$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: X54sVEh7ckqsZmJe1Ksh1A+8EfETHzeH72vsvQ7Kh1I= Subject key identifier: 16:24:06:47:5F:A5:3D:C5:7F:BA:F4:EE:EF:00:84:54:36:C7:FC:27 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C7A Signing time: Sat 28 Feb 2026 18:47:54 +0000 Manifest this update: Sat 28 Feb 2026 18:47:54 +0000 Manifest next update: Sat 07 Mar 2026 18:47:54 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: PflYRLfGBGcc+0/sTAlzoHiF/1jTUcPBa9Vrg3zPZaA=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: gogrAGTq/ykGhVaNrMTatrWlz9qs3Xp20k79SBgW8QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Feb 28 18:47:54 2026 GMT Not After : Mar 7 18:47:54 2026 GMT Subject: CN=69a3385a-e971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:8f:23:f6:26:8f:ac:4d:41:22:bb:55:cc: a7:e1:f9:8c:b6:ae:a4:9b:43:b6:7a:13:da:b4:6a: b3:20:5a:b4:de:e1:09:1f:bf:ae:23:f0:c4:56:e7: e2:d1:ff:53:a5:24:5e:d1:db:9d:c8:29:58:2b:1d: 63:47:8f:d3:ae:c5:cb:e0:ad:80:f0:72:7c:5c:a1: 20:ba:04:c7:9d:f6:f3:6a:16:30:c8:f0:f5:e8:ab: 97:96:3c:fe:f0:88:41:d7:18:05:0f:3b:2f:87:6d: 65:7e:57:ea:16:99:7a:40:76:e8:2a:ac:08:db:3d: c9:4f:8c:14:45:34:ae:d2:e8:95:b7:b0:c1:17:44: d9:73:e5:d4:38:9e:fe:9a:2a:d2:3c:fb:5e:32:a0: 62:f1:43:9d:0d:fa:9c:17:0c:e7:eb:26:0c:b8:9d: b9:38:ad:ff:9f:29:8e:6b:dd:eb:86:1f:cd:b9:0d: 31:25:0c:5b:45:e8:91:04:fd:8f:8a:21:b0:01:aa: 48:2a:f0:a2:50:15:ef:19:e4:e6:00:0f:ed:8f:75: 39:b2:5d:db:80:01:d0:81:9f:59:f8:c1:f3:2b:2b: bd:80:9f:55:17:e4:85:0c:b8:66:71:22:f9:7a:69: 84:9a:9f:bc:45:5b:cc:2c:16:2f:12:79:d0:3e:bf: ea:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:24:06:47:5F:A5:3D:C5:7F:BA:F4:EE:EF:00:84:54:36:C7:FC:27 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e2:91:d9:97:cf:a9:a8:86:44:3e:f3:04:9d:bb:89:13:c8: 97:c7:e5:87:9c:0f:90:d6:64:66:fa:79:9e:2f:5f:61:28:9d: 27:59:63:0a:e3:f7:c7:ad:85:f2:7a:81:8a:88:f3:fa:2e:ec: 73:68:b9:86:f2:6c:f1:ee:6a:2e:94:0c:a9:75:37:e9:f1:09: d8:c4:e3:8b:d3:b5:d0:02:c5:d1:b3:88:c1:3d:93:a2:57:e0: 05:39:7c:f6:8e:6e:2e:80:7c:c9:49:9c:ff:c7:31:7d:a5:03: 20:c6:9e:c7:ac:1f:5b:cf:30:15:61:93:f1:c7:fb:2b:a2:af: 10:cf:78:ce:81:39:c3:9c:54:4d:fb:84:11:6d:20:42:c4:24: aa:d3:97:ec:1c:8b:5c:24:c8:96:f9:b7:26:a6:9e:d1:0a:5f: af:f6:65:26:3d:f2:0f:f0:6e:d2:fa:7a:85:8c:22:b0:d3:da: 10:70:4b:ae:28:48:2d:df:a6:08:0f:23:d2:95:f8:a0:0a:7a: 78:88:c4:dc:1f:15:56:67:ba:fc:16:db:9d:e8:f0:f6:27:69: 08:8e:27:e8:fd:5a:08:eb:89:e3:f8:41:6a:0c:eb:74:1b:25: 33:a9:24:5f:1e:89:fb:96:ae:c5:23:ac:e8:e1:24:f6:18:ca: 71:dd:11:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMjI4MTg0NzU0WhcNMjYwMzA3MTg0NzU0WjAYMRYwFAYD VQQDDA02OWEzMzg1YS1lOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuByPI/Ymj6xNQSK7Vcyn4fmMtq6km0O2ehPatGqzIFq03uEJH7+uI/DEVufi 0f9TpSRe0dudyClYKx1jR4/TrsXL4K2A8HJ8XKEgugTHnfbzahYwyPD16KuXljz+ 8IhB1xgFDzsvh21lflfqFpl6QHboKqwI2z3JT4wURTSu0uiVt7DBF0TZc+XUOJ7+ mirSPPteMqBi8UOdDfqcFwzn6yYMuJ25OK3/nymOa93rhh/NuQ0xJQxbReiRBP2P iiGwAapIKvCiUBXvGeTmAA/tj3U5sl3bgAHQgZ9Z+MHzKyu9gJ9VF+SFDLhmcSL5 emmEmp+8RVvMLBYvEnnQPr/qCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBYkBkdf pT3Ff7r07u8AhFQ2x/wnMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAf+KR2ZfPqaiGRD7zBJ27iRPIl8flh5wPkNZkZvp5ni9fYSidJ1ljCuP3x62F 8nqBiojz+i7sc2i5hvJs8e5qLpQMqXU36fEJ2MTji9O10ALF0bOIwT2TolfgBTl8 9o5uLoB8yUmc/8cxfaUDIMaex6wfW88wFWGT8cf7K6KvEM94zoE5w5xUTfuEEW0g QsQkqtOX7ByLXCTIlvm3Jqae0Qpfr/ZlJj3yD/Bu0vp6hYwisNPaEHBLrihILd+m CA8j0pX4oAp6eIjE3B8VVme6/Bbbnejw9idpCI4n6P1aCOuJ4/hBagzrdBslM6kk Xx6J+5auxSOs6OEk9hjKcd0Raw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:13:53 2026 by rpki-client