$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: eX21qNGmNoclhPVDNmw5xHL43N6XiiYoEjI5jwwphWI= Subject key identifier: 3F:E9:89:31:7A:8C:D9:5F:AC:4D:E0:29:63:5E:08:B2:62:97:10:73 Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: 9E Signing time: Sun 01 Mar 2026 08:36:37 +0000 Manifest this update: Sun 01 Mar 2026 08:36:37 +0000 Manifest next update: Sun 08 Mar 2026 08:36:37 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: kqTCNtLtI3JhQOvog89SxuI6mFeYgDpRkiGXZHyeKAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: Mar 1 08:36:37 2026 GMT Not After : Mar 8 08:36:37 2026 GMT Subject: CN=69a3fa95-e756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:1c:7f:fe:83:68:a9:0f:38:a0:16:9d:ab: 81:49:ac:25:ff:cf:62:9c:b6:70:35:9a:01:51:27: ef:9b:46:27:28:25:d8:6f:7b:5c:56:0c:40:29:9d: de:ab:d1:7a:3a:ae:09:53:40:15:78:a8:31:fa:e5: 9a:62:3a:aa:f8:c3:a7:b3:19:c0:f3:1a:aa:0e:a8: cd:36:c8:83:56:64:b7:56:38:56:9f:0f:75:b2:2d: 2a:84:10:58:41:ef:07:a0:20:0b:f2:f6:db:4d:a7: 92:3d:17:20:0e:24:d1:73:92:e1:33:70:e6:9e:13: 99:ee:19:50:62:39:64:93:64:0d:b4:ea:56:44:43: 09:5c:86:20:8a:3f:5f:17:fc:01:3d:20:9e:de:7c: da:05:bf:78:e2:4d:fb:0d:e2:6c:9c:e4:7e:c5:c7: d9:a7:70:1c:12:e0:e3:85:32:13:14:22:ac:9a:d7: cb:7b:59:f1:ef:c8:b8:93:11:08:57:ed:6f:4d:c5: a6:48:8e:50:88:58:81:c9:c4:74:3e:fd:57:74:9f: 7c:3e:58:70:bb:80:a4:8b:bf:f5:05:2e:5f:e3:90: eb:c8:e6:f1:4f:be:c3:31:b8:b2:52:8a:d6:99:50: 1a:8d:99:62:6e:2a:ac:c3:b0:e9:d7:e5:82:12:c9: 8d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E9:89:31:7A:8C:D9:5F:AC:4D:E0:29:63:5E:08:B2:62:97:10:73 X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:01:72:22:ba:e6:6f:84:e6:f6:56:57:f9:5a:82:07:78:c7: cb:4d:7e:78:ae:86:9a:1d:cc:e6:e3:cb:2b:d0:86:e8:cd:9d: 49:38:09:1e:2b:69:f6:f2:44:fd:32:23:e4:53:e9:a4:0c:25: 81:2a:5f:c3:24:bd:91:b2:aa:c7:38:44:8d:87:9b:ec:d4:53: 93:02:0c:ae:cd:3d:20:75:61:1c:6b:ab:a9:34:e0:33:d0:c3: b3:69:a3:40:05:f3:c9:d3:2c:dc:06:38:5b:26:fc:93:b3:1e: 7e:a0:f5:e9:5e:b2:3a:e5:b7:2a:90:ad:34:03:2d:cb:bc:23: de:ee:fc:54:73:c6:95:66:23:0b:f8:21:d9:25:28:ea:e0:0a: a9:d4:db:e2:41:c2:6e:02:81:99:86:c3:d0:7b:3b:e0:05:18: 7a:42:7e:63:db:94:92:ec:d5:36:79:9b:64:47:55:db:9f:3c: 67:7f:85:2c:72:8f:04:36:88:77:d0:84:c6:fe:1c:fb:64:a0: a4:6a:99:94:99:54:84:45:61:95:79:f0:38:d6:30:8f:32:1d: 8a:08:b2:da:fe:56:be:f7:d9:89:c4:4d:6b:ee:e2:29:ab:98: 70:4b:16:50:5f:87:71:53:b1:7a:18:d0:25:fe:d3:15:66:a0: ed:9f:a0:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDIzNzQzNDRCNzFCMjlGMEUzODM1MjBDQUZDNkM4ODM1 MEMzNTYxNjgwHhcNMjYwMzAxMDgzNjM3WhcNMjYwMzA4MDgzNjM3WjAYMRYwFAYD VQQDEw02OWEzZmE5NS1lNzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqh4cf/6DaKkPOKAWnauBSawl/89inLZwNZoBUSfvm0YnKCXYb3tcVgxAKZ3e q9F6Oq4JU0AVeKgx+uWaYjqq+MOnsxnA8xqqDqjNNsiDVmS3VjhWnw91si0qhBBY Qe8HoCAL8vbbTaeSPRcgDiTRc5LhM3DmnhOZ7hlQYjlkk2QNtOpWREMJXIYgij9f F/wBPSCe3nzaBb944k37DeJsnOR+xcfZp3AcEuDjhTITFCKsmtfLe1nx78i4kxEI V+1vTcWmSI5QiFiBycR0Pv1XdJ98Plhwu4Cki7/1BS5f45DryObxT77DMbiyUorW mVAajZlibiqsw7Dp1+WCEsmN0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD/piTF6 jNlfrE3gKWNeCLJilxBzMB8GA1UdIwQYMBaAFCN0NEtxsp8OODUgyvxsiDUMNWFo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DQTUwQzkyNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53NDROU0RLX0d5SU5RdzFZ V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DQTUwQzkyNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53 NDROU0RLX0d5SU5RdzFZV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPAFyIrrmb4Tm9lZX+VqCB3jHy01+eK6Gmh3M5uPLK9CG6M2dSTgJHitp9vJE /TIj5FPppAwlgSpfwyS9kbKqxzhEjYeb7NRTkwIMrs09IHVhHGurqTTgM9DDs2mj QAXzydMs3AY4Wyb8k7MefqD16V6yOuW3KpCtNAMty7wj3u78VHPGlWYjC/gh2SUo 6uAKqdTb4kHCbgKBmYbD0Hs74AUYekJ+Y9uUkuzVNnmbZEdV2588Z3+FLHKPBDaI d9CExv4c+2SgpGqZlJlUhEVhlXnwONYwjzIdigiy2v5WvvfZicRNa+7iKauYcEsW UF+HcVOxehjQJf7TFWag7Z+g0Q== -----END CERTIFICATE-----Generated at Mon Mar 2 16:11:53 2026 by rpki-client