$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: dVn4ElOnvqBKXpX8WF3SxlO0l+khrIek16RaTedYMi8= Subject key identifier: 56:34:95:66:CA:94:B9:8E:A2:4F:C0:5C:53:85:FF:66:A8:0C:B3:F1 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3518 Signing time: Sun 01 Mar 2026 23:41:17 +0000 Manifest this update: Sun 01 Mar 2026 23:41:15 +0000 Manifest next update: Sun 08 Mar 2026 23:41:15 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: 250cX3paPwZKQdP8Of9asI1g6ov01QyOCvJV9Q6gYRA=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: S+2nZ/LwiFl9lCGr/q1pgYuQMM2ksAuYCF9P9dTV9cI=) 3: 41623A12778111ED8F236A62C4F9AE02.roa (hash: oWvONdzVtdNZzN0GXwvLtJk1cQSVlxMNqPZEYE5ztwk=) 4: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: +F9H9L+0+ICkfZDERWmYJJTvYvZTjlwlv2iEB9U5xD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13609 (0x3529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Mar 1 23:41:15 2026 GMT Not After : Mar 8 23:41:15 2026 GMT Subject: CN=69a4ce9c-1ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:26:16:a2:40:e1:c0:ca:33:72:94:f6:2b:92: de:c1:22:7a:84:a7:3e:ea:10:fd:eb:ed:22:a4:5b: 57:66:0e:b1:10:09:e6:23:20:39:41:c0:80:e2:6e: b5:91:0d:4e:fb:ac:bf:b0:22:0c:c6:42:c7:df:14: b9:60:f8:3d:e3:bd:a2:d5:d7:2c:0e:05:e4:39:5a: 7f:6b:8a:37:9b:0f:eb:5f:a6:82:9b:94:55:6b:25: 43:de:7f:ce:f4:db:63:ba:7a:d9:08:8b:46:3c:e9: 05:b0:76:b4:77:c0:e2:77:6f:66:0d:14:f4:38:d0: 60:be:17:2e:44:e3:86:81:d0:a7:4e:61:a4:cf:0b: 93:25:d8:5f:4c:f9:e1:e5:2b:b0:78:f2:84:f8:f9: 3c:fd:da:b5:93:bb:5d:64:b1:b8:e1:7a:3a:a3:33: 1f:f1:da:87:5e:19:9c:86:fb:88:82:1d:94:d7:da: a7:4b:88:48:a7:57:9b:ef:86:c7:22:d9:16:ca:0b: 71:08:5b:7a:8f:f6:cf:df:73:08:3a:bb:84:30:88: 96:f5:2c:d4:1a:e5:9e:de:e0:76:ab:cf:0e:63:14: 93:17:e1:51:ae:71:05:7c:96:66:19:3f:24:f8:dd: 5a:a1:4c:76:87:94:db:4e:b7:4c:4a:58:b0:81:d4: 8d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:34:95:66:CA:94:B9:8E:A2:4F:C0:5C:53:85:FF:66:A8:0C:B3:F1 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:5f:89:45:70:b3:52:db:ef:05:45:f4:65:5d:17:fd:a2:ea: 94:b6:7c:7b:39:d7:76:ad:4b:66:47:96:fd:e4:35:df:76:0a: 34:c0:67:0d:93:06:5c:e2:f4:d3:1b:da:32:90:13:fe:03:93: 05:79:dd:7a:d2:3f:73:23:49:1a:51:ff:cf:7a:17:d8:e4:50: 72:02:2f:9d:1a:bf:52:03:9c:93:2f:20:b3:d1:4c:00:10:f5: ad:98:df:01:df:49:10:aa:98:94:6a:73:21:1e:b0:22:e3:3b: d1:72:2b:70:d8:bf:c8:7b:9c:84:5d:7d:15:12:87:ff:dc:05: b7:d5:55:0a:f3:06:8d:6e:3f:67:6b:46:1c:f5:77:04:d0:5a: da:a6:f4:61:3c:6b:58:d1:2e:42:bf:ec:c3:d0:4d:90:f2:0b: 7f:e1:81:23:ec:c7:a0:e3:7c:e6:40:c9:b2:45:d4:81:ec:df: 40:e0:79:d0:a3:ba:ea:b2:2c:b4:1d:55:ed:96:44:c0:bb:54: c0:ae:f9:10:05:83:25:e6:ec:fd:11:0f:23:a5:7d:ab:92:95: ea:cf:22:55:d2:e6:63:29:f1:7e:93:37:db:9e:14:42:c5:17: d5:5a:b1:fc:29:19:24:4c:a5:03:40:34:3c:c6:c2:ee:cd:ca: de:11:14:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwMzAxMjM0MTE1WhcNMjYwMzA4MjM0MTE1WjAYMRYwFAYD VQQDEw02OWE0Y2U5Yy0xZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSYWokDhwMozcpT2K5LewSJ6hKc+6hD96+0ipFtXZg6xEAnmIyA5QcCA4m61 kQ1O+6y/sCIMxkLH3xS5YPg9472i1dcsDgXkOVp/a4o3mw/rX6aCm5RVayVD3n/O 9NtjunrZCItGPOkFsHa0d8Did29mDRT0ONBgvhcuROOGgdCnTmGkzwuTJdhfTPnh 5SuwePKE+Pk8/dq1k7tdZLG44Xo6ozMf8dqHXhmchvuIgh2U19qnS4hIp1eb74bH ItkWygtxCFt6j/bP33MIOruEMIiW9SzUGuWe3uB2q88OYxSTF+FRrnEFfJZmGT8k +N1aoUx2h5TbTrdMSliwgdSNgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFY0lWbK lLmOok/AXFOF/2aoDLPxMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkF+JRXCzUtvvBUX0ZV0X/aLqlLZ8eznXdq1LZkeW/eQ133YKNMBnDZMGXOL0 0xvaMpAT/gOTBXndetI/cyNJGlH/z3oX2ORQcgIvnRq/UgOcky8gs9FMABD1rZjf Ad9JEKqYlGpzIR6wIuM70XIrcNi/yHuchF19FRKH/9wFt9VVCvMGjW4/Z2tGHPV3 BNBa2qb0YTxrWNEuQr/sw9BNkPILf+GBI+zHoON85kDJskXUgezfQOB50KO66rIs tB1V7ZZEwLtUwK75EAWDJebs/REPI6V9q5KV6s8iVdLmYynxfpM3254UQsUX1Vqx /CkZJEylA0A0PMbC7s3K3hEUrA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:09:34 2026 by rpki-client