$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft File: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft (raw, json) Hash identifier: crVexQrJ288sHTZsCXaxO/C2Iiglryf991BigDT7JZE= Subject key identifier: FB:6B:6F:49:6E:B6:A9:56:C7:E0:CB:64:C2:56:9C:B6:CF:62:5C:C2 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 0633 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft Manifest number: 060E Signing time: Tue 24 Mar 2026 22:39:34 +0000 Manifest this update: Tue 24 Mar 2026 22:39:34 +0000 Manifest next update: Tue 31 Mar 2026 22:39:34 +0000 Files and hashes: 1: r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl (hash: DGXO93HB3qK2GqEUV48imttFGVHn9euzB7HrMl7BXdg=) 2: A18C330A055611F1B80F1E722C3D8C67.roa (hash: BX80cDVzZBpalgIyEiFZUq6L3s4iGC1yQ7gUj1TwOQ8=) 3: B0203536062A11F185F9D5F9263D8C67.roa (hash: 6dnR2Nm3KNO6A8Yh2KSvhbTBZD8W+AyXyUMBx8JMzbg=) 4: 75125118FE5F11F0956342DD516F56BC.roa (hash: Whh/5V1YlqO85bcjOHvfWe0PcIZNVRDICOUqC1FzhpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:39:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Mar 24 22:39:34 2026 GMT Not After : Mar 31 22:39:34 2026 GMT Subject: CN=69c312a6-9efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7b:52:01:d2:e5:d4:e0:64:34:cd:a7:2e:f1: 31:ae:3b:c4:27:2c:37:84:2a:ce:c4:a4:c8:c5:e3: f2:90:cb:7e:93:f4:70:a4:38:d0:82:66:b7:c4:1a: 85:69:9a:f4:20:ed:8d:46:d6:b2:1d:2c:7e:85:f1: 9a:d2:61:8d:3b:14:a6:9f:84:0f:bd:2f:88:cb:3d: 30:c5:44:a5:2a:1c:52:dc:ed:f0:48:03:fe:f2:59: b1:79:c1:a2:ef:36:8d:f0:ac:72:66:60:5d:fe:b5: db:69:f7:38:aa:2f:e6:8c:29:a6:15:d6:52:11:7d: f9:af:c4:e2:9e:50:d0:98:f9:36:80:d9:05:94:ce: f2:68:33:9d:cd:1e:69:3c:23:d0:7a:94:30:12:37: 14:24:ec:3a:d2:ac:37:d2:4c:59:13:44:4f:4d:aa: f1:ea:2b:8d:d4:b8:34:59:0a:98:fd:d6:22:aa:5f: 7a:db:5c:64:5d:9b:c9:82:45:65:33:95:b2:cc:0f: 0f:7d:97:f3:b3:d8:c2:de:4f:09:84:21:4c:13:93: d3:c8:f0:85:fa:02:ee:68:33:43:45:29:38:1a:f5: 2c:8d:f7:7a:20:62:96:2d:cd:7a:26:d6:20:6f:98: e0:a1:81:ce:3f:84:47:9c:d5:9f:8b:d2:4a:b0:b1: 11:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:6B:6F:49:6E:B6:A9:56:C7:E0:CB:64:C2:56:9C:B6:CF:62:5C:C2 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:e8:ff:49:f6:48:e8:2c:4d:25:59:03:bb:71:80:7a:05:8f: 97:0a:c5:ac:83:ad:f2:b8:c9:b8:cc:79:1e:1a:a6:62:26:3c: bf:a2:c1:6e:27:2c:70:79:16:1c:68:38:7a:f8:54:92:9c:e3: 99:fe:e3:6c:ad:a7:60:90:e4:4f:ea:92:dc:65:46:52:54:59: c3:57:b9:02:1d:33:46:e4:85:56:31:40:98:06:82:df:22:fc: 7a:f8:de:a9:09:3b:41:a7:4a:a4:a7:da:f1:ff:80:3a:2f:99: dd:9a:90:19:fb:b1:43:2e:97:54:35:15:35:68:ca:c9:ad:04: c3:61:40:28:73:9f:27:d5:28:c9:df:ad:69:12:44:9f:7c:22: 62:79:3f:48:d0:84:dd:ea:ae:c2:49:79:0d:79:77:9b:f6:fb: c4:80:c5:a1:dd:22:08:15:a4:7c:01:5c:4e:09:97:1b:b1:dd: ed:d9:86:45:51:52:17:eb:67:c8:a1:6b:23:4c:0f:a7:6e:1b: f0:b0:d4:6b:26:50:83:60:1c:83:69:d8:48:59:d4:3f:1a:3d: c4:63:ca:c1:82:66:98:ec:5f:34:16:4b:3b:e5:5d:2f:6b:54: 5d:8d:c2:9b:67:4b:bc:e0:b9:2b:a6:d9:58:db:f3:04:f1:0f: ba:0b:95:07 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjYwMzI0MjIzOTM0WhcNMjYwMzMxMjIzOTM0WjAYMRYwFAYD VQQDEw02OWMzMTJhNi05ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXtSAdLl1OBkNM2nLvExrjvEJyw3hCrOxKTIxePykMt+k/RwpDjQgma3xBqF aZr0IO2NRtayHSx+hfGa0mGNOxSmn4QPvS+Iyz0wxUSlKhxS3O3wSAP+8lmxecGi 7zaN8KxyZmBd/rXbafc4qi/mjCmmFdZSEX35r8TinlDQmPk2gNkFlM7yaDOdzR5p PCPQepQwEjcUJOw60qw30kxZE0RPTarx6iuN1Lg0WQqY/dYiql9621xkXZvJgkVl M5WyzA8PfZfzs9jC3k8JhCFME5PTyPCF+gLuaDNDRSk4GvUsjfd6IGKWLc16JtYg b5jgoYHOP4RHnNWfi9JKsLERSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPtrb0lu tqlWx+DLZMJWnLbPYlzCMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTk3Mi85QkY2QzQ0RUYwMzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0 YUt0bVp6cjNvVGJDNmc2bHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZOj/SfZI6CxNJVkDu3GAegWPlwrFrIOt8rjJuMx5HhqmYiY8v6LBbicscHkW HGg4evhUkpzjmf7jbK2nYJDkT+qS3GVGUlRZw1e5Ah0zRuSFVjFAmAaC3yL8evje qQk7QadKpKfa8f+AOi+Z3ZqQGfuxQy6XVDUVNWjKya0Ew2FAKHOfJ9Uoyd+taRJE n3wiYnk/SNCE3equwkl5DXl3m/b7xIDFod0iCBWkfAFcTgmXG7Hd7dmGRVFSF+tn yKFrI0wPp24b8LDUayZQg2Acg2nYSFnUPxo9xGPKwYJmmOxfNBZLO+VdL2tUXY3C m2dLvOC5K6bZWNvzBPEPuguVBw== -----END CERTIFICATE-----Generated at Thu Mar 26 10:10:48 2026 by rpki-client