$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: JXiiItE9ndlm+xXvEVxDAfx42o2A9jL8qI0lAP/KcvU= Subject key identifier: ED:92:05:81:A2:71:9E:FA:DD:47:F2:24:B7:98:D5:66:B1:B3:2E:11 Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0D47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0D0A Signing time: Mon 02 Mar 2026 01:28:22 +0000 Manifest this update: Mon 02 Mar 2026 01:28:20 +0000 Manifest next update: Mon 09 Mar 2026 01:28:20 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: Liv9yC0FHMBACyk6pMs36qkJEjwb7/bLLwQ9d/CIhNY=) 2: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /m7E0Dw/anD8qYNxCWedW44uleLaVBkf0eBmZ6XFvMk=) 3: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: rZ4CQjG/7W0/b4/xy8McSOxNbiTi926f91iRcbtKHeo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3399 (0xd47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Mar 2 01:28:20 2026 GMT Not After : Mar 9 01:28:20 2026 GMT Subject: CN=69a4e7b5-3654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:fd:43:f0:3d:d4:f9:f2:6a:04:5d:45:1b: 49:07:95:ea:80:c6:26:49:8c:fa:f2:1e:36:8e:1e: 8f:11:33:c4:21:4e:8f:06:57:0b:af:11:2b:e1:5f: 8a:98:b5:12:a1:e0:a2:07:c1:e9:50:b9:08:c6:5f: 3e:59:ba:d4:a8:d9:ce:a5:09:b2:88:e4:19:00:be: eb:aa:cc:b9:a5:e7:e7:9b:73:20:0d:1b:71:1a:68: 86:5a:c8:7b:e7:26:ff:ef:0d:84:cd:ee:95:33:c1: 5a:72:d7:04:74:ad:ee:da:a1:59:66:48:8e:83:a1: 56:53:fc:ab:1f:6b:74:d0:96:12:7b:fc:60:e4:f0: 5f:3d:73:36:c7:d6:b0:d9:09:cb:d4:94:f9:71:86: 98:8f:55:68:29:5c:9c:e4:41:d5:c6:fe:5d:b8:24: 1c:7c:d4:a4:ac:50:3a:9c:bf:ec:8a:4c:74:51:38: f9:ad:31:22:db:31:a5:2c:1f:5f:c5:0a:92:95:12: 28:d5:ae:97:bb:a0:05:b4:a9:d5:57:75:ed:b1:4f: cd:47:d8:b6:c9:50:58:65:6e:ab:d1:02:16:85:fb: 8c:99:2a:6c:79:f4:b1:c0:cc:0a:58:8c:81:84:9c: a1:dd:3d:b3:17:46:18:5c:48:52:89:d5:0e:6f:1c: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:92:05:81:A2:71:9E:FA:DD:47:F2:24:B7:98:D5:66:B1:B3:2E:11 X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:c6:f0:94:ed:d2:ed:8f:4c:02:57:7e:c4:4a:2d:00:13:d7: f0:ad:7f:3c:3e:6f:2e:24:c0:8b:96:52:89:e3:c1:7a:d9:20: 69:36:7a:77:28:c0:fb:92:9c:8f:32:db:d8:a3:db:03:0f:47: 67:32:c3:8c:b5:c2:7f:e2:4b:1b:77:98:ee:66:f5:e1:d5:c1: 1c:4a:76:72:1a:2a:0e:81:86:07:db:05:57:72:a6:f7:07:aa: 78:f9:5a:5d:58:b4:23:75:38:73:cd:df:8d:56:1f:79:23:11: fa:68:41:13:36:38:b6:07:a9:91:38:90:75:1a:2e:80:0c:09: 37:49:49:e1:e4:8d:77:8b:14:84:94:42:44:a5:86:38:01:7f: 8c:14:dd:ea:9f:ca:45:d5:ad:1b:c5:28:e2:a6:0e:04:53:a5: e0:02:99:e7:50:d8:82:e8:31:6d:fa:aa:51:db:f5:5c:37:84: e4:c4:8a:b6:36:f0:fa:76:83:c6:ff:6a:27:6e:30:cf:2b:b5: 6d:22:eb:ea:db:0c:ac:a7:bf:e7:da:6c:9d:a7:60:cf:89:00: dd:ac:4e:a7:82:b9:f4:f4:d5:7c:0b:5c:60:74:de:7b:6e:13: b3:c5:66:b0:25:3d:ae:11:09:a6:6a:1b:49:c5:fb:0f:3f:b4: d5:99:36:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjYwMzAyMDEyODIwWhcNMjYwMzA5MDEyODIwWjAYMRYwFAYD VQQDEw02OWE0ZTdiNS0zNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzan9Q/A91PnyagRdRRtJB5XqgMYmSYz68h42jh6PETPEIU6PBlcLrxEr4V+K mLUSoeCiB8HpULkIxl8+WbrUqNnOpQmyiOQZAL7rqsy5pefnm3MgDRtxGmiGWsh7 5yb/7w2Eze6VM8FactcEdK3u2qFZZkiOg6FWU/yrH2t00JYSe/xg5PBfPXM2x9aw 2QnL1JT5cYaYj1VoKVyc5EHVxv5duCQcfNSkrFA6nL/sikx0UTj5rTEi2zGlLB9f xQqSlRIo1a6Xu6AFtKnVV3XtsU/NR9i2yVBYZW6r0QIWhfuMmSpsefSxwMwKWIyB hJyh3T2zF0YYXEhSidUObxw1dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2SBYGi cZ763UfyJLeY1Waxsy4RMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA4sbwlO3S7Y9MAld+xEotABPX8K1/PD5vLiTAi5ZSiePBetkgaTZ6dyjA+5Kc jzLb2KPbAw9HZzLDjLXCf+JLG3eY7mb14dXBHEp2choqDoGGB9sFV3Km9weqePla XVi0I3U4c83fjVYfeSMR+mhBEzY4tgepkTiQdRougAwJN0lJ4eSNd4sUhJRCRKWG OAF/jBTd6p/KRdWtG8Uo4qYOBFOl4AKZ51DYgugxbfqqUdv1XDeE5MSKtjbw+naD xv9qJ24wzyu1bSLr6tsMrKe/59psnadgz4kA3axOp4K59PTVfAtcYHTee24Ts8Vm sCU9rhEJpmobScX7Dz+01Zk2QA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:42 2026 by rpki-client