$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: B+45go58QNoENh7eK3jb5lmttZD285Bd7Is6e0rylGs= Subject key identifier: 26:96:C5:0D:33:75:D9:18:15:D9:95:51:A9:55:D8:8A:50:23:A5:55 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 1714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 16CA Signing time: Mon 02 Mar 2026 16:43:42 +0000 Manifest this update: Mon 02 Mar 2026 16:43:41 +0000 Manifest next update: Mon 09 Mar 2026 16:43:41 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: rSgkMJNnnM6eX7oSl5ik+45F6cz16+N1ch6Ct6R/7w0=) 2: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: gVapXsxz8qTnLdO52OE1oddtuxrXU7Y55OD5E65Sa4A=) 3: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: lQxeErZo8KSMidBaLZU2uZhEmg+ZApCYBav6XaOd1/4=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: P+dA4oJXyC6Aq01svto2ZaMLc0OEI7bajKZbfS54AB4=) 5: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: kQYmT0giN3DcUmq1KqBz8CC3sS+kF2//fGtT//aW/DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5908 (0x1714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Mar 2 16:43:41 2026 GMT Not After : Mar 9 16:43:41 2026 GMT Subject: CN=69a5be3e-e1f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:22:e8:ed:f7:bd:ed:f5:1e:3a:53:fd:35:85: c5:03:be:60:fd:1c:e7:9a:c1:4f:5d:36:ae:e0:7e: 13:a7:15:40:bf:35:81:26:a3:77:ca:fb:71:c0:3c: c5:e4:b6:e4:aa:50:a4:66:41:aa:bd:fd:dc:60:04: cb:b8:3f:f6:fe:c2:0f:83:64:ea:c0:fe:65:8d:52: a8:ca:6a:fd:f9:e7:30:48:af:d4:6e:6c:46:ef:27: 6a:fc:16:43:a9:7c:91:10:34:a0:ed:6f:22:e6:65: 2b:a6:96:5b:d9:fc:01:7f:05:2a:eb:ec:dc:bb:9f: 28:06:ec:ae:83:e3:41:d4:f0:f0:8b:b5:71:dc:06: a1:8b:95:d6:9f:6b:49:36:ca:e9:99:bc:60:be:7e: 77:99:30:a0:75:48:8d:da:56:a3:a9:d1:88:d8:00: bd:00:92:71:6d:6e:f6:5e:39:6f:4d:0a:56:ba:06: 3e:fe:ea:7b:07:bd:86:34:8c:19:00:1a:7a:39:20: 64:6c:c2:bd:88:42:88:d1:1a:e9:e0:88:79:e8:5c: 57:c4:2b:4c:32:ac:8b:40:d6:8f:29:d9:6b:d9:cf: 35:43:b2:eb:30:8d:35:74:85:78:08:a6:cc:c3:8b: a5:6c:54:df:3a:35:8d:44:ef:c6:ea:fe:01:fd:2c: 50:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:96:C5:0D:33:75:D9:18:15:D9:95:51:A9:55:D8:8A:50:23:A5:55 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d9:de:aa:c1:cc:a1:ae:8f:b3:af:a2:bb:20:88:99:31:ec: 25:ca:7a:94:84:0c:63:a7:ef:09:c6:f0:1f:e3:79:4f:2d:d0: ff:d3:9e:0e:b9:a3:96:3c:ab:f8:d5:16:c8:f6:6b:be:29:e9: bc:2a:46:85:fb:a8:3a:dd:f4:51:2b:90:96:48:f7:33:dc:56: 64:6d:e2:ae:49:8b:a3:37:63:41:40:5b:3d:a2:cf:23:3e:d6: 31:54:3b:47:a9:7e:b1:ef:83:08:4f:be:2f:8c:03:e7:73:26: f4:77:d1:94:40:fc:6a:9e:27:9c:1d:01:98:30:bb:ee:c2:9f: cd:27:79:f6:8f:51:fa:a3:2e:93:1e:84:9b:65:43:78:9a:a3: e3:b6:62:70:f5:97:7f:4c:8f:4e:d7:d0:89:2a:a2:84:a6:b5: e0:49:ec:5f:ae:58:6d:cf:a2:21:4c:72:a8:00:29:5c:ab:03: 1c:b4:2e:de:02:a8:76:44:33:81:33:a2:5a:a8:f3:99:68:f2: 55:18:e4:eb:85:ff:09:64:ca:e3:7d:e6:c9:a4:e5:8c:e6:c4: dd:00:7a:c2:fe:6c:8f:77:db:0c:1f:f8:f9:3a:95:d7:f4:af: bb:d6:15:8f:3d:88:d2:66:d7:e3:1f:38:12:95:22:d2:4f:ca: d8:d1:0a:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjYwMzAyMTY0MzQxWhcNMjYwMzA5MTY0MzQxWjAYMRYwFAYD VQQDEw02OWE1YmUzZS1lMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSLo7fe97fUeOlP9NYXFA75g/RznmsFPXTau4H4TpxVAvzWBJqN3yvtxwDzF 5LbkqlCkZkGqvf3cYATLuD/2/sIPg2TqwP5ljVKoymr9+ecwSK/UbmxG7ydq/BZD qXyREDSg7W8i5mUrppZb2fwBfwUq6+zcu58oBuyug+NB1PDwi7Vx3Aahi5XWn2tJ Nsrpmbxgvn53mTCgdUiN2lajqdGI2AC9AJJxbW72XjlvTQpWugY+/up7B72GNIwZ ABp6OSBkbMK9iEKI0Rrp4Ih56FxXxCtMMqyLQNaPKdlr2c81Q7LrMI01dIV4CKbM w4ulbFTfOjWNRO/G6v4B/SxQUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCaWxQ0z ddkYFdmVUalV2IpQI6VVMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALNneqsHMoa6Ps6+iuyCImTHsJcp6lIQMY6fvCcbwH+N5Ty3Q/9OeDrmjljyr +NUWyPZrvinpvCpGhfuoOt30USuQlkj3M9xWZG3irkmLozdjQUBbPaLPIz7WMVQ7 R6l+se+DCE++L4wD53Mm9HfRlED8ap4nnB0BmDC77sKfzSd59o9R+qMukx6Em2VD eJqj47ZicPWXf0yPTtfQiSqihKa14EnsX65Ybc+iIUxyqAApXKsDHLQu3gKodkQz gTOiWqjzmWjyVRjk64X/CWTK433myaTljObE3QB6wv5sj3fbDB/4+TqV1/Svu9YV jz2I0mbX4x84EpUi0k/K2NEKEg== -----END CERTIFICATE-----Generated at Mon Mar 2 19:47:37 2026 by rpki-client