$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft File: A3iO4rrk2AXrzcpmGOLsGhilxOI.mft (raw, json) Hash identifier: uSn5MIAAIkpnAaWf8VY9oNRbxxczOR6kvK1zsPDP6Lg= Subject key identifier: 10:98:40:D4:1E:31:F7:0E:B4:D5:6B:29:62:56:BB:14:42:E7:37:5A Authority key identifier: 03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 Certificate issuer: /CN=A915FDD9/serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft Manifest number: D7 Signing time: Sun 01 Mar 2026 07:54:37 +0000 Manifest this update: Sun 01 Mar 2026 07:54:37 +0000 Manifest next update: Sun 08 Mar 2026 07:54:37 +0000 Files and hashes: 1: A3iO4rrk2AXrzcpmGOLsGhilxOI.crl (hash: 5m5wY4Db1pvo9Kv+8lchUCmrlAljUBnYoTdlhwHwths=) 2: 279A9510AB7811F09488DF65C4F9AE02.roa (hash: 2wvUPc15B59/Dt1JL+jnYhLL2XiaJ99t4OhXrsdtTwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=03788EE2BAE4D805EBCDCA6618E2EC1A18A5C4E2 Validity Not Before: Mar 1 07:54:37 2026 GMT Not After : Mar 8 07:54:37 2026 GMT Subject: CN=69a3f0bd-9f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f7:21:fd:c9:10:fb:92:6a:c4:64:44:a9:1f: aa:40:69:77:05:b2:f4:3d:54:56:f5:ea:b1:94:47: 99:f1:24:ce:8c:90:62:cd:f8:03:bb:7b:0d:b9:3b: 0f:18:f9:2e:db:31:5f:27:c2:46:54:47:e9:ad:0e: 62:e7:17:f7:8f:de:6d:b7:88:34:7b:56:ee:b0:26: 7c:11:08:91:d8:32:1a:31:c4:62:1c:8d:fa:41:d6: b1:28:a1:73:28:1d:3f:54:39:25:1c:58:39:6f:4d: 32:9f:be:a1:b1:69:bc:e3:71:82:f1:f0:03:95:fb: 23:dc:7e:34:ad:03:c7:fb:9e:e1:de:63:d7:a8:ed: 4c:99:eb:da:fe:bf:08:01:8f:5c:42:05:b2:d6:5c: 2b:96:e1:4a:b2:fb:8b:e8:22:b8:7b:de:94:29:4b: aa:de:63:f5:b6:6c:a1:6e:71:1b:93:6b:ec:97:15: 7d:23:cf:e5:d0:2b:46:6b:12:e5:f3:19:0d:89:96: ce:a4:15:b1:b2:fd:6f:d4:c2:5c:ea:30:f7:f3:64: 9e:87:8b:3e:f2:b3:f8:f7:9c:ae:35:55:eb:53:8c: 1c:46:30:18:5e:84:6f:60:68:63:35:bb:23:d5:67: 5a:34:41:3f:8f:7b:da:2a:d7:54:d4:55:3c:f1:3f: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:98:40:D4:1E:31:F7:0E:B4:D5:6B:29:62:56:BB:14:42:E7:37:5A X509v3 Authority Key Identifier: keyid:03:78:8E:E2:BA:E4:D8:05:EB:CD:CA:66:18:E2:EC:1A:18:A5:C4:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3iO4rrk2AXrzcpmGOLsGhilxOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/BE7CAC12D6DE11EFB0474E1BC4F9AE02/A3iO4rrk2AXrzcpmGOLsGhilxOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:96:37:a0:52:87:43:81:a0:a7:b6:2c:f9:3e:80:5e:dd:08: e2:7b:b9:42:f3:e5:bc:ef:7f:18:c3:a2:ef:b8:d1:05:73:4a: ea:29:2b:0e:29:a4:e2:28:6a:1d:e5:f0:de:f9:aa:36:71:f8: 35:53:a6:82:9d:0a:90:54:d9:99:8f:59:af:f6:91:b3:6a:fb: 58:60:a7:d8:4a:38:be:44:f1:43:0d:55:89:c9:10:d6:55:67: 35:b0:08:08:d0:d9:ab:d8:37:9e:ec:e5:18:00:8b:44:af:65: 31:fb:6b:4a:e2:96:09:c5:87:a5:30:34:ac:e6:bb:e1:45:fc: 66:c7:b8:58:35:97:2a:c9:59:f6:2a:4f:8b:90:ef:09:1a:7d: 6c:81:4f:ef:70:f6:05:97:37:04:9d:37:df:51:7d:66:e2:3f: e7:89:2c:ba:ee:c2:fa:b6:0f:97:9d:71:02:de:ad:c0:7e:bc: 26:0e:b5:49:12:10:d1:8d:56:6b:43:ec:f5:72:17:cd:1c:4e: fe:09:45:05:53:80:ab:45:4f:c8:1b:ef:3f:17:58:c5:97:e4: b5:4c:cb:18:c4:a2:88:c8:d1:d9:34:41:76:be:dd:52:23:e1: 0d:b8:e0:c6:f7:07:5e:9d:bd:46:0b:7d:df:9f:ba:c8:c9:37: cc:40:14:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDAzNzg4RUUyQkFFNEQ4MDVFQkNEQ0E2NjE4RTJFQzFB MThBNUM0RTIwHhcNMjYwMzAxMDc1NDM3WhcNMjYwMzA4MDc1NDM3WjAYMRYwFAYD VQQDEw02OWEzZjBiZC05ZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfch/ckQ+5JqxGREqR+qQGl3BbL0PVRW9eqxlEeZ8STOjJBizfgDu3sNuTsP GPku2zFfJ8JGVEfprQ5i5xf3j95tt4g0e1busCZ8EQiR2DIaMcRiHI36QdaxKKFz KB0/VDklHFg5b00yn76hsWm843GC8fADlfsj3H40rQPH+57h3mPXqO1Mmeva/r8I AY9cQgWy1lwrluFKsvuL6CK4e96UKUuq3mP1tmyhbnEbk2vslxV9I8/l0CtGaxLl 8xkNiZbOpBWxsv1v1MJc6jD382Seh4s+8rP495yuNVXrU4wcRjAYXoRvYGhjNbsj 1WdaNEE/j3vaKtdU1FU88T+kCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBCYQNQe MfcOtNVrKWJWuxRC5zdaMB8GA1UdIwQYMBaAFAN4juK65NgF683KZhji7BoYpcTi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CRTdDQUMxMkQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJBWHJ6Y3BtR09Mc0doaWx4 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzaU80cnJrMkFYcnpjcG1HT0xzR2hpbHhPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CRTdDQUMxMkQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9BM2lPNHJyazJB WHJ6Y3BtR09Mc0doaWx4T0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJ5Y3oFKHQ4Ggp7Ys+T6AXt0I4nu5QvPlvO9/GMOi77jRBXNK6ikrDimk4ihq HeXw3vmqNnH4NVOmgp0KkFTZmY9Zr/aRs2r7WGCn2Eo4vkTxQw1VickQ1lVnNbAI CNDZq9g3nuzlGACLRK9lMftrSuKWCcWHpTA0rOa74UX8Zse4WDWXKslZ9ipPi5Dv CRp9bIFP73D2BZc3BJ0331F9ZuI/54ksuu7C+rYPl51xAt6twH68Jg61SRIQ0Y1W a0Ps9XIXzRxO/glFBVOAq0VPyBvvPxdYxZfktUzLGMSiiMjR2TRBdr7dUiPhDbjg xvcHXp29Rgt935+6yMk3zEAUyQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:31:16 2026 by rpki-client