$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.mft File: 3iZtavC5PenIaScyCi6du8nPnMI.mft (raw, json) Hash identifier: 7ziKOUrhh+eHiMr2uiyW4Z3LWXlMaYwcG/5lszMY8tQ= Subject key identifier: D2:E0:BA:F0:E2:65:CE:04:93:F1:50:E0:8C:C2:5F:4C:77:27:39:D9 Authority key identifier: DE:26:6D:6A:F0:B9:3D:E9:C8:69:27:32:0A:2E:9D:BB:C9:CF:9C:C2 Certificate issuer: /CN=A91CD314/serialNumber=DE266D6AF0B93DE9C86927320A2E9DBBC9CF9CC2 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3iZtavC5PenIaScyCi6du8nPnMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.mft Manifest number: 0D Signing time: Sun 01 Mar 2026 10:39:13 +0000 Manifest this update: Sun 01 Mar 2026 10:39:12 +0000 Manifest next update: Sun 08 Mar 2026 10:39:12 +0000 Files and hashes: 1: 3iZtavC5PenIaScyCi6du8nPnMI.crl (hash: SNtVaB+k59SoqTr5aGfk0YUz95YTVTJwykfsEMZnW6o=) 2: C4D99CDE097B11F1B8223907113D8C67.roa (hash: KEWr/3hG6gAXbw8XNIv0hau0dk9zYvinvGd5h59v7Jw=) 3: 604F4E3C0D6611F1AAA528DE1B3D8C67.roa (hash: zn+Y2EzBvu1Td2sgtLKQfgs/gBSjMOZeXn2CBE9VYms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.crl rsync://rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3iZtavC5PenIaScyCi6du8nPnMI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD314, serialNumber=DE266D6AF0B93DE9C86927320A2E9DBBC9CF9CC2 Validity Not Before: Mar 1 10:39:12 2026 GMT Not After : Mar 8 10:39:12 2026 GMT Subject: CN=69a41750-9116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c2:0f:ca:eb:4c:0c:c8:3f:de:7a:d4:a6:d3: b9:ae:3e:1a:09:c0:12:97:94:ce:06:ee:1a:3f:f2: 39:79:9a:b2:d5:fd:44:f5:2f:99:5a:ae:71:5c:54: a3:b2:ba:4a:1c:7f:d7:c2:3c:a6:99:17:62:fe:70: 53:b8:0f:b7:30:90:84:5a:e8:68:7e:9c:1e:67:7a: 1e:a6:2a:4c:d5:57:b7:1e:92:7e:59:6c:20:29:de: 67:2f:42:1f:34:be:c7:34:8e:80:d9:a7:50:a6:14: d7:fe:52:3f:d7:b4:c3:15:f2:4f:59:b8:f7:a4:e2: 7e:ba:c5:aa:b0:78:9f:5d:82:0f:66:fc:17:c6:a6: 4d:37:1a:f9:cc:69:04:20:91:98:69:bc:27:c2:e8: b5:34:6b:89:ab:e7:7f:e0:0d:1f:52:36:76:c8:b3: 75:84:d2:23:29:34:3b:7e:94:17:c8:23:c9:9b:1a: 58:8e:22:d4:98:05:76:8b:68:e2:3b:37:bf:92:77: b3:3c:00:ed:d6:34:97:e5:eb:4b:6f:f6:76:36:48: fb:e8:e1:af:5c:fc:58:44:2b:32:13:f7:b1:33:ea: b8:fb:87:2e:10:f8:31:7b:6c:7f:f1:42:0f:45:07: 3e:59:3b:0e:fa:61:7e:4b:3b:e2:e9:4a:fa:47:a3: fb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E0:BA:F0:E2:65:CE:04:93:F1:50:E0:8C:C2:5F:4C:77:27:39:D9 X509v3 Authority Key Identifier: