$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: wRYnnEsXD9iBemtTB5FwtmKtl68VKTQF5H3NapJFIzU= Subject key identifier: F9:6C:9B:04:9F:88:A4:01:90:30:3F:5C:93:26:5F:DE:BD:23:52:8D Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01A5 Signing time: Mon 02 Mar 2026 01:05:54 +0000 Manifest this update: Mon 02 Mar 2026 01:05:51 +0000 Manifest next update: Mon 09 Mar 2026 01:05:51 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: /791Pi3QDLBRRZI/uXwz1Lya5reX19EWHbzfI70ij6c=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: AWpj07zDh15fklZ/07HH5rxQ/lecHbJoawDHB8JKXuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Mar 2 01:05:51 2026 GMT Not After : Mar 9 01:05:51 2026 GMT Subject: CN=69a4e272-acf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:37:f0:6d:74:48:5b:3f:80:fd:1f:a1:77:61: 33:d0:0a:97:d4:1f:19:07:e2:94:d6:43:91:56:0e: 10:ae:59:26:dd:e8:f3:77:c6:7d:fd:ff:77:f5:95: f6:32:09:6c:db:88:66:de:d8:9a:58:74:b7:7f:6e: 10:78:49:99:c2:1f:66:0d:75:b5:dd:4d:57:92:5a: d4:c8:04:af:bd:98:8e:f3:23:f9:4f:7f:61:33:19: 40:67:05:9f:91:ee:04:47:a8:88:15:e0:63:a3:17: d2:c9:2e:ec:4f:be:58:07:87:03:03:1b:d4:ac:72: c0:7c:6a:25:b0:0f:ca:03:2c:b3:2a:54:ef:6c:0d: 97:e4:0a:3b:a3:24:af:fa:b4:5d:8b:15:c5:1a:ea: ec:df:36:fd:32:5d:3f:71:88:f3:e4:19:d7:21:72: ef:63:a9:9b:00:00:cb:54:8f:d3:9f:6d:a2:e2:81: d8:f8:19:f1:72:b4:77:20:56:35:00:49:41:b4:f8: e2:7c:1e:2d:54:07:1a:2c:a1:34:c9:ac:7a:fd:f6: 3b:eb:d6:4b:ad:be:00:f2:13:bf:8b:87:a0:e2:3a: 2a:19:b1:a0:08:d8:06:c3:80:14:08:56:96:9c:8c: a0:9d:bb:7c:cb:2d:24:ab:00:1a:62:97:39:eb:a5: b8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6C:9B:04:9F:88:A4:01:90:30:3F:5C:93:26:5F:DE:BD:23:52:8D X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f5:5f:d0:cd:04:fb:d3:9a:1c:e2:c7:75:c6:64:50:0e:d9:d7: 3f:fa:d9:2c:85:5f:7b:30:bd:da:8c:3c:d0:14:43:ee:38:9a: 1a:6b:a6:54:af:59:f5:ba:0b:82:23:a6:8a:50:42:35:b7:f7: 26:1e:df:32:10:17:59:a5:61:9d:62:a1:3c:ad:7d:50:7d:ca: 71:4e:1e:2d:7a:5d:c5:4b:f9:fe:d4:82:17:ed:58:d1:b6:64: 86:f0:44:b4:a9:f5:86:1a:c7:f8:3f:85:97:8c:5e:a9:ff:a7: 8f:53:79:9e:6b:b3:36:87:d9:ba:25:86:f2:de:ba:2f:2c:fb: 87:bd:08:d2:ef:e3:5c:21:b9:97:74:d8:ba:37:c3:2d:9d:77: c1:74:e5:5c:7f:2f:e5:0a:71:ec:d2:10:5e:22:7b:1b:10:5e: be:76:1a:b5:76:0a:40:89:28:7c:a8:31:cb:e7:c5:98:3b:80: 73:c7:da:8c:1a:cc:0a:0d:e3:ec:d8:99:59:bb:be:12:3d:dd: 8b:0b:31:be:e6:cd:90:e0:03:d1:0b:87:6c:7c:70:ce:27:77: c5:75:66:3e:b8:6a:86:93:52:70:6c:f2:91:cd:92:cb:d9:53: 77:78:03:07:dd:62:09:f8:ea:74:dc:0b:44:d7:5a:6c:88:03: eb:49:e4:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwMzAyMDEwNTUxWhcNMjYwMzA5MDEwNTUxWjAYMRYwFAYD VQQDEw02OWE0ZTI3Mi1hY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDfwbXRIWz+A/R+hd2Ez0AqX1B8ZB+KU1kORVg4Qrlkm3ejzd8Z9/f939ZX2 Mgls24hm3tiaWHS3f24QeEmZwh9mDXW13U1XklrUyASvvZiO8yP5T39hMxlAZwWf ke4ER6iIFeBjoxfSyS7sT75YB4cDAxvUrHLAfGolsA/KAyyzKlTvbA2X5Ao7oySv +rRdixXFGurs3zb9Ml0/cYjz5BnXIXLvY6mbAADLVI/Tn22i4oHY+BnxcrR3IFY1 AElBtPjifB4tVAcaLKE0yax6/fY769ZLrb4A8hO/i4eg4joqGbGgCNgGw4AUCFaW nIygnbt8yy0kqwAaYpc566W4+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPlsmwSf iKQBkDA/XJMmX969I1KNMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA9V/QzQT705oc4sd1xmRQDtnXP/rZLIVfezC92ow80BRD7jiaGmumVK9Z9boL giOmilBCNbf3Jh7fMhAXWaVhnWKhPK19UH3KcU4eLXpdxUv5/tSCF+1Y0bZkhvBE tKn1hhrH+D+Fl4xeqf+nj1N5nmuzNofZuiWG8t66Lyz7h70I0u/jXCG5l3TYujfD LZ13wXTlXH8v5Qpx7NIQXiJ7GxBevnYatXYKQIkofKgxy+fFmDuAc8fajBrMCg3j 7NiZWbu+Ej3diwsxvubNkOAD0QuHbHxwzid3xXVmPrhqhpNScGzykc2Sy9lTd3gD B91iCfjqdNwLRNdabIgD60nk7g== -----END CERTIFICATE-----Generated at Mon Mar 2 14:07:08 2026 by rpki-client