$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: KbFAo6a3sjwHvq0U0KG7s/JtJ9Fk/MogF2Bzo8jD+So= Subject key identifier: 1B:27:52:3C:49:B2:C8:08:A6:25:92:B3:7F:DF:19:13:5C:9A:28:55 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0E36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0E2A Signing time: Tue 24 Mar 2026 17:40:29 +0000 Manifest this update: Tue 24 Mar 2026 17:40:29 +0000 Manifest next update: Tue 31 Mar 2026 17:40:29 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: SgxjhhHjTYrj2tnomyyToH7KzvpxMNTpYFRjmXn3e3E=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: DD1ADaREQj4FZ7nnow63JObODw7KCChH9CO7F5RCGA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Mar 24 17:40:29 2026 GMT Not After : Mar 31 17:40:29 2026 GMT Subject: CN=69c2cc8d-e80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:c4:cd:67:44:29:ac:c1:b9:d0:cb:c9:f6: 24:f3:3f:3e:6f:06:ff:f6:e6:1b:fd:b1:7e:b7:0b: 1d:a3:b7:f0:0a:12:87:70:4a:fa:e2:66:0e:26:b5: 86:fb:41:2b:4d:12:03:9e:c8:b9:dd:8f:25:dd:b8: 51:79:f0:4a:09:33:db:d3:4f:b2:65:5a:93:a1:e6: 2a:07:4a:9a:67:ab:62:a6:1d:29:43:03:3e:f7:fb: d3:b7:04:dd:96:41:97:a8:e0:66:d7:71:58:31:fe: 76:b2:99:8d:fe:91:3d:a5:4c:96:07:6f:8e:37:da: 08:c9:20:7b:c0:4c:3c:f2:6a:91:c5:b9:5a:82:02: 00:e0:9f:52:fa:26:92:a2:fe:97:64:12:be:b4:fd: 6d:ae:a4:7b:6e:4a:99:3b:9e:6b:db:c2:e7:9a:cc: 6f:ff:bf:17:8f:5b:56:7b:40:15:ba:52:4a:3c:e5: 8c:f4:72:76:a5:90:0e:aa:37:6d:a2:07:13:83:0c: 26:a6:3a:36:ec:f7:e8:f7:7a:64:7e:35:0b:b4:e0: 8c:47:2c:5d:c7:38:a3:37:f1:4b:99:b3:27:21:77: c8:6c:71:e7:d8:83:07:f1:3f:ad:3b:84:98:3c:ac: aa:e4:24:90:f2:1a:b6:9f:e9:be:67:91:48:f0:5b: 5c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:27:52:3C:49:B2:C8:08:A6:25:92:B3:7F:DF:19:13:5C:9A:28:55 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:06:5f:62:d8:4c:89:34:67:16:42:7c:ce:29:61:ee:a2:47: 83:de:e2:14:a4:21:58:30:9e:4c:db:cd:a8:b8:6e:5d:8e:92: df:47:70:3d:12:25:cf:76:76:9f:da:8d:9a:7f:47:27:62:2c: fa:c7:51:fa:1d:bf:59:18:8f:eb:ca:d3:4f:07:99:88:b7:99: da:5b:6a:59:03:1c:53:43:aa:01:bd:d0:d6:6c:7e:d4:17:f2: 9f:2e:ba:5c:d4:ee:b0:35:54:ca:c5:19:10:b4:2a:46:ea:ca: 55:db:ce:f7:57:ad:ec:a2:a0:5e:84:41:2a:86:17:3f:bd:4f: 01:67:ac:97:8c:8a:b9:59:00:ea:ad:d5:3a:2c:81:9d:79:d7: 4e:7f:ab:56:3d:07:5c:68:1a:57:c2:17:11:6d:ca:df:c2:34: 06:99:ac:c3:29:7e:80:87:a9:ac:b1:44:3d:f7:84:fb:8b:20: 39:07:64:38:bf:b2:7c:70:fd:8f:f3:29:af:07:d5:c9:60:34: c1:6b:11:0f:42:a2:31:99:b4:4c:82:ca:89:60:a3:54:01:2e: 98:c5:69:54:63:dd:d7:dd:50:99:c8:b9:f1:85:e8:80:44:00: d9:db:dc:20:90:27:2f:1c:54:fe:84:c8:79:76:5a:7e:39:74: 95:93:00:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjYwMzI0MTc0MDI5WhcNMjYwMzMxMTc0MDI5WjAYMRYwFAYD VQQDEw02OWMyY2M4ZC1lODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7TEzWdEKazBudDLyfYk8z8+bwb/9uYb/bF+twsdo7fwChKHcEr64mYOJrWG +0ErTRIDnsi53Y8l3bhRefBKCTPb00+yZVqToeYqB0qaZ6tiph0pQwM+9/vTtwTd lkGXqOBm13FYMf52spmN/pE9pUyWB2+ON9oIySB7wEw88mqRxblaggIA4J9S+iaS ov6XZBK+tP1trqR7bkqZO55r28Lnmsxv/78Xj1tWe0AVulJKPOWM9HJ2pZAOqjdt ogcTgwwmpjo27Pfo93pkfjULtOCMRyxdxzijN/FLmbMnIXfIbHHn2IMH8T+tO4SY PKyq5CSQ8hq2n+m+Z5FI8FtcCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBsnUjxJ ssgIpiWSs3/fGRNcmihVMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARQZfYthMiTRnFkJ8zilh7qJHg97iFKQhWDCeTNvNqLhuXY6S30dwPRIlz3Z2 n9qNmn9HJ2Is+sdR+h2/WRiP68rTTweZiLeZ2ltqWQMcU0OqAb3Q1mx+1Bfyny66 XNTusDVUysUZELQqRurKVdvO91et7KKgXoRBKoYXP71PAWesl4yKuVkA6q3VOiyB nXnXTn+rVj0HXGgaV8IXEW3K38I0Bpmswyl+gIeprLFEPfeE+4sgOQdkOL+yfHD9 j/MprwfVyWA0wWsRD0KiMZm0TILKiWCjVAEumMVpVGPd191Qmci58YXogEQA2dvc IJAnLxxU/oTIeXZafjl0lZMAag== -----END CERTIFICATE-----Generated at Thu Mar 26 17:41:44 2026 by rpki-client