$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft File: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft (raw, json) Hash identifier: ySUORZ1BGZZcoaVAyP+DeKV5dE6/s8UMXYzU60iNQH8= Subject key identifier: 39:CF:CC:27:06:2C:AF:C9:55:9D:9C:38:B9:7D:39:C7:58:91:3D:B4 Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft Manifest number: 1BDA Signing time: Tue 24 Mar 2026 16:09:26 +0000 Manifest this update: Tue 24 Mar 2026 16:09:26 +0000 Manifest next update: Tue 31 Mar 2026 16:09:26 +0000 Files and hashes: 1: 3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl (hash: L1zv9765fbLfkb3bOGMYtKeiUtOSGtEQzzqFNPHMNfw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7171 (0x1c03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1, serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: Mar 24 16:09:26 2026 GMT Not After : Mar 31 16:09:26 2026 GMT Subject: CN=69c2b736-b65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:ae:98:39:eb:79:e6:7e:4b:39:16:f6:66: 5b:67:9b:dd:3e:45:34:26:9d:6b:cf:87:25:c4:8b: 21:e7:c8:f7:4c:55:14:06:c6:13:15:b0:69:4a:70: 6d:41:ff:5c:14:47:8e:65:b5:a9:44:4c:70:a5:9a: 69:2c:09:59:31:c7:8c:7d:d5:e6:91:61:12:e3:40: b7:46:8a:d1:43:81:cb:0b:b9:63:0f:b3:cd:79:e9: 7f:b0:ac:86:53:91:8b:7d:10:99:88:82:c0:d9:18: 55:75:15:24:22:f0:13:85:2d:d7:73:34:49:0c:34: 0b:41:46:3d:f9:c7:6f:c3:81:bb:0f:83:6f:b1:66: c2:9b:ed:be:5f:2d:2e:7d:a2:bc:78:9c:99:0b:63: ac:69:62:cb:68:26:e4:cf:eb:13:df:95:25:24:7b: 8b:61:89:ce:2d:80:b6:3b:af:76:2c:7c:21:ed:2d: 7c:6d:1a:ef:92:45:07:7a:1e:52:fb:af:0f:7d:d0: 6f:a4:5e:9d:87:78:39:00:f0:6c:ea:62:aa:48:6d: 91:78:e0:bd:29:85:8b:c9:05:5c:87:ea:35:8a:7f: 37:0c:84:93:d7:2f:c4:e4:e3:b1:d7:33:a6:27:33: ce:42:29:16:a8:db:02:57:b3:aa:65:aa:47:bc:6c: 9b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:CF:CC:27:06:2C:AF:C9:55:9D:9C:38:B9:7D:39:C7:58:91:3D:B4 X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:42:04:0b:9e:9a:15:0f:9a:59:62:30:04:8f:5a:5e:49:b9: d4:40:d7:c9:e4:95:66:a1:19:1a:47:0b:c2:58:b2:51:2d:a4: f3:1b:f9:bb:44:14:6e:a4:a7:b9:38:0b:d7:f2:26:09:9a:0f: 4a:26:40:42:ef:d6:ec:47:76:ad:36:9a:e4:27:6d:ad:7b:45: e6:fd:2f:72:8d:79:c5:24:e7:25:0e:16:00:57:89:3f:7d:d3: 8c:8c:e3:d3:1e:7a:f9:bf:2e:ad:26:5a:b2:38:08:4e:b8:b4: 56:fc:be:70:2b:f5:95:cb:74:59:e1:96:bb:85:a4:70:fc:61: 18:73:c9:a3:cf:85:63:92:30:7c:11:c9:3b:80:e7:8a:9d:9b: 35:b5:6d:39:7e:21:3d:fe:1d:85:e2:57:42:d0:1e:7e:97:ce: 03:95:2d:97:b4:7b:24:36:cd:3c:0e:54:14:09:60:64:6f:ed: 53:be:d5:cb:75:39:a3:e1:6a:ef:36:4a:76:21:b5:a6:1e:66: a7:2f:a2:db:07:46:e3:ae:b2:32:c2:57:3e:da:17:c8:10:34: 7d:ab:c0:c1:65:ee:b6:f1:a2:fc:d3:c4:c7:9c:37:14:2b:c2: eb:1c:4c:40:ba:40:a7:8d:d6:f1:31:aa:1a:39:13:49:fb:f8: c6:7a:08:ed -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjYwMzI0MTYwOTI2WhcNMjYwMzMxMTYwOTI2WjAYMRYwFAYD VQQDEw02OWMyYjczNi1iNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlGumDnreeZ+SzkW9mZbZ5vdPkU0Jp1rz4clxIsh58j3TFUUBsYTFbBpSnBt Qf9cFEeOZbWpRExwpZppLAlZMceMfdXmkWES40C3RorRQ4HLC7ljD7PNeel/sKyG U5GLfRCZiILA2RhVdRUkIvAThS3XczRJDDQLQUY9+cdvw4G7D4NvsWbCm+2+Xy0u faK8eJyZC2OsaWLLaCbkz+sT35UlJHuLYYnOLYC2O692LHwh7S18bRrvkkUHeh5S +68PfdBvpF6dh3g5APBs6mKqSG2ReOC9KYWLyQVch+o1in83DIST1y/E5OOx1zOm JzPOQikWqNsCV7OqZapHvGybOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDnPzCcG LK/JVZ2cOLl9OcdYkT20MB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzRFMS8yMDA0RjE0NDE2MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lS ckhlS2t4YlhHd3ZvQUdPVzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAS0IEC56aFQ+aWWIwBI9aXkm51EDXyeSVZqEZGkcLwliyUS2k8xv5u0QUbqSn uTgL1/ImCZoPSiZAQu/W7Ed2rTaa5CdtrXtF5v0vco15xSTnJQ4WAFeJP33TjIzj 0x56+b8urSZasjgITri0Vvy+cCv1lct0WeGWu4WkcPxhGHPJo8+FY5IwfBHJO4Dn ip2bNbVtOX4hPf4dheJXQtAefpfOA5Utl7R7JDbNPA5UFAlgZG/tU77Vy3U5o+Fq 7zZKdiG1ph5mpy+i2wdG466yMsJXPtoXyBA0favAwWXutvGi/NPEx5w3FCvC6xxM QLpAp43W8TGqGjkTSfv4xnoI7Q== -----END CERTIFICATE-----Generated at Thu Mar 26 15:43:09 2026 by rpki-client