$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: sLL3AUHxysmVy6BOfqW/J3ZS7wEY4fCrLQuvpYbmnYU= Subject key identifier: 9D:2B:99:BC:BA:76:FF:72:BF:5D:71:9A:B8:B9:53:89:35:B5:C9:5E Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 72 Signing time: Mon 02 Mar 2026 00:25:34 +0000 Manifest this update: Mon 02 Mar 2026 00:25:32 +0000 Manifest next update: Mon 09 Mar 2026 00:25:32 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: 7jA59icbU4so9RfZl6U8Gnafq099iz8YQDFmaXAP2ns=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: vZdBSZbaRW55Atd6+oAhAH6FpFny6p9aQcYjMtx51M8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Mar 2 00:25:32 2026 GMT Not After : Mar 9 00:25:32 2026 GMT Subject: CN=69a4d8fd-b8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:e2:ef:f5:e0:68:62:36:e5:d9:c9:cd:c5:81: 96:f0:ea:bd:f4:20:7d:57:0a:0d:18:42:e6:2e:e4: e2:21:3e:34:76:61:dd:b0:f2:59:30:54:33:c7:bb: 32:a0:56:2b:63:1d:c8:3f:57:c5:4a:95:bd:a1:71: 9c:c5:ec:fc:f7:3c:53:dc:1e:48:fd:bd:a4:11:92: b8:89:57:61:8e:44:40:c8:33:ee:24:51:67:2f:bd: 3e:ed:54:08:f7:ab:10:4d:48:ae:08:c0:bf:ad:cb: b2:1f:2a:73:d4:6c:64:27:77:5d:93:e6:68:7d:9d: f9:96:54:ea:a1:b0:77:cf:5d:f3:85:fb:71:8e:6d: 6b:82:df:da:e2:88:cc:d3:1f:dd:cb:db:5b:e1:c4: 2e:60:c4:82:90:b6:7d:12:e9:67:78:bb:ae:10:35: a5:bd:20:80:d5:b1:25:f0:81:80:a5:59:55:a4:56: b9:f7:89:f6:85:af:1b:e2:67:06:91:25:f5:61:0d: 98:74:9a:10:3c:00:79:3f:16:56:0f:a4:88:ca:eb: b0:58:85:e2:b1:5d:df:d5:cd:6a:5a:d5:46:8b:28: 11:9a:9f:3d:0d:b6:aa:00:ce:d4:8e:ea:3d:f9:49: d8:4a:de:cb:71:e9:5e:26:7e:4d:46:51:6f:f3:5c: f6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:2B:99:BC:BA:76:FF:72:BF:5D:71:9A:B8:B9:53:89:35:B5:C9:5E X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:35:7d:fb:3e:2c:4a:97:7a:65:9d:fd:3d:c1:6f:a5:05:07: a6:85:00:cb:cb:c0:a5:ab:73:5a:38:f7:bc:31:50:b6:a3:e7: 5e:d1:6b:51:db:3c:a1:ca:de:4d:24:5a:ec:43:15:c4:6d:fb: 11:60:ab:0d:51:6a:b9:38:28:61:1d:22:75:d3:f4:f4:ac:37: 7e:1e:de:de:42:bc:36:3e:fb:90:15:5a:e6:6c:27:85:d6:2b: 48:f5:cc:62:99:82:00:2b:07:f4:83:12:c3:83:27:07:f0:57: e9:93:69:66:2c:f2:57:40:75:bd:74:18:e7:10:f5:9c:11:38: 6b:bc:3c:62:01:cd:27:a3:92:fb:98:dc:a0:1f:72:7d:a8:e4: c9:12:25:cf:42:f6:4c:20:14:29:ac:fa:bb:c6:3a:34:ab:22: b8:e7:b8:e4:ac:2b:ad:b8:42:9b:ec:c2:4a:29:a1:cf:72:00: 79:e0:2c:73:fa:53:cc:61:7f:9c:db:83:31:e2:b8:7c:3b:86: 3b:07:a6:be:4f:8f:4d:c4:a0:c4:da:8c:cf:f1:8b:65:7f:08: e6:0f:4c:64:18:bb:3b:fc:0c:63:ba:d0:af:8e:8d:3f:97:6b: 42:5d:f0:e1:97:a5:8f:d0:13:a5:bf:e0:1f:74:87:ef:33:91: fe:53:cc:7e -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NBODExMC8GA1UEBRMoREQyODA4MjhGRjA5OTZBOENCRUYyOUJGMEQ5MTRERjI1 MkRGMUNCRDAeFw0yNjAzMDIwMDI1MzJaFw0yNjAzMDkwMDI1MzJaMBgxFjAUBgNV BAMTDTY5YTRkOGZkLWI4Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD84u/14GhiNuXZyc3FgZbw6r30IH1XCg0YQuYu5OIhPjR2Yd2w8lkwVDPHuzKg VitjHcg/V8VKlb2hcZzF7Pz3PFPcHkj9vaQRkriJV2GOREDIM+4kUWcvvT7tVAj3 qxBNSK4IwL+ty7IfKnPUbGQnd12T5mh9nfmWVOqhsHfPXfOF+3GObWuC39riiMzT H93L21vhxC5gxIKQtn0S6Wd4u64QNaW9IIDVsSXwgYClWVWkVrn3ifaFrxviZwaR JfVhDZh0mhA8AHk/FlYPpIjK67BYheKxXd/VzWpa1UaLKBGanz0NtqoAztSO6j35 SdhK3stx6V4mfk1GUW/zXPa7AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUnSuZvLp2 /3K/XXGauLlTiTW1yV4wHwYDVR0jBBgwFoAU3SgIKP8JlqjL7ym/DZFN8lLfHL0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0E4LzZBOUU5MTVDNkVF OTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhM MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1NnSUtQOEpscWpMN3ltX0RaRk44bExmSEwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0E4LzZBOUU5MTVDNkVFOTExRjBCMzAxRjY2N0M0RjlBRTAyLzNTZ0lLUDhKbHFq TDd5bV9EWkZOOGxMZkhMMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCSNX37PixKl3plnf09wW+lBQemhQDLy8Clq3NaOPe8MVC2o+de0WtR2zyhyt5N JFrsQxXEbfsRYKsNUWq5OChhHSJ10/T0rDd+Ht7eQrw2PvuQFVrmbCeF1itI9cxi mYIAKwf0gxLDgycH8Ffpk2lmLPJXQHW9dBjnEPWcEThrvDxiAc0no5L7mNygH3J9 qOTJEiXPQvZMIBQprPq7xjo0qyK457jkrCutuEKb7MJKKaHPcgB54Cxz+lPMYX+c 24Mx4rh8O4Y7B6a+T49NxKDE2ozP8YtlfwjmD0xkGLs7/AxjutCvjo0/l2tCXfDh l6WP0BOlv+AfdIfvM5H+U8x+ -----END CERTIFICATE-----Generated at Mon Mar 2 08:20:13 2026 by rpki-client