$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft File: 3oqNpw4WUAnRQNn2JFJNxNR51eg.mft (raw, json) Hash identifier: V6L5QumTVIvEyXRRUAnpvk8LMq9RS7HLTvS0nn4qNvI= Subject key identifier: C3:0C:53:08:1B:00:2D:2C:8A:87:4D:F0:24:E6:6E:5E:3B:F1:24:9A Authority key identifier: DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 Certificate issuer: /CN=A91DA13E/serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft Manifest number: 0852 Signing time: Tue 24 Mar 2026 20:38:57 +0000 Manifest this update: Tue 24 Mar 2026 20:38:57 +0000 Manifest next update: Tue 31 Mar 2026 20:38:57 +0000 Files and hashes: 1: 3oqNpw4WUAnRQNn2JFJNxNR51eg.crl (hash: +sQLjqpLu5lGczIB5ZSc375BWUbsuPf9fKJr60FQUlw=) 2: 298965AC06B611EBBBFD6B2CC4F9AE02.roa (hash: mEYTlHG5kpWGqAptPr16SuSTKtrgl88+S1qWS3rlZ1c=) 3: B9A51B1AFA4F11EDB82FCB1FC4F9AE02.roa (hash: ySJ9f4a7cg7BoSELqx9I/0KDLVkwX9/nfnRYeM6OTmg=) 4: 29D6DCB2849211EE8F9C5870C4F9AE02.roa (hash: F6LSRzHnrTo7J01sXjb7AoMVO+sTd3XP3ZGtjca+Bu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=DE8A8DA70E165009D140D9F624524DC4D479D5E8 Validity Not Before: Mar 24 20:38:57 2026 GMT Not After : Mar 31 20:38:57 2026 GMT Subject: CN=69c2f661-ff4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d3:e8:43:36:bd:a3:06:59:7d:38:cb:89:b1: 10:59:a8:18:00:92:31:b0:ea:a5:6f:d7:f3:55:20: 95:87:16:8a:5f:1c:05:bf:8a:70:48:52:cb:dc:cb: 18:86:23:71:58:36:7e:53:b8:97:df:7d:d4:33:aa: 6d:d9:c9:4b:e2:fb:c1:65:66:fa:0c:26:ba:fc:19: b3:f8:cc:a8:f3:18:36:80:50:08:95:d2:03:2f:f9: f3:a4:f9:f6:f7:c8:7c:22:36:c6:0e:45:73:52:b3: f3:52:87:50:8d:ab:6a:b2:0e:5a:30:b0:75:0d:ec: c4:20:76:7d:26:61:1f:64:1f:58:4c:7c:7e:14:2d: 42:e3:1b:5f:ff:5a:f4:3b:db:0b:67:f9:bf:52:e9: 10:a3:4d:b6:76:db:b8:9a:c8:88:e2:2e:0f:95:fd: b3:c8:b0:3b:5b:4a:ed:8f:f4:a9:cc:86:93:55:a4: 39:ca:a0:c9:17:e4:d8:f0:c0:ed:a0:a1:48:09:e6: 72:76:12:ea:88:41:08:92:f1:71:86:57:b1:18:34: 34:ea:d6:58:0e:a7:9b:f6:87:73:57:c3:bf:af:77: 95:3f:23:d9:c9:26:6d:74:f0:93:0f:3e:27:bd:86: bd:0f:47:2d:5c:8d:5b:de:08:f2:e0:87:9d:fc:bd: b0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0C:53:08:1B:00:2D:2C:8A:87:4D:F0:24:E6:6E:5E:3B:F1:24:9A X509v3 Authority Key Identifier: keyid:DE:8A:8D:A7:0E:16:50:09:D1:40:D9:F6:24:52:4D:C4:D4:79:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oqNpw4WUAnRQNn2JFJNxNR51eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/54D6A50E06B511EB9372D32BC4F9AE02/3oqNpw4WUAnRQNn2JFJNxNR51eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ca:cd:2f:bb:ba:85:0c:5a:ae:c2:12:ee:35:e7:c2:eb:8e: