$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: 1XcabqwgVdUalxwZ2V3u88ESuvi6JAelwZTCi0R2E2c= Subject key identifier: 28:F2:DC:46:10:91:09:F2:8C:FE:C6:AA:BC:FC:9A:1E:4A:A4:DC:A9 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 0285 Signing time: Mon 02 Mar 2026 03:11:06 +0000 Manifest this update: Mon 02 Mar 2026 03:11:05 +0000 Manifest next update: Mon 09 Mar 2026 03:11:05 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: b8Fut7ExUI/tN36O1EqzjOQs3mXuQA8/PjzDghg8AFs=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: Z52mVJSz988Jd9hitOllyu60oqioAYARpSvRGcwNtnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Mar 2 03:11:05 2026 GMT Not After : Mar 9 03:11:05 2026 GMT Subject: CN=69a4ffca-8ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6e:9d:ad:9e:bd:e4:98:1d:f4:f0:ec:a7:e8: ad:10:50:16:e0:d0:b8:62:ec:d0:cb:19:1a:48:ff: a8:c2:ad:98:f2:e0:08:13:ae:e3:16:a5:34:9b:8b: 19:15:e6:ee:df:68:e4:7b:fa:88:9b:e6:1c:e8:0d: e3:71:19:9b:92:33:98:2e:7d:c5:99:ac:67:9e:1e: 05:91:f9:c0:39:a2:58:88:2a:a8:07:c4:5f:f5:04: 7b:9e:0f:3c:ea:a5:22:11:94:9f:fa:f9:91:ac:18: 20:45:ca:02:45:40:f5:ac:b1:46:94:cf:90:65:06: 1c:ae:36:4b:4f:b9:62:8a:c6:bf:0a:53:4b:ac:2d: 74:4d:09:03:7c:7f:1a:e4:df:f2:2e:ab:bb:c7:f8: c4:84:14:2c:3c:fb:18:42:ea:29:a8:b0:29:b1:f9: f0:1d:a2:84:41:48:e0:49:0f:e7:8a:08:22:c5:6f: 5e:ae:4d:51:00:c8:25:8f:8b:de:fa:81:18:6d:6f: 9b:ed:d6:8e:2b:99:b4:33:1a:5b:50:32:95:bf:39: 95:d6:cf:02:d8:f6:8c:5d:49:f8:61:e5:03:d7:0c: 4b:d2:22:93:f0:b7:85:c1:66:32:ef:98:87:e2:b3: 2a:f7:31:76:c6:95:84:9c:df:95:a2:f5:76:2a:80: d8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F2:DC:46:10:91:09:F2:8C:FE:C6:AA:BC:FC:9A:1E:4A:A4:DC:A9 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e6:02:06:66:73:f5:89:99:d5:0e:96:6b:cf:4d:be:68:7b: 27:7c:ea:cb:04:ae:bd:72:99:0e:8a:7d:03:57:43:18:c8:8c: ef:78:02:8e:42:57:81:52:f8:87:c8:49:17:a8:28:d0:40:f2: 55:1c:65:51:ca:d3:c5:6b:0b:22:58:78:36:cd:1b:44:04:7a: 48:ac:90:45:c4:55:cf:fe:bc:46:d4:73:12:5f:dd:79:be:b9: 67:43:3b:65:94:77:e2:52:c4:b7:f2:11:a4:47:dc:86:03:3f: 3a:95:d5:f7:bf:37:89:7a:32:d5:52:6c:71:12:70:93:fe:20: d3:95:24:e1:b3:87:78:96:40:8e:5f:c8:c5:1d:34:b5:0c:9e: 81:43:d1:9b:ce:d8:9c:af:8e:5b:23:e9:90:ed:21:93:75:8a: 84:20:7c:e7:f9:2b:ad:20:30:04:de:a2:cd:89:f6:2b:55:3a: 97:ca:c2:82:43:77:97:20:37:37:a5:84:9b:c9:21:0d:54:05: 3c:2c:a6:dd:a6:4d:c4:a4:ce:99:18:23:01:29:25:46:a3:50: 62:c9:f3:51:6e:46:0e:42:10:0e:21:62:4b:40:15:df:78:18: fc:f9:e2:9a:13:0e:e4:5a:0a:c3:e9:31:9b:ca:d4:ce:48:96: 5f:27:89:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjYwMzAyMDMxMTA1WhcNMjYwMzA5MDMxMTA1WjAYMRYwFAYD VQQDEw02OWE0ZmZjYS04ZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW6drZ695Jgd9PDsp+itEFAW4NC4YuzQyxkaSP+owq2Y8uAIE67jFqU0m4sZ Febu32jke/qIm+Yc6A3jcRmbkjOYLn3Fmaxnnh4FkfnAOaJYiCqoB8Rf9QR7ng88 6qUiEZSf+vmRrBggRcoCRUD1rLFGlM+QZQYcrjZLT7liisa/ClNLrC10TQkDfH8a 5N/yLqu7x/jEhBQsPPsYQuopqLApsfnwHaKEQUjgSQ/niggixW9erk1RAMglj4ve +oEYbW+b7daOK5m0MxpbUDKVvzmV1s8C2PaMXUn4YeUD1wxL0iKT8LeFwWYy75iH 4rMq9zF2xpWEnN+VovV2KoDYQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCjy3EYQ kQnyjP7Gqrz8mh5KpNypMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeOYCBmZz9YmZ1Q6Wa89Nvmh7J3zqywSuvXKZDop9A1dDGMiM73gCjkJXgVL4 h8hJF6go0EDyVRxlUcrTxWsLIlh4Ns0bRAR6SKyQRcRVz/68RtRzEl/deb65Z0M7 ZZR34lLEt/IRpEfchgM/OpXV9783iXoy1VJscRJwk/4g05Uk4bOHeJZAjl/IxR00 tQyegUPRm87YnK+OWyPpkO0hk3WKhCB85/krrSAwBN6izYn2K1U6l8rCgkN3lyA3 N6WEm8khDVQFPCym3aZNxKTOmRgjASklRqNQYsnzUW5GDkIQDiFiS0AV33gY/Pni mhMO5FoKw+kxm8rUzkiWXyeJow== -----END CERTIFICATE-----Generated at Mon Mar 2 09:47:58 2026 by rpki-client