keyid:DE:26:6D:6A:F0:B9:3D:E9:C8:69:27:32:0A:2E:9D:BB:C9:CF:9C:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3iZtavC5PenIaScyCi6du8nPnMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD314/365974C6097A11F1804F5EA1103D8C67/3iZtavC5PenIaScyCi6du8nPnMI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:05:d2:9d:4a:96:08:a4:a3:b0:e7:3b:c9:00:24:7d:b0:a1: f1:94:bb:73:8d:30:ed:fc:ba:bc:5e:49:6f:b1:36:8e:18:23: dc:a9:aa:b9:46:58:ff:6b:5b:77:c1:58:29:6e:2b:93:41:e5: 50:80:a2:48:5e:74:bd:1a:1b:6c:c9:42:bd:6a:df:bf:fe:a4: 59:3a:cb:8c:74:f0:92:be:8a:31:05:ea:c6:6f:21:78:2c:05: b0:e7:0f:85:1c:1d:c7:ac:03:96:d9:8f:d3:d5:d7:72:54:d7: 1d:20:93:a0:eb:ec:8e:6c:34:42:dd:ac:ea:5d:29:04:06:39: a3:d4:57:bc:96:ff:43:c7:f3:a4:5f:ad:c2:18:32:1f:e1:2d: ad:fa:7e:22:b2:9c:b8:6f:d6:80:d7:d9:12:a1:0f:96:18:54: 6a:96:54:9f:b3:65:7e:fd:a7:8c:76:e0:44:cd:d4:e8:68:bc: 62:27:5c:cb:bb:79:06:7b:4b:ab:16:cc:ce:ac:d3:56:47:df: fc:fd:61:fd:24:a5:08:fd:c0:74:37:5a:70:86:62:51:62:ec: bf:97:fb:02:7d:34:d3:6d:8b:10:54:cf:96:99:6c:28:ab:7e: 73:6c:db:75:47:da:12:66:d8:27:bc:af:54:f4:b4:15:38:17: f7:39:41:25 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDMxNDExMC8GA1UEBRMoREUyNjZENkFGMEI5M0RFOUM4NjkyNzMyMEEyRTlEQkJD OUNGOUNDMjAeFw0yNjAzMDExMDM5MTJaFw0yNjAzMDgxMDM5MTJaMBgxFjAUBgNV BAMTDTY5YTQxNzUwLTkxMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFwg/K60wMyD/eetSm07muPhoJwBKXlM4G7ho/8jl5mrLV/UT1L5larnFcVKOy ukocf9fCPKaZF2L+cFO4D7cwkIRa6Gh+nB5neh6mKkzVV7cekn5ZbCAp3mcvQh80 vsc0joDZp1CmFNf+Uj/XtMMV8k9ZuPek4n66xaqweJ9dgg9m/BfGpk03GvnMaQQg kZhpvCfC6LU0a4mr53/gDR9SNnbIs3WE0iMpNDt+lBfII8mbGliOItSYBXaLaOI7 N7+Sd7M8AO3WNJfl60tv9nY2SPvo4a9c/FhEKzIT97Ez6rj7hy4Q+DF7bH/xQg9F Bz5ZOw76YX5LO+LpSvpHo/vhAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU0uC68OJl zgST8VDgjMJfTHcnOdkwHwYDVR0jBBgwFoAU3iZtavC5PenIaScyCi6du8nPnMIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMzE0LzM2NTk3NEM2MDk3 QTExRjE4MDRGNUVBMTEwM0Q4QzY3LzNpWnRhdkM1UGVuSWFTY3lDaTZkdThuUG5N SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvM2ladGF2QzVQZW5JYVNjeUNpNmR1OG5Qbk1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MzE0LzM2NTk3NEM2MDk3QTExRjE4MDRGNUVBMTEwM0Q4QzY3LzNpWnRhdkM1UGVu SWFTY3lDaTZkdThuUG5NSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAmBdKdSpYIpKOw5zvJACR9sKHxlLtzjTDt/Lq8XklvsTaOGCPcqaq5Rlj/a1t3 wVgpbiuTQeVQgKJIXnS9GhtsyUK9at+//qRZOsuMdPCSvooxBerGbyF4LAWw5w+F HB3HrAOW2Y/T1ddyVNcdIJOg6+yObDRC3azqXSkEBjmj1Fe8lv9Dx/OkX63CGDIf 4S2t+n4ispy4b9aA19kSoQ+WGFRqllSfs2V+/aeMduBEzdToaLxiJ1zLu3kGe0ur FszOrNNWR9/8/WH9JKUI/cB0N1pwhmJRYuy/l/sCfTTTbYsQVM+WmWwoq35zbNt1 R9oSZtgnvK9U9LQVOBf3OUEl -----END CERTIFICATE-----Generated at Mon Mar 2 00:59:22 2026 by rpki-client