$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: Vk+lyqzBGpm6EepvpJz++492ZpiDMgstyg9Zb099Rf0= Subject key identifier: 55:84:4A:17:C7:1E:8B:F4:2E:76:DB:35:B3:7F:B7:14:1B:44:50:56 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 01F7 Signing time: Mon 02 Mar 2026 02:58:13 +0000 Manifest this update: Mon 02 Mar 2026 02:58:11 +0000 Manifest next update: Mon 09 Mar 2026 02:58:11 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: WirY78gccNYCAetZWsgI3R4fun0zyO6E0V8aC1DqnHw=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 8MwxhTqxv/j2kzmr6bZcYqqFG0tKO6Vnf2148zJAni8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:58:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Mar 2 02:58:11 2026 GMT Not After : Mar 9 02:58:11 2026 GMT Subject: CN=69a4fcc5-8d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:38:70:56:7b:61:1d:b2:7f:6c:2d:73:4a: c2:85:f8:1d:01:d5:af:9d:33:8b:3c:9b:32:a3:c8: 93:1d:19:9a:af:4e:49:6f:49:8e:5c:95:6d:98:82: 33:e1:c6:53:66:20:48:b4:d1:f0:b9:65:7b:e5:54: 17:83:20:22:12:e3:b7:6e:bb:12:6f:dd:a2:e3:b2: b5:5d:0f:e7:12:e2:73:bf:f6:83:09:6b:ea:63:2c: 07:63:58:43:85:05:f8:b6:8e:84:e5:08:52:b6:91: 77:37:3d:1a:a2:9e:d3:47:1a:6b:67:0a:6e:eb:6d: 0d:dc:2c:e8:10:b3:e3:4e:18:8d:b1:f8:09:14:66: 4d:74:1f:ac:63:42:af:ad:bb:a3:1a:27:7a:ad:a9: b2:bc:a7:31:45:6f:ca:c4:1c:61:f6:74:a7:e0:25: a2:59:8d:4e:a4:4b:d2:ec:57:27:52:a7:8d:62:07: c5:8f:34:0e:db:a2:c7:5e:b1:d9:04:79:c1:b1:f3: 79:01:9f:dd:5d:05:cf:d3:22:2a:b5:f1:1b:f3:de: 9b:d9:9b:66:7c:ea:ce:df:6e:89:82:bb:c0:66:92: a6:8c:52:0e:43:54:42:76:b4:36:9a:f0:b2:e4:c8: 36:32:e3:07:ae:89:e9:55:47:b7:4f:86:64:54:c1: 6e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:84:4A:17:C7:1E:8B:F4:2E:76:DB:35:B3:7F:B7:14:1B:44:50:56 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c8:65:6a:2d:58:ef:f0:7a:bd:02:19:8c:53:a4:ba:f6:d0: bb:e3:fd:7f:98:c3:56:3f:c0:c3:00:f0:aa:e7:f4:94:1a:61: 8c:7b:79:4b:5f:d2:cc:d4:c9:62:7b:48:a3:bd:bf:1b:3e:1e: eb:89:5c:14:1c:b8:60:36:54:76:c1:7b:fb:81:f9:80:6c:8b: c8:91:40:e6:11:73:da:56:5c:7b:cf:4d:12:37:fa:2b:5e:de: 3d:ce:1d:32:42:b9:43:87:c6:c3:b8:26:53:65:66:46:2a:46: b1:8e:64:96:be:4e:b2:d7:fa:21:bb:47:ef:8b:95:bb:eb:98: 3f:40:9c:53:a1:b4:4a:61:a7:0c:d4:18:78:9d:bf:0a:90:25: a4:2f:2a:b1:ec:06:20:79:b6:e0:46:8c:b4:89:b7:0c:36:24: 26:0e:60:51:28:52:72:48:43:6f:ba:4a:35:07:23:9d:df:88: e5:ce:ee:49:0e:10:35:0e:10:b2:85:dc:58:ab:c5:6a:e7:33: 28:0f:ff:5c:7b:58:1f:08:1a:61:70:0b:6d:f5:1f:3c:3b:ea: 69:24:70:54:3f:21:b0:82:9c:84:56:ff:d7:ce:5e:bb:c8:20: 9b:ee:a4:86:a4:31:df:8f:a6:e7:a9:cd:e7:fc:17:90:2d:97: 19:8c:ea:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjYwMzAyMDI1ODExWhcNMjYwMzA5MDI1ODExWjAYMRYwFAYD VQQDEw02OWE0ZmNjNS04ZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu44cFZ7YR2yf2wtc0rChfgdAdWvnTOLPJsyo8iTHRmar05Jb0mOXJVtmIIz 4cZTZiBItNHwuWV75VQXgyAiEuO3brsSb92i47K1XQ/nEuJzv/aDCWvqYywHY1hD hQX4to6E5QhStpF3Nz0aop7TRxprZwpu620N3CzoELPjThiNsfgJFGZNdB+sY0Kv rbujGid6ramyvKcxRW/KxBxh9nSn4CWiWY1OpEvS7FcnUqeNYgfFjzQO26LHXrHZ BHnBsfN5AZ/dXQXP0yIqtfEb896b2ZtmfOrO326JgrvAZpKmjFIOQ1RCdrQ2mvCy 5Mg2MuMHronpVUe3T4ZkVMFu3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWEShfH Hov0LnbbNbN/txQbRFBWMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjshlai1Y7/B6vQIZjFOkuvbQu+P9f5jDVj/AwwDwquf0lBphjHt5S1/SzNTJ YntIo72/Gz4e64lcFBy4YDZUdsF7+4H5gGyLyJFA5hFz2lZce89NEjf6K17ePc4d MkK5Q4fGw7gmU2VmRipGsY5klr5Ostf6IbtH74uVu+uYP0CcU6G0SmGnDNQYeJ2/ CpAlpC8qsewGIHm24EaMtIm3DDYkJg5gUShSckhDb7pKNQcjnd+I5c7uSQ4QNQ4Q soXcWKvFauczKA//XHtYHwgaYXALbfUfPDvqaSRwVD8hsIKchFb/185eu8ggm+6k hqQx34+m56nN5/wXkC2XGYzqKA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:14:38 2026 by rpki-client