$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft File: 3oPHbNtE9PeURxkgK-OvqIPTSU0.mft (raw, json) Hash identifier: ZKkPjXZwO3OdbB5P5Z1diXkphkSjIvA0jywLKDSRrgI= Subject key identifier: 12:C6:C6:DE:77:A6:BB:55:49:20:07:E0:F7:4C:2F:13:6F:8A:6C:0C Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft Manifest number: 39 Signing time: Wed 25 Mar 2026 07:48:19 +0000 Manifest this update: Wed 25 Mar 2026 07:48:18 +0000 Manifest next update: Wed 01 Apr 2026 07:48:18 +0000 Files and hashes: 1: 3oPHbNtE9PeURxkgK-OvqIPTSU0.crl (hash: 1PAIKbmhxUxNCat6IUFbi6VZ27e5WGo1Q60abWEYzqc=) 2: E9CC4952DBB711F09A595FAD4E641951.roa (hash: EtIKzTCAN2VdvSH9vn7Jry+LrXGcko8wl7wpF7oNjrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Mar 25 07:48:18 2026 GMT Not After : Apr 1 07:48:18 2026 GMT Subject: CN=69c39343-28aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0f:bb:21:4c:06:1b:50:fd:a3:e0:0d:f3:4f: 46:6e:9b:89:ea:39:bb:1a:a0:27:59:32:9e:85:cd: ef:01:2b:3b:3e:9c:6e:7c:17:b4:07:ee:a1:50:14: f0:a7:20:86:5c:ba:23:3c:eb:f6:0f:01:33:48:76: 04:c3:ea:05:d4:a1:41:b5:cd:7d:94:97:4d:46:c0: c0:c0:3d:cf:ec:04:19:06:be:51:78:e3:ef:12:c2: a7:16:86:eb:46:1c:f2:29:81:61:31:29:0a:54:b7: ca:05:04:c0:c5:f0:a1:92:55:f2:a1:35:c9:34:a0: 30:93:d5:86:0d:4f:6a:ca:bf:f4:e4:d6:91:f0:99: 5d:d5:92:f0:ec:a4:5c:5a:4c:c4:79:9f:6b:6e:43: c1:f4:fd:a9:91:cc:0d:e1:ea:88:77:cc:04:50:75: 22:71:02:9d:b8:a6:36:31:96:c0:17:d8:b2:f4:b0: dc:2e:8c:b7:73:da:69:dd:40:9b:11:05:56:a6:44: 24:c0:d3:d1:37:5e:32:91:80:a1:4b:a3:4c:a5:90: 69:d0:d9:cf:83:47:e5:cd:9f:7c:2b:5a:b1:ef:5e: db:1e:4b:19:a5:b1:6f:77:cb:64:3b:b8:f9:4c:f3: 17:fd:45:45:03:98:f0:c0:e1:e9:7e:e0:95:68:9e: 53:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C6:C6:DE:77:A6:BB:55:49:20:07:E0:F7:4C:2F:13:6F:8A:6C:0C X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:2d:5a:7a:b3:e7:b0:a2:7f:e6:17:08:6a:b8:d8:cb:74:88: 58:4c:6f:de:60:98:88:fe:8a:53:b5:0c:39:3d:da:74:06:25: 25:6c:fd:82:dd:5e:f1:a9:62:c3:ef:67:61:ab:99:28:d1:b0: 77:ac:80:f3:c3:3f:ce:5c:83:7e:dc:b8:42:8d:96:7e:d7:6c: 3e:3a:26:93:cf:76:e3:10:cf:05:90:16:3d:dc:3c:66:37:75: 73:65:24:60:cf:4a:a7:6e:36:58:2a:9e:55:f7:13:e7:0a:20: 50:1d:c4:b2:42:1f:ba:75:da:24:84:dd:06:37:b3:4c:7a:d4: cd:9e:77:53:ad:a4:fa:8a:31:a6:e7:cb:1e:01:12:5c:54:b3: ff:c8:8d:42:2b:1c:1f:af:f1:f5:cc:08:cc:13:e0:ca:8c:08: 61:55:c4:66:fe:07:f9:6b:9c:87:bb:6f:df:50:e9:d4:5c:22: 12:35:86:50:e9:a9:e1:10:58:0d:8f:ef:f0:1f:3c:c7:61:4d: f5:92:88:4e:2e:ac:fc:d0:24:c7:5a:fc:35:5e:1f:fb:ca:ac: 2c:36:cd:07:a0:44:4f:ef:be:d4:32:d6:73:e3:c1:f5:b6:f5: 6a:8d:8b:35:5e:4f:01:5a:9c:31:66:d1:e8:2e:58:9c:08:74: 3b:24:bb:95 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNjAzMjUwNzQ4MThaFw0yNjA0MDEwNzQ4MThaMBgxFjAUBgNV BAMTDTY5YzM5MzQzLTI4YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2D7shTAYbUP2j4A3zT0Zum4nqObsaoCdZMp6Fze8BKzs+nG58F7QH7qFQFPCn IIZcuiM86/YPATNIdgTD6gXUoUG1zX2Ul01GwMDAPc/sBBkGvlF44+8SwqcWhutG HPIpgWExKQpUt8oFBMDF8KGSVfKhNck0oDCT1YYNT2rKv/Tk1pHwmV3VkvDspFxa TMR5n2tuQ8H0/amRzA3h6oh3zARQdSJxAp24pjYxlsAX2LL0sNwujLdz2mndQJsR BVamRCTA09E3XjKRgKFLo0ylkGnQ2c+DR+XNn3wrWrHvXtseSxmlsW93y2Q7uPlM 8xf9RUUDmPDA4el+4JVonlP1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUEsbG3nem u1VJIAfg90wvE2+KbAwwHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTI4LzQ3NjA2RUI0REJCNzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBl VVJ4a2dLLU92cUlQVFNVMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBxLVp6s+ewon/mFwhquNjLdIhYTG/eYJiI/opTtQw5Pdp0BiUlbP2C3V7xqWLD 72dhq5ko0bB3rIDzwz/OXIN+3LhCjZZ+12w+OiaTz3bjEM8FkBY93DxmN3VzZSRg z0qnbjZYKp5V9xPnCiBQHcSyQh+6ddokhN0GN7NMetTNnndTraT6ijGm58seARJc VLP/yI1CKxwfr/H1zAjME+DKjAhhVcRm/gf5a5yHu2/fUOnUXCISNYZQ6anhEFgN j+/wHzzHYU31kohOLqz80CTHWvw1Xh/7yqwsNs0HoERP777UMtZz48H1tvVqjYs1 Xk8BWpwxZtHoLlicCHQ7JLuV -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:56 2026 by rpki-client