$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: ZO6K157fQVu+U3EjhTAXuNO2OCj5sKHnFesciMMbs48= Subject key identifier: F2:C3:6F:7C:47:F6:BF:57:1F:BA:4A:D1:C0:F6:19:1E:8C:8E:0A:DB Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0CEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0CD9 Signing time: Sun 01 Mar 2026 22:55:27 +0000 Manifest this update: Sun 01 Mar 2026 22:55:26 +0000 Manifest next update: Sun 08 Mar 2026 22:55:26 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: Ll+KkS/RLo/Ecl2GVkXj1J3U5N5X8KSgsQVTyjAvPxs=) 2: 96AE931812F511F1BA310F6D113D8C67.roa (hash: jP+hpdy04kY0o4MqB2uI3RyQMFd46KIJgsKGChbWqFc=) 3: CD3E621E12F511F180FA8278113D8C67.roa (hash: kXxD2EMvx6LCGBFTx93ZGtgwkhNjqsacd4c8/3EVFYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3306 (0xcea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Mar 1 22:55:26 2026 GMT Not After : Mar 8 22:55:26 2026 GMT Subject: CN=69a4c3df-e643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:0c:b1:e7:77:d1:3c:99:8c:69:e3:69:64:54: 0f:4f:eb:3e:a1:65:45:42:75:75:71:fe:2d:b8:bb: b8:94:d6:e0:a6:90:3b:cf:28:6e:e4:17:07:3e:1c: 72:ea:d6:35:ac:d0:d2:64:f5:72:b3:d5:ab:04:6b: 20:0a:4a:64:6a:4d:e7:cb:c0:1e:6e:c0:1e:ce:42: 74:23:0b:7b:ba:c4:04:41:0a:fa:e7:75:b8:89:76: 2c:81:9d:a8:4f:4d:85:b9:e1:4f:48:6b:6b:90:18: e5:fc:7a:d5:4c:82:84:99:47:a0:4e:b9:da:fb:1a: 32:b2:e7:5e:82:56:cc:f6:e9:24:d2:42:82:35:f8: 83:62:0f:48:61:ff:3d:cd:c3:1b:6d:96:9a:e0:c5: 92:66:76:03:c6:b5:6e:c9:d1:51:79:18:b3:78:20: ae:b5:8a:26:c1:64:1d:26:1a:19:8f:13:26:94:5c: 03:45:58:20:a8:65:fe:50:a1:64:3d:b1:8d:96:03: a7:19:ec:cf:c9:35:c1:fa:dc:fc:b8:f9:a3:65:de: 88:69:c3:b5:27:90:60:66:12:e4:5f:5e:7d:1b:b6: 53:30:0a:b0:72:a7:9e:5d:ae:af:d7:2e:d3:f8:aa: be:94:c2:f1:67:a8:9a:6a:ef:df:59:e1:0b:64:64: ff:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C3:6F:7C:47:F6:BF:57:1F:BA:4A:D1:C0:F6:19:1E:8C:8E:0A:DB X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:82:3b:83:fc:49:f9:01:c0:12:2b:e4:92:fa:11:07:e0:ef: 29:da:a0:f3:5d:f7:c1:b8:9b:72:11:5d:aa:0c:65:22:08:53: ea:2b:56:0d:a4:3a:f9:b8:7c:ed:7a:bd:25:11:f6:f6:04:9d: ae:c7:72:ef:8d:63:08:c2:1f:f1:39:43:b6:d7:b6:df:6c:9c: e7:0f:03:55:76:f5:07:ba:a5:d7:1e:9d:63:03:03:56:a1:39: 82:83:24:13:41:05:0d:4a:ba:a7:ae:15:c2:42:97:ff:57:81: 97:24:84:aa:4f:3d:65:41:a7:4d:53:87:f5:31:4c:df:f1:f5: 17:33:9c:93:60:5a:c0:5d:f2:f1:25:9d:9b:69:f1:11:70:07: 0f:d2:d3:cd:ac:68:85:e7:c0:fd:fe:bf:1b:ca:b3:e4:43:b1: bd:9a:2e:bc:04:da:49:24:50:f0:18:c3:81:ed:1b:3c:82:1a: 64:8d:5f:62:6b:8b:0f:50:d1:de:27:6c:c5:20:6d:b6:db:fe: 15:05:00:19:04:31:db:70:85:f7:2d:fc:1a:e2:6a:6c:95:f8: 67:3a:1e:47:4c:45:ab:cf:e0:b4:35:9d:6f:7c:58:cb:71:e2: 7a:18:ed:ab:43:d8:0c:02:32:8b:04:14:5a:66:b0:81:68:27: 84:2f:f4:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjYwMzAxMjI1NTI2WhcNMjYwMzA4MjI1NTI2WjAYMRYwFAYD VQQDEw02OWE0YzNkZi1lNjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhAyx53fRPJmMaeNpZFQPT+s+oWVFQnV1cf4tuLu4lNbgppA7zyhu5BcHPhxy 6tY1rNDSZPVys9WrBGsgCkpkak3ny8AebsAezkJ0Iwt7usQEQQr653W4iXYsgZ2o T02FueFPSGtrkBjl/HrVTIKEmUegTrna+xoysudeglbM9ukk0kKCNfiDYg9IYf89 zcMbbZaa4MWSZnYDxrVuydFReRizeCCutYomwWQdJhoZjxMmlFwDRVggqGX+UKFk PbGNlgOnGezPyTXB+tz8uPmjZd6IacO1J5BgZhLkX159G7ZTMAqwcqeeXa6v1y7T +Kq+lMLxZ6iaau/fWeELZGT/twIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPLDb3xH 9r9XH7pK0cD2GR6MjgrbMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdII7g/xJ+QHAEivkkvoRB+DvKdqg8133wbibchFdqgxlIghT6itWDaQ6+bh8 7Xq9JRH29gSdrsdy741jCMIf8TlDtte232yc5w8DVXb1B7ql1x6dYwMDVqE5goMk E0EFDUq6p64VwkKX/1eBlySEqk89ZUGnTVOH9TFM3/H1FzOck2BawF3y8SWdm2nx EXAHD9LTzaxohefA/f6/G8qz5EOxvZouvATaSSRQ8BjDge0bPIIaZI1fYmuLD1DR 3idsxSBtttv+FQUAGQQx23CF9y38GuJqbJX4ZzoeR0xFq8/gtDWdb3xYy3Hiehjt q0PYDAIyiwQUWmawgWgnhC/0CA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:52 2026 by rpki-client