c1:db:f2:f1:ab:1e:44:71:3e:a1:64:ac:dd:0a:83:b8:dd:fc: 5e:b5:da:c2:ee:a7:09:08:23:25:fd:df:83:92:01:8c:1e:27: 46:82:56:19:2b:a0:0a:5e:6f:4a:0d:37:5a:c0:ab:44:6c:1e: 56:66:ae:76:aa:c4:3c:4c:22:d8:fe:cd:2a:f7:26:7a:fb:31: b2:eb:ae:1d:1a:12:3b:ea:3f:31:4a:31:0d:92:a5:6b:56:eb: ed:63:d5:90:c0:d5:ad:7f:bd:3c:89:ad:fb:d0:7d:78:46:16: 5e:4d:20:58:eb:79:b0:85:47:9d:a5:7b:aa:6a:6a:71:02:fb: 51:15:80:4d:b5:8d:5c:77:0a:66:f9:9f:8b:6a:06:40:96:b1: a0:3b:9b:29:16:ea:a6:a6:54:35:69:76:f4:df:7e:53:c4:29: 25:3d:1c:d3:ef:b9:2a:a3:e0:6f:36:0b:ec:f3:dc:59:4a:b2: 28:9d:a2:c7:76:23:bf:a9:7a:20:b3:7c:65:e4:1c:87:4c:30: 2d:68:94:e0:fc:42:9d:ef:e9:c6:ef:cb:f8:57:74:c0:a0:92: 2a:ce:45:c3:6d:a9:17:8d:54:66:22:17:04:f4:f7:20:c0:36: b5:e0:7f:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKERFOEE4REE3MEUxNjUwMDlEMTQwRDlGNjI0NTI0REM0 RDQ3OUQ1RTgwHhcNMjYwMzI0MjAzODU3WhcNMjYwMzMxMjAzODU3WjAYMRYwFAYD VQQDEw02OWMyZjY2MS1mZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NPoQza9owZZfTjLibEQWagYAJIxsOqlb9fzVSCVhxaKXxwFv4pwSFLL3MsY hiNxWDZ+U7iX333UM6pt2clL4vvBZWb6DCa6/Bmz+Myo8xg2gFAIldIDL/nzpPn2 98h8IjbGDkVzUrPzUodQjatqsg5aMLB1DezEIHZ9JmEfZB9YTHx+FC1C4xtf/1r0 O9sLZ/m/UukQo022dtu4msiI4i4Plf2zyLA7W0rtj/SpzIaTVaQ5yqDJF+TY8MDt oKFICeZydhLqiEEIkvFxhlexGDQ06tZYDqeb9odzV8O/r3eVPyPZySZtdPCTDz4n vYa9D0ctXI1b3gjy4Ied/L2wVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMMUwgb AC0siodN8CTmbl478SSaMB8GA1UdIwQYMBaAFN6KjacOFlAJ0UDZ9iRSTcTUedXo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS81NEQ2QTUwRTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VBblJRTm4ySkZKTnhOUjUx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvcU5wdzRXVUFuUlFObjJKRkpOeE5SNTFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS81NEQ2QTUwRTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi8zb3FOcHc0V1VB blJRTm4ySkZKTnhOUjUxZWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZsrNL7u6hQxarsIS7jXnwuuOwdvy8aseRHE+oWSs3QqDuN38XrXawu6nCQgj Jf3fg5IBjB4nRoJWGSugCl5vSg03WsCrRGweVmaudqrEPEwi2P7NKvcmevsxsuuu HRoSO+o/MUoxDZKla1br7WPVkMDVrX+9PImt+9B9eEYWXk0gWOt5sIVHnaV7qmpq cQL7URWATbWNXHcKZvmfi2oGQJaxoDubKRbqpqZUNWl29N9+U8QpJT0c0++5KqPg bzYL7PPcWUqyKJ2ix3Yjv6l6ILN8ZeQch0wwLWiU4PxCne/pxu/L+Fd0wKCSKs5F w22pF41UZiIXBPT3IMA2teB/aw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:41:55 2026 by rpki-client