$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: mMfcfCW/wmO1YWQ55Hwz4TUWY8rQxBxBrNCDdjIt9Hk= Subject key identifier: F8:2A:AC:07:6D:6A:5C:BF:5E:87:CA:41:70:15:1E:DF:61:0F:D9:20 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 086C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0863 Signing time: Tue 24 Mar 2026 20:28:19 +0000 Manifest this update: Tue 24 Mar 2026 20:28:18 +0000 Manifest next update: Tue 31 Mar 2026 20:28:18 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: KH9dEe7O3o5zfAfUu+VSxfs/IHHCWPF3WT/hNj5tFIk=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: gjXk5FJ28SiJiqatM16BZg/99HgL3HEPLn3XZb4vIWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2156 (0x86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Mar 24 20:28:18 2026 GMT Not After : Mar 31 20:28:18 2026 GMT Subject: CN=69c2f3e3-3f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6b:2a:ce:19:36:16:b7:48:71:b9:b1:4a:2f: b1:fe:62:86:c5:71:53:1c:c5:9d:6c:d4:b7:fe:e0: 89:d6:3e:d6:a6:05:0d:9a:8b:39:3d:20:2d:43:79: 3c:06:bd:94:b7:d6:3f:80:f9:cf:09:86:c3:d7:cd: 8c:13:ac:7d:a6:6a:6b:b6:de:cb:c5:fd:92:73:c1: 8f:f3:9f:e2:19:34:5c:06:8a:13:41:24:d3:cb:c2: 92:ca:22:0c:4f:57:c4:4e:1a:57:ff:47:46:e5:83: 60:7f:ba:a7:f4:e2:37:c9:92:47:86:de:8e:8d:4e: 26:92:5c:3f:fd:0b:3c:c0:97:4f:81:7e:f4:0a:f0: 3e:b2:79:38:4d:b4:ff:71:70:e4:ef:c5:1c:df:f2: cb:c8:aa:5e:a2:2e:bf:fa:66:15:b4:bf:fe:25:4b: cc:df:2f:d1:fc:06:ef:62:cf:9b:24:74:fe:77:3e: b4:7f:2a:73:fc:fd:2e:fd:27:da:81:9b:26:6f:3c: 02:1b:2e:87:84:74:22:39:09:18:cb:bb:42:46:1d: b5:1b:47:75:62:aa:ee:df:93:d0:68:10:ac:38:9d: 78:30:21:d3:eb:44:2f:f1:19:39:68:15:2c:b5:f8: f6:82:86:ea:ff:bf:d1:03:19:c1:94:66:b2:81:06: ac:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2A:AC:07:6D:6A:5C:BF:5E:87:CA:41:70:15:1E:DF:61:0F:D9:20 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5d:56:e3:c6:72:e5:b7:46:50:bf:e4:9b:c4:b4:03:2f:2d: 93:f6:d7:0b:9f:7a:66:e6:df:c3:67:6f:f2:fe:50:0f:9e:30: d2:9d:a6:f1:f9:d9:a9:f5:d1:e5:59:1f:c3:8a:db:f8:28:70: 58:ff:0e:0b:1d:31:6a:54:ad:83:eb:f4:8f:d5:d3:8c:f5:b4: de:c0:46:ae:2f:9c:6e:66:7f:6f:b5:bf:37:a8:34:7e:2f:fd: 7e:1e:1a:c2:d5:9d:ce:3e:63:72:28:a1:e9:69:f2:32:06:ca: ff:71:9a:22:4d:a0:56:b3:8b:73:c4:c4:f1:06:b0:a8:e8:38: 4e:7b:4d:bd:f8:08:07:30:66:f3:01:65:8b:0d:d5:3d:88:13: 3a:af:21:e9:c6:a7:d7:74:14:c5:25:8a:69:4e:75:02:be:11: ac:bc:0b:fb:fd:98:59:c9:02:6b:e1:ea:a5:ce:9f:39:67:02: ce:06:87:65:0f:3e:98:d0:f5:b3:b5:85:54:ba:7c:8c:3d:c3: a9:40:d5:88:b4:fc:04:a1:04:b9:c1:d9:75:7e:1f:71:a2:a7: 8a:6b:25:e2:0e:47:30:b1:87:e0:11:16:e7:cc:9d:92:98:b1: 96:42:d3:54:9e:83:9d:59:7c:39:80:0a:32:64:c1:08:59:9c: 13:59:b2:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjYwMzI0MjAyODE4WhcNMjYwMzMxMjAyODE4WjAYMRYwFAYD VQQDEw02OWMyZjNlMy0zZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymsqzhk2FrdIcbmxSi+x/mKGxXFTHMWdbNS3/uCJ1j7WpgUNmos5PSAtQ3k8 Br2Ut9Y/gPnPCYbD182ME6x9pmprtt7Lxf2Sc8GP85/iGTRcBooTQSTTy8KSyiIM T1fEThpX/0dG5YNgf7qn9OI3yZJHht6OjU4mklw//Qs8wJdPgX70CvA+snk4TbT/ cXDk78Uc3/LLyKpeoi6/+mYVtL/+JUvM3y/R/AbvYs+bJHT+dz60fypz/P0u/Sfa gZsmbzwCGy6HhHQiOQkYy7tCRh21G0d1Yqru35PQaBCsOJ14MCHT60Qv8Rk5aBUs tfj2gobq/7/RAxnBlGaygQasJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPgqrAdt aly/XofKQXAVHt9hD9kgMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmV1W48Zy5bdGUL/km8S0Ay8tk/bXC596Zubfw2dv8v5QD54w0p2m8fnZqfXR 5Vkfw4rb+ChwWP8OCx0xalStg+v0j9XTjPW03sBGri+cbmZ/b7W/N6g0fi/9fh4a wtWdzj5jciih6WnyMgbK/3GaIk2gVrOLc8TE8QawqOg4TntNvfgIBzBm8wFliw3V PYgTOq8h6can13QUxSWKaU51Ar4RrLwL+/2YWckCa+Hqpc6fOWcCzgaHZQ8+mND1 s7WFVLp8jD3DqUDViLT8BKEEucHZdX4fcaKnimsl4g5HMLGH4BEW58ydkpixlkLT VJ6DnVl8OYAKMmTBCFmcE1myeg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:04:30 2026 by rpki-client