$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: VezOR8ra7sWAgRP0GMhXw9pVWlhqx7svZW7YFoTk46U= Subject key identifier: BC:19:6A:12:5F:F5:11:E5:0D:6F:5A:40:A3:75:D9:4A:D3:35:D6:75 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F69 Signing time: Mon 02 Mar 2026 02:27:05 +0000 Manifest this update: Mon 02 Mar 2026 02:27:03 +0000 Manifest next update: Mon 09 Mar 2026 02:27:03 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: f247ONfaPE8rcTBtUGAjSGJ5Jx2kEVJEQDq9SLsDyKI=) 2: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: rVqpkfIia95fH7hrm3/K25j3N5yZHWL25KnyFo0eRas=) 3: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: M1O0TrYvAUms1ssHPRAoRq4bhn4VdK0pL3BB4ocE2jg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3963 (0xf7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Mar 2 02:27:03 2026 GMT Not After : Mar 9 02:27:03 2026 GMT Subject: CN=69a4f579-130b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:41:18:ef:fb:79:ab:ee:a4:e2:46:8c:4e: 0a:ef:58:66:63:91:c9:94:88:e9:68:33:2f:15:de: 32:7f:c1:61:15:0d:d2:69:ab:8e:d1:68:78:45:27: 41:bb:55:58:d6:c0:fb:56:4d:6a:87:21:17:53:9a: b5:6b:b3:65:49:74:81:23:d4:07:cb:cf:e3:bc:0b: 1d:93:fc:9a:48:34:8e:cc:0f:ab:60:d5:a6:e3:6b: 2a:49:d8:2a:d3:dc:22:71:85:54:cb:f3:f7:fd:eb: f0:4c:94:c9:89:d5:47:45:f0:cf:74:32:19:1b:d0: 0d:6a:49:3e:ff:89:04:dd:ec:34:96:11:37:52:81: a2:bd:67:5d:92:51:37:ad:45:e5:15:95:81:08:7f: 68:22:31:57:fb:ea:12:17:52:93:11:c0:28:94:1f: 7c:f3:f2:d0:56:02:73:33:e4:7e:39:c9:66:e3:0f: 5c:ef:04:a4:7b:a7:25:fe:ec:46:0d:f0:68:0d:86: 7f:62:95:f1:e9:9e:ef:86:02:84:7f:fd:dc:f5:93: 53:87:48:18:ce:8c:74:9a:d3:ac:14:41:ae:27:97: 37:57:cf:75:de:aa:bc:a6:f7:8f:99:16:a0:7f:5a: 2a:30:cf:9b:90:27:dd:58:b7:3e:88:22:df:c1:b9: 77:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:19:6A:12:5F:F5:11:E5:0D:6F:5A:40:A3:75:D9:4A:D3:35:D6:75 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:a9:31:de:8e:48:62:84:3d:91:93:87:93:8a:5f:2d:ae:08: c0:63:cb:09:1c:b0:0f:f0:23:7a:fb:4f:00:5f:f2:f8:0d:6c: 75:9b:16:81:ae:0d:fc:c2:54:7d:86:9c:52:9b:e0:6f:43:a6: 1b:29:09:bd:bb:83:a9:db:ba:04:0b:6d:26:4f:96:e3:38:6e: 24:01:5a:b9:d1:67:07:42:46:9e:60:ff:81:8c:c8:30:de:f3: f6:97:62:12:7d:e3:72:43:d2:8f:92:8c:50:78:4f:41:f3:2e: 1d:be:8c:a3:1f:79:bb:59:8a:82:30:f0:7b:b3:60:4b:ac:04: d3:66:ac:a9:ee:ad:69:a6:bf:88:3a:90:e4:3f:0c:9d:96:33: 20:30:03:b1:50:24:f4:f2:2c:7c:73:be:1c:a7:93:11:6d:3d: fe:49:42:88:ba:57:39:28:32:57:18:4b:32:0b:26:67:ec:c3: a2:99:c7:82:74:2d:0c:2a:df:bf:5e:6b:b3:9a:0b:f9:91:93: b0:be:ca:e1:98:37:9e:1f:01:c5:ad:47:47:40:38:3a:3a:47: 1e:9e:cc:5d:3d:da:33:ea:cd:03:2a:69:56:f6:ea:b1:9e:42: 8e:e6:6e:b7:08:a2:db:db:40:f4:81:5f:eb:77:08:8a:82:ef: 85:19:25:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwMzAyMDIyNzAzWhcNMjYwMzA5MDIyNzAzWjAYMRYwFAYD VQQDEw02OWE0ZjU3OS0xMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweRBGO/7eavupOJGjE4K71hmY5HJlIjpaDMvFd4yf8FhFQ3SaauO0Wh4RSdB u1VY1sD7Vk1qhyEXU5q1a7NlSXSBI9QHy8/jvAsdk/yaSDSOzA+rYNWm42sqSdgq 09wicYVUy/P3/evwTJTJidVHRfDPdDIZG9ANakk+/4kE3ew0lhE3UoGivWddklE3 rUXlFZWBCH9oIjFX++oSF1KTEcAolB988/LQVgJzM+R+Oclm4w9c7wSke6cl/uxG DfBoDYZ/YpXx6Z7vhgKEf/3c9ZNTh0gYzox0mtOsFEGuJ5c3V8913qq8pvePmRag f1oqMM+bkCfdWLc+iCLfwbl3SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLwZahJf 9RHlDW9aQKN12UrTNdZ1MB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE6kx3o5IYoQ9kZOHk4pfLa4IwGPLCRywD/AjevtPAF/y+A1sdZsWga4N/MJU fYacUpvgb0OmGykJvbuDqdu6BAttJk+W4zhuJAFaudFnB0JGnmD/gYzIMN7z9pdi En3jckPSj5KMUHhPQfMuHb6Mox95u1mKgjDwe7NgS6wE02asqe6taaa/iDqQ5D8M nZYzIDADsVAk9PIsfHO+HKeTEW09/klCiLpXOSgyVxhLMgsmZ+zDopnHgnQtDCrf v15rs5oL+ZGTsL7K4Zg3nh8Bxa1HR0A4OjpHHp7MXT3aM+rNAyppVvbqsZ5CjuZu twii29tA9IFf63cIioLvhRklnw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:54:52 2026 by rpki-client