$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft File: 3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json) Hash identifier: 3BfdocMQJcawesXzUA5biUKkUT1zfDLA2OFKHKP8jag= Subject key identifier: 15:3C:EC:DA:9F:28:FE:90:FF:14:1A:C1:67:16:EE:23:EC:AA:BC:26 Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 Certificate issuer: /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Certificate serial: 0CAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft Manifest number: 0CA2 Signing time: Mon 02 Mar 2026 00:59:05 +0000 Manifest this update: Mon 02 Mar 2026 00:59:03 +0000 Manifest next update: Mon 09 Mar 2026 00:59:03 +0000 Files and hashes: 1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: lyfikrVNKN7SRBdjOMdbIl+mIiiL28TXvAzM9KBeMa8=) 2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: STCKrvlRsuBwgCCitF/41y1bZsQULp/xbRwSRQTsp2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3244 (0xcac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CABB, serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Validity Not Before: Mar 2 00:59:03 2026 GMT Not After : Mar 9 00:59:03 2026 GMT Subject: CN=69a4e0d9-7af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:b6:56:44:2b:26:2d:84:00:3f:ba:60:b4: 03:f3:76:72:85:20:a1:90:a0:c4:b7:d9:dd:9e:23: f1:b2:18:dd:38:bb:e7:dc:8a:23:ce:99:26:aa:5e: a4:e9:aa:06:68:3f:09:a2:3e:c3:e8:59:a7:ae:44: 90:f3:d0:0b:60:04:9c:43:fb:b1:98:38:c1:aa:1d: 16:42:38:c7:af:04:1a:f3:ca:01:58:ac:13:eb:de: b5:8a:03:e1:e0:51:a0:15:24:71:77:92:2a:17:96: c6:1b:b7:d5:1b:6f:dc:07:ae:38:1f:63:7a:b1:24: ba:84:af:1c:25:d8:d2:fa:af:2c:1a:ef:cd:87:e1: 54:68:be:ec:0d:10:82:40:1a:9f:77:b5:4f:9a:2a: 53:ee:96:b7:e3:ca:e0:02:22:c8:e2:36:a5:bf:15: 78:c6:a3:dc:a0:ab:d7:3b:eb:5a:30:17:ee:61:32: 1b:8f:49:05:58:55:0c:44:f9:fd:05:05:03:16:48: c6:3f:d0:be:14:28:88:53:3e:ab:20:36:1c:16:74: e0:65:1d:fa:9e:86:c4:10:3e:1f:58:aa:c3:4a:9e: b4:92:75:13:e0:c2:bd:93:d2:41:ed:37:80:03:ec: be:11:6f:73:a8:47:2d:6b:3f:3e:e7:28:6a:e1:ab: 63:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3C:EC:DA:9F:28:FE:90:FF:14:1A:C1:67:16:EE:23:EC:AA:BC:26 X509v3 Authority Key Identifier: keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:57:c4:73:e8:13:89:c5:44:75:cc:cb:a4:21:83:ed:7f:c4: e1:a9:42:3e:f0:50:f1:6a:c0:6d:83:b1:2b:eb:f0:78:ec:7f: 79:f3:41:48:b1:a5:a7:18:3f:2f:24:f1:f9:ff:88:39:52:8c: f4:b4:36:b0:ce:76:ea:1b:40:a5:68:e8:23:0a:cf:5c:ff:a0: e9:65:bf:15:e7:bc:f0:e8:4d:34:1a:2a:fa:c8:4b:7f:45:a7: 71:c5:6b:f0:dc:44:cb:97:e3:58:11:fd:cc:0a:8a:fc:fc:c8: 38:91:97:e0:36:27:05:a2:7a:ea:65:c2:76:ba:cd:d0:2d:fb: 6c:40:cf:b7:2f:a6:c2:17:67:df:cc:e2:13:2c:89:35:f7:27: 26:1c:20:e3:31:d9:70:0c:52:fb:8a:49:8a:5e:53:2e:16:7e: a2:37:d7:b5:78:f7:ea:f5:71:09:b8:55:a4:24:b9:9d:56:7a: fc:28:11:d8:4d:d3:4c:df:a8:b3:4f:46:cb:6d:b6:92:54:69: 7e:09:b8:4e:bd:b8:b6:d6:04:17:0b:4d:59:26:e5:99:28:df: a9:35:49:94:f9:5c:3e:69:78:c4:a1:bb:ff:a3:10:40:2e:99: 97:f7:11:3d:b0:46:3f:35:ef:f0:b8:30:b4:a5:f4:64:7e:37: 82:e8:e6:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2 MzMwNzcxMTgwHhcNMjYwMzAyMDA1OTAzWhcNMjYwMzA5MDA1OTAzWjAYMRYwFAYD VQQDEw02OWE0ZTBkOS03YWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK62VkQrJi2EAD+6YLQD83ZyhSChkKDEt9ndniPxshjdOLvn3Iojzpkmql6k 6aoGaD8Joj7D6FmnrkSQ89ALYAScQ/uxmDjBqh0WQjjHrwQa88oBWKwT6961igPh 4FGgFSRxd5IqF5bGG7fVG2/cB644H2N6sSS6hK8cJdjS+q8sGu/Nh+FUaL7sDRCC QBqfd7VPmipT7pa348rgAiLI4jalvxV4xqPcoKvXO+taMBfuYTIbj0kFWFUMRPn9 BQUDFkjGP9C+FCiIUz6rIDYcFnTgZR36nobEED4fWKrDSp60knUT4MK9k9JB7TeA A+y+EW9zqEctaz8+5yhq4atjuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBU87Nqf KP6Q/xQawWcW7iPsqrwmMB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP ajd5YlRaaXoxRjFqTUhjUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY1fEc+gTicVEdczLpCGD7X/E4alCPvBQ8WrAbYOxK+vweOx/efNBSLGlpxg/ LyTx+f+IOVKM9LQ2sM526htApWjoIwrPXP+g6WW/Fee88OhNNBoq+shLf0WnccVr 8NxEy5fjWBH9zAqK/PzIOJGX4DYnBaJ66mXCdrrN0C37bEDPty+mwhdn38ziEyyJ NfcnJhwg4zHZcAxS+4pJil5TLhZ+ojfXtXj36vVxCbhVpCS5nVZ6/CgR2E3TTN+o s09Gy222klRpfgm4Tr24ttYEFwtNWSblmSjfqTVJlPlcPml4xKG7/6MQQC6Zl/cR PbBGPzXv8LgwtKX0ZH43gujmnQ== -----END CERTIFICATE-----Generated at Mon Mar 2 06:06:40 2026 by rpki-client