$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: fbh+W4ETOLxAdW45QphZM8fQxJhz5HGUcJKuis1g8AI= Subject key identifier: BF:7F:3C:A2:E8:F2:5C:A4:DD:59:3E:38:77:E0:2A:5A:DD:74:48:28 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0C8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0C7C Signing time: Mon 02 Mar 2026 02:25:15 +0000 Manifest this update: Mon 02 Mar 2026 02:25:15 +0000 Manifest next update: Mon 09 Mar 2026 02:25:15 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: 5ybIPW7UgSY6PFwHzG0q8M09qJvjI78sgJGc4i0yoAc=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: jtNA4DSxailzGixhCLBv/XtkHLhwf6qcSCB3BjEuN/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Mar 2 02:25:15 2026 GMT Not After : Mar 9 02:25:15 2026 GMT Subject: CN=69a4f50b-8097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1c:8a:fb:98:fe:6c:e9:1d:24:07:6b:ae:c3: 1a:4d:f2:18:7e:d9:0b:f3:45:b2:3b:52:32:03:e6: d3:0f:d2:57:a1:06:ee:dc:07:63:2e:68:f4:2a:e5: ec:fa:e5:51:c6:e0:c2:f1:82:85:3e:e0:2b:d1:74: a4:18:6a:17:0e:53:2c:52:28:1b:a4:1d:a1:05:8a: 5f:73:2e:18:8c:ef:5e:0f:f5:37:d0:86:cf:9d:0c: 32:c3:b4:96:b5:61:7b:f8:05:2e:70:17:2d:ae:e3: 84:f8:6c:a0:04:66:05:e0:dc:f4:78:a4:55:1d:01: 79:8f:cc:0c:55:fd:b8:b6:0c:b7:e0:e4:97:b2:df: e2:6f:4a:31:85:30:52:a8:ff:1d:f4:90:63:65:d3: 00:22:60:6d:c1:2a:6e:e1:ad:ef:c7:fa:05:a0:32: ff:e7:54:1a:db:e6:5f:c2:f0:d9:f6:83:b6:01:7e: 29:78:dd:be:52:06:3f:b1:39:93:a9:4a:df:c6:44: f9:cf:38:4b:b1:97:3c:a4:91:bc:bf:da:51:59:de: 59:64:79:48:c6:6a:f1:f5:ac:9f:64:13:02:5a:76: 8e:0a:55:f2:63:af:06:8d:1c:90:6a:1a:a5:ee:a9: 42:73:99:38:f8:dd:c1:8a:cc:22:5f:16:40:81:1b: cc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7F:3C:A2:E8:F2:5C:A4:DD:59:3E:38:77:E0:2A:5A:DD:74:48:28 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:9d:ae:90:01:cd:c4:07:4d:1e:d9:50:69:85:90:8c:32:fc: b3:7f:bb:78:bc:81:84:71:38:a1:4f:0e:be:7a:64:65:1f:40: 45:4e:3f:0b:61:75:13:6d:78:a4:bc:cb:6d:5d:2e:5c:ff:de: 0a:94:1d:04:35:27:67:1d:67:f8:10:19:6b:d9:33:18:f9:40: f7:02:46:bf:2b:c0:d4:25:72:82:9e:e5:69:53:d5:9f:6b:83: 4a:0d:47:0c:8d:5b:cb:bc:c9:d4:cb:fa:7b:9f:38:5a:b2:ec: 81:57:6e:b7:86:8d:61:89:8f:80:e2:ba:af:1d:3e:dd:b8:99: 92:b2:c4:29:c8:05:01:e7:71:71:4b:79:f6:62:39:e3:ca:15: b4:b2:17:3c:b0:4d:b7:57:cc:04:fe:28:0e:31:d1:ff:3c:9e: dd:3e:ce:ee:3f:ea:bd:28:e4:cc:ec:71:3d:59:73:36:f8:d0: 66:6b:a4:2f:b9:39:dd:da:27:b1:88:d6:7d:98:2f:ae:85:cf: 00:f6:b8:a3:b2:f8:d1:45:d5:b1:4a:29:1a:61:34:d2:85:db: e2:77:08:bd:86:62:d6:61:a9:5c:92:f3:b4:9d:f6:82:ea:6f: b1:c2:9c:5a:f2:f9:19:96:40:b9:4e:68:ef:9d:f6:90:87:ae: e7:01:52:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjYwMzAyMDIyNTE1WhcNMjYwMzA5MDIyNTE1WjAYMRYwFAYD VQQDEw02OWE0ZjUwYi04MDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RyK+5j+bOkdJAdrrsMaTfIYftkL80WyO1IyA+bTD9JXoQbu3AdjLmj0KuXs +uVRxuDC8YKFPuAr0XSkGGoXDlMsUigbpB2hBYpfcy4YjO9eD/U30IbPnQwyw7SW tWF7+AUucBctruOE+GygBGYF4Nz0eKRVHQF5j8wMVf24tgy34OSXst/ib0oxhTBS qP8d9JBjZdMAImBtwSpu4a3vx/oFoDL/51Qa2+ZfwvDZ9oO2AX4peN2+UgY/sTmT qUrfxkT5zzhLsZc8pJG8v9pRWd5ZZHlIxmrx9ayfZBMCWnaOClXyY68GjRyQahql 7qlCc5k4+N3BiswiXxZAgRvMNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL9/PKLo 8lyk3Vk+OHfgKlrddEgoMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMZ2ukAHNxAdNHtlQaYWQjDL8s3+7eLyBhHE4oU8OvnpkZR9ARU4/C2F1E214 pLzLbV0uXP/eCpQdBDUnZx1n+BAZa9kzGPlA9wJGvyvA1CVygp7laVPVn2uDSg1H DI1by7zJ1Mv6e584WrLsgVdut4aNYYmPgOK6rx0+3biZkrLEKcgFAedxcUt59mI5 48oVtLIXPLBNt1fMBP4oDjHR/zye3T7O7j/qvSjkzOxxPVlzNvjQZmukL7k53don sYjWfZgvroXPAPa4o7L40UXVsUopGmE00oXb4ncIvYZi1mGpXJLztJ32gupvscKc WvL5GZZAuU5o7532kIeu5wFSVg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:22:49 2026 by rpki-client