$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: 5RluutYkkhFqqn9knKazYyCwxA5YMC7QfuSwmlowapU= Subject key identifier: 39:10:87:29:03:C8:00:D3:7B:19:A3:1E:90:BB:05:71:8D:78:6D:FE Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A7A Signing time: Mon 02 Mar 2026 19:29:35 +0000 Manifest this update: Mon 02 Mar 2026 19:29:34 +0000 Manifest next update: Mon 09 Mar 2026 19:29:34 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: HeOxAeqjCq9MnIp5m46rebC3kJDwSXPVzLoJOIllsd0=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: pjTWlhBU9uLdZ8Pokz/j8Myvf4pRfYFG3vHjcrWT10w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Mar 2 19:29:34 2026 GMT Not After : Mar 9 19:29:34 2026 GMT Subject: CN=69a5e51e-47ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:dc:e6:08:a0:b5:da:42:76:eb:dd:99:aa: f2:81:19:10:77:5a:7a:96:c2:c9:8f:d8:7e:fc:b1: 61:71:0a:30:15:f2:5a:81:0a:8e:91:b6:4c:96:6d: 51:68:0b:7b:91:56:30:58:18:6f:c1:b0:33:74:66: fd:5f:19:e1:0c:a8:88:51:ad:1f:e3:3e:62:4e:e6: b7:13:d6:18:02:5a:67:f4:11:e8:b7:29:47:8a:df: 79:25:0a:50:11:87:05:df:ea:fc:22:5d:3a:46:a9: d2:7d:25:2b:5e:9d:69:54:3c:e7:a4:06:67:89:ca: bf:46:a5:87:cd:7c:74:88:e0:71:81:db:d3:d6:01: ee:09:29:9f:20:2d:a4:e0:e8:5d:71:f1:6d:71:cb: ab:8b:50:76:6a:4b:83:e6:7e:7e:ff:25:30:c1:c3: 9d:20:25:b2:74:96:05:e0:e1:a2:52:73:30:24:2d: cd:af:5b:86:8c:fc:4b:05:56:eb:f3:2b:6f:86:50: e0:6c:33:6c:4b:80:8b:d3:4e:11:9f:f3:41:cf:3d: 39:56:e9:78:2d:4f:a9:c8:28:51:f7:58:37:45:78: 35:9f:4e:b5:2f:4a:37:53:fc:8b:7e:ec:c2:66:d5: 0e:6e:b2:44:7f:82:fb:ec:ef:4c:29:50:4b:6f:51: ef:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:10:87:29:03:C8:00:D3:7B:19:A3:1E:90:BB:05:71:8D:78:6D:FE X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:95:60:0b:3d:19:a7:03:fb:d8:a0:d9:fc:bf:e2:24:09:eb: e5:76:a2:5b:b7:dd:a1:d7:d4:3c:d0:30:b7:59:bb:76:a8:64: 8d:e8:05:39:c3:97:43:ee:d9:4f:fb:25:3c:b4:35:67:cd:ea: 22:0e:36:9d:fc:8d:8c:52:85:36:b7:d8:81:a5:24:33:9c:1f: 7c:7f:6b:dd:74:6c:8d:b4:a2:f2:76:c7:79:7c:c0:90:d2:5c: 9f:03:8c:68:17:b9:ca:8b:6a:fa:ba:16:ea:bf:f6:f0:d7:1b: 97:3c:46:9f:98:f9:76:63:89:47:9f:6d:1e:7e:7c:e8:02:34: 4e:72:40:b5:e8:e5:23:8b:a8:64:78:93:a8:36:f0:7b:11:35: 45:29:73:3c:f3:a1:b8:ed:54:e1:2f:32:63:2c:f7:ef:7e:1c: c6:bf:a2:fd:e7:99:48:9e:6b:e2:9f:14:41:6d:f0:f1:3b:3a: 21:73:1a:37:28:2a:2c:5e:23:d1:a9:0a:7b:03:63:7f:ad:7c: 46:9a:80:98:46:00:75:94:93:b6:db:68:59:b4:20:5a:da:a4: e4:7c:f5:69:35:b1:eb:bc:ec:5f:8b:24:66:56:66:9a:5b:5f: c0:f2:05:d7:fb:c6:e6:ac:53:99:4e:64:38:ac:ec:bd:d9:2a: dd:58:8d:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjYwMzAyMTkyOTM0WhcNMjYwMzA5MTkyOTM0WjAYMRYwFAYD VQQDEw02OWE1ZTUxZS00N2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2zc5gigtdpCduvdmarygRkQd1p6lsLJj9h+/LFhcQowFfJagQqOkbZMlm1R aAt7kVYwWBhvwbAzdGb9XxnhDKiIUa0f4z5iTua3E9YYAlpn9BHotylHit95JQpQ EYcF3+r8Il06RqnSfSUrXp1pVDznpAZnicq/RqWHzXx0iOBxgdvT1gHuCSmfIC2k 4OhdcfFtccuri1B2akuD5n5+/yUwwcOdICWydJYF4OGiUnMwJC3Nr1uGjPxLBVbr 8ytvhlDgbDNsS4CL004Rn/NBzz05Vul4LU+pyChR91g3RXg1n061L0o3U/yLfuzC ZtUObrJEf4L77O9MKVBLb1HvkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDkQhykD yADTexmjHpC7BXGNeG3+MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq5VgCz0ZpwP72KDZ/L/iJAnr5XaiW7fdodfUPNAwt1m7dqhkjegFOcOXQ+7Z T/slPLQ1Z83qIg42nfyNjFKFNrfYgaUkM5wffH9r3XRsjbSi8nbHeXzAkNJcnwOM aBe5yotq+roW6r/28NcblzxGn5j5dmOJR59tHn586AI0TnJAtejlI4uoZHiTqDbw exE1RSlzPPOhuO1U4S8yYyz3734cxr+i/eeZSJ5r4p8UQW3w8Ts6IXMaNygqLF4j 0akKewNjf618RpqAmEYAdZSTtttoWbQgWtqk5Hz1aTWx67zsX4skZlZmmltfwPIF 1/vG5qxTmU5kOKzsvdkq3ViNPA== -----END CERTIFICATE-----Generated at Mon Mar 2 23:40:40 2026 by rpki-client