$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: hfmwJBL3i2intey74Kxk+zZn32kGKPMlRJ8LU5OJYw0= Subject key identifier: 2B:FA:AF:42:02:81:74:64:83:6C:CB:41:AF:36:6C:34:69:17:7F:39 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: A2 Signing time: Sun 01 Mar 2026 08:37:31 +0000 Manifest this update: Sun 01 Mar 2026 08:37:30 +0000 Manifest next update: Sun 08 Mar 2026 08:37:30 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: SnXUiXHsj5Sp6Bz4fhEHCwblVx5Fl7kKJaST66KH9oY=) 2: A209D9E4BC2311F09A8FB280C4F9AE02.roa (hash: ROMimlav+Kwv4KL5aZPE3FnW4mOvCmbzzXBU2NVsmwo=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: TKYCIXjYDfxKBYRDIucVJqM6YAGNqcFrboZxfDC0WWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Mar 1 08:37:30 2026 GMT Not After : Mar 8 08:37:30 2026 GMT Subject: CN=69a3facb-9a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:84:10:88:a6:7a:3e:01:f4:1f:59:e3:61: 4b:e7:9c:f6:e8:80:b3:ab:e6:85:3a:3a:ed:7d:a0: 1d:b4:bc:d1:f9:ee:01:b2:6a:3e:81:8e:57:fb:0f: 74:aa:be:6e:ee:81:91:41:36:26:84:49:57:d0:4a: aa:b6:1f:e7:64:1f:a1:1b:63:00:3a:53:6c:ae:3c: 76:ea:90:dd:b1:0d:dd:17:47:f7:bf:fb:17:ca:86: ac:b8:b4:70:ba:81:33:a5:a4:9d:6e:a5:38:49:79: 22:63:99:66:81:fa:82:be:62:cd:b9:a0:1c:0a:12: e1:e6:c5:f8:ea:77:00:99:12:90:36:54:6e:8d:14: fd:84:3c:31:ca:1c:c6:be:73:f5:20:64:c5:6c:50: 7d:74:77:fc:fc:b0:9d:23:a3:7a:66:5b:59:1c:83: aa:7d:f1:f2:41:7b:ba:fa:bc:55:41:09:17:f9:80: fd:30:10:97:31:18:1f:25:60:c0:df:9d:84:0d:e9: 5f:8a:35:07:df:d9:8e:9e:74:01:74:98:64:94:bb: 27:9b:39:39:b9:83:51:5c:a6:31:4f:8f:7a:8d:ee: e3:4e:5c:af:5e:cb:98:5d:9c:c2:89:d1:14:83:61: 74:6d:10:b6:5c:3c:ec:12:f5:df:6a:34:12:d8:7e: 31:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FA:AF:42:02:81:74:64:83:6C:CB:41:AF:36:6C:34:69:17:7F:39 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:54:4f:db:ca:e4:04:96:55:1c:b0:2f:e9:44:f9:ab:3c:a3: dd:c7:3b:fb:b0:b3:ef:60:c6:ab:76:58:05:a7:f7:50:40:68: 70:c0:b2:c9:87:33:64:fa:ec:82:fc:44:bc:07:c3:9d:03:fe: 1b:aa:78:2b:e6:e0:4f:e0:ea:f5:3a:c6:30:51:29:c2:96:34: 7a:a8:3c:f3:73:7b:ca:3c:56:2f:66:2a:af:3c:96:2c:2a:92: e3:29:66:fc:b2:a0:54:1e:b4:be:12:fd:18:b0:e4:81:97:63: ad:d2:95:7a:06:e2:47:25:6a:44:8f:d8:34:64:a0:b1:a6:9b: 47:c3:18:b7:de:83:f0:1b:23:fd:7e:82:5c:68:70:c1:97:b4: 1a:f7:53:a7:c7:9c:3d:ec:63:0a:f9:3c:0e:82:95:86:7d:01: 98:4a:b6:cd:55:e9:cf:48:3d:1c:29:49:cf:0f:66:41:d4:d2: e5:09:ca:35:1b:a2:34:f1:9c:44:e7:0e:17:b0:b9:3c:f2:af: 0c:6c:4b:9b:41:c2:59:15:9d:e8:56:41:b5:b2:11:e8:03:d9: f1:62:46:81:11:50:cc:90:f5:a5:d1:f4:36:42:d2:33:bc:9d: 4b:e5:88:78:31:c7:d2:11:57:1d:93:07:62:05:f6:60:02:59: 3e:8a:67:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjYwMzAxMDgzNzMwWhcNMjYwMzA4MDgzNzMwWjAYMRYwFAYD VQQDEw02OWEzZmFjYi05YThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnqEEIimej4B9B9Z42FL55z26ICzq+aFOjrtfaAdtLzR+e4Bsmo+gY5X+w90 qr5u7oGRQTYmhElX0Eqqth/nZB+hG2MAOlNsrjx26pDdsQ3dF0f3v/sXyoasuLRw uoEzpaSdbqU4SXkiY5lmgfqCvmLNuaAcChLh5sX46ncAmRKQNlRujRT9hDwxyhzG vnP1IGTFbFB9dHf8/LCdI6N6ZltZHIOqffHyQXu6+rxVQQkX+YD9MBCXMRgfJWDA 352EDelfijUH39mOnnQBdJhklLsnmzk5uYNRXKYxT496je7jTlyvXsuYXZzCidEU g2F0bRC2XDzsEvXfajQS2H4xfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCv6r0IC gXRkg2zLQa82bDRpF385MB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADlRP28rkBJZVHLAv6UT5qzyj3cc7+7Cz72DGq3ZYBaf3UEBocMCyyYczZPrs gvxEvAfDnQP+G6p4K+bgT+Dq9TrGMFEpwpY0eqg883N7yjxWL2YqrzyWLCqS4ylm /LKgVB60vhL9GLDkgZdjrdKVegbiRyVqRI/YNGSgsaabR8MYt96D8Bsj/X6CXGhw wZe0GvdTp8ecPexjCvk8DoKVhn0BmEq2zVXpz0g9HClJzw9mQdTS5QnKNRuiNPGc ROcOF7C5PPKvDGxLm0HCWRWd6FZBtbIR6APZ8WJGgRFQzJD1pdH0NkLSM7ydS+WI eDHH0hFXHZMHYgX2YAJZPopn/Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:44 2026 by rpki-client