:81:5c:b2:c8:20:fb:82:19:90:e9:ae:74:52: 3e:8b:9b:01:2a:e9:4a:49:22:f9:b3:db:5d:20:3e: 58:31:80:bf:ad:9d:e6:7f:9c:db:61:8f:55:11:ef: 9f:95:aa:aa:fe:68:fb:75:19:7e:a8:fa:cc:90:7e: a0:52:af:24:ce:2f:b0:f1:67:db:e1:66:09:aa:45: 6f:ad:29:3b:90:0a:8a:33:cf:49:a9:69:cb:dd:47: c7:a0:79:a3:18:9b:fa:f4:15:c7:42:04:e1:fe:48: 1f:9d:ce:71:7e:af:86:c2:3b:22:a9:cb:3f:a7:5d: 8c:cf:e1:77:ba:c7:61:8f:7b:8f:af:93:c6:86:0f: af:a7:d5:51:71:90:7e:c1:72:d4:fc:52:6c:15:6e: b6:42:37:3a:a0:a2:97:9d:1a:0a:eb:af:a1:be:d3: 20:26:40:aa:52:56:59:d2:91:b5:e3:29:43:e9:3e: 1b:85:ad:17:e7:34:3c:b7:2d:97:19:aa:29:38:10: 23:aa:b6:62:73:4b:e4:34:96:20:b0:3a:cd:96:0b: 7d:45:4b:cf:33:08:2a:ce:84:0f:fe:2d:0c:8a:fb: cd:61:d8:da:ba:d3:29:ba:76:94:23:aa:92:fc:47: e2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AF:B8:D2:A3:3C:F6:5C:14:73:69:F0:CB:77:00:97:F6:00:DE:32 X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:43:a3:a6:f5:2a:a2:8f:d7:e6:a5:d1:a4:cc:b0:9a:d2:30: 08:87:b3:23:08:91:fe:25:af:ff:08:47:e9:2a:4a:08:76:b0: 7d:63:54:bc:3f:79:ea:8b:95:91:f8:eb:15:75:90:b9:a7:cc: 63:45:f0:53:1c:3b:4b:0c:82:8d:81:17:2f:76:89:33:c2:a2: 58:45:4a:77:f9:7e:f3:36:18:ab:43:98:d9:e8:f4:c1:22:a5: b7:c1:97:a3:c3:fa:87:10:0c:b0:28:0d:4e:90:a5:b9:0f:f7: 68:92:14:3d:a1:45:e5:05:8d:d0:9b:e5:3f:fe:dc:8c:94:95: b2:75:26:49:c1:b1:4a:1d:57:d0:12:ba:a5:7c:7a:a1:13:0a: 84:69:6b:52:f0:2e:21:b3:14:11:b7:35:a0:45:3d:00:87:1b: 9f:a9:d2:0a:cb:f8:3c:da:6d:e8:87:bb:02:24:1b:c0:0a:8d: c5:54:77:88:99:32:52:3b:da:73:ce:8c:ef:80:fb:af:c0:2a: ee:4d:1d:d8:8d:2c:4e:d7:3b:d0:c2:67:6d:da:2a:4a:0b:eb: b5:64:23:12:89:86:d9:8f:fe:75:b1:fb:d4:76:fd:aa:8e:09: bb:b4:0c:70:6b:96:7b:e0:97:4f:ee:35:26:b1:5e:66:90:f1: 0a:01:b6:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0QTYxMTAvBgNVBAUTKERDODBDODVFNTEwMTA4OUFCMjQyNUQzRkM5MTc3OTg1 QTAxMjVDNkUwHhcNMjYwMzI1MDU0NDE1WhcNMjYwNDAxMDU0NDE1WjAYMRYwFAYD VQQDEw02OWMzNzYyZi00NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBuGT/5DPeLyMOtXrJ9nz4Fcssgg+4IZkOmudFI+i5sBKulKSSL5s9tdID5Y MYC/rZ3mf5zbYY9VEe+flaqq/mj7dRl+qPrMkH6gUq8kzi+w8Wfb4WYJqkVvrSk7 kAqKM89JqWnL3UfHoHmjGJv69BXHQgTh/kgfnc5xfq+Gwjsiqcs/p12Mz+F3usdh j3uPr5PGhg+vp9VRcZB+wXLU/FJsFW62Qjc6oKKXnRoK66+hvtMgJkCqUlZZ0pG1 4ylD6T4bha0X5zQ8ty2XGaopOBAjqrZic0vkNJYgsDrNlgt9RUvPMwgqzoQP/i0M ivvNYdjautMpunaUI6qS/Efi9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBevuNKj PPZcFHNp8Mt3AJf2AN4yMB8GA1UdIwQYMBaAFNyAyF5RAQiaskJdP8kXeYWgElxu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzRBNi83MTcxQkJGMkQx OUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNKcXlRbDBfeVJkNWhhQVNY RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzRBNi83MTcxQkJGMkQxOUMxMUVGODNDRUFEM0NDNEY5QUUwMi8zSURJWGxFQkNK cXlRbDBfeVJkNWhhQVNYRzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADkOjpvUqoo/X5qXRpMywmtIwCIezIwiR/iWv/whH6SpKCHawfWNUvD956ouV kfjrFXWQuafMY0XwUxw7SwyCjYEXL3aJM8KiWEVKd/l+8zYYq0OY2ej0wSKlt8GX o8P6hxAMsCgNTpCluQ/3aJIUPaFF5QWN0JvlP/7cjJSVsnUmScGxSh1X0BK6pXx6 oRMKhGlrUvAuIbMUEbc1oEU9AIcbn6nSCsv4PNpt6Ie7AiQbwAqNxVR3iJkyUjva c86M74D7r8Aq7k0d2I0sTtc70MJnbdoqSgvrtWQjEomG2Y/+dbH71Hb9qo4Ju7QM cGuWe+CXT+41JrFeZpDxCgG2CQ== -----END CERTIFICATE-----Generated at Thu Mar 26 11:14:26 2026 by rpki-client