$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: neHaHDeKx8AhTWiqh8z1TBcJc39IrBUBQy9dIL70XlU= Subject key identifier: 8C:43:62:F8:59:BB:21:F2:1F:AA:8F:19:14:6B:4B:26:81:02:92:F6 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0EB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E9A Signing time: Sun 01 Mar 2026 23:33:25 +0000 Manifest this update: Sun 01 Mar 2026 23:33:24 +0000 Manifest next update: Sun 08 Mar 2026 23:33:24 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: n89SdIN4y4he3SGzN2zQj9IAy3A4k+pH5d5uo2xVqLM=) 2: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: bFmCg+xKiw+K1hTeXgjbgClAizOT1Pqn7AVhYnZKulQ=) 3: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: Mbeqhn0nwVwYj6n3QxyZJchv3U45HkN1dEI8Jb5EHr0=) 4: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: Uyv3zGLTrJQ8tkkByg7Y3PROH65y4dDFHsU5Q6jpMUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3768 (0xeb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Mar 1 23:33:24 2026 GMT Not After : Mar 8 23:33:24 2026 GMT Subject: CN=69a4ccc5-b922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:be:58:9a:a0:38:b1:ca:12:87:66:43:76:85: d2:32:e9:94:8d:43:d8:a8:be:3e:8c:93:76:90:62: b5:41:1c:65:ec:3d:15:df:8b:27:f4:03:91:28:52: 2d:2f:85:5d:45:27:a4:bd:61:22:4b:fb:d0:ee:8e: 6a:aa:b6:dc:e7:81:2d:25:cf:8a:b9:31:0a:f1:12: 21:3d:79:e8:46:7a:5f:a2:d2:6b:0a:d8:ff:36:6a: 7e:00:42:48:84:94:05:35:60:89:7b:fa:50:72:13: 8d:2c:65:8b:cf:f5:04:a8:24:ba:fa:a3:24:c9:5e: 34:32:b2:08:27:9d:68:0a:26:3a:01:c9:74:eb:00: e7:c8:db:a1:f0:a4:1b:17:0c:49:42:b3:1c:4a:32: ee:93:ed:7d:97:99:ce:43:34:f4:f2:bb:b6:26:c6: 4a:67:3f:03:74:dd:9c:d5:33:2b:4c:33:a5:3f:13: 3d:1a:f2:47:b9:56:d7:d0:4c:86:c6:f0:27:c4:12: 6c:57:ed:a6:4b:2e:75:67:45:66:f5:d6:f9:56:96: fe:b4:20:c5:57:ab:1d:47:71:f3:09:52:1f:50:28: bd:d6:68:be:bc:7f:3e:cd:45:16:6f:61:d4:70:ec: 3e:20:79:5a:b3:3a:f3:c8:f5:0f:9c:6a:7d:71:11: 61:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:43:62:F8:59:BB:21:F2:1F:AA:8F:19:14:6B:4B:26:81:02:92:F6 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:75:9f:8a:90:87:dd:7a:b5:cb:e3:32:51:e2:ac:57:8d:c7: 63:b0:4f:ef:a0:47:90:f4:95:83:dd:4a:66:b6:0b:87:84:14: de:a7:3f:3d:6b:bb:47:1f:46:51:b7:a5:e6:72:ea:33:0c:5a: 0e:b0:47:0e:f4:15:61:eb:37:ac:27:30:09:11:70:44:6a:8a: e5:75:6e:0a:e3:fb:d3:66:5b:7f:7f:7a:1a:f3:b4:41:c8:70: de:6a:03:b1:3c:6d:64:e7:d2:ab:4a:8d:b2:27:f9:62:88:11: cf:75:2c:1a:3e:25:34:33:58:a6:c3:00:da:a2:9e:41:12:18: 32:b6:55:80:7e:d0:59:71:f8:66:18:a8:ab:f0:bf:e8:93:ec: ea:bd:bd:6e:d4:d6:4b:59:96:ad:06:a1:77:ec:ee:c9:84:42: f9:16:3d:79:0b:e5:b3:c7:87:8e:d2:10:f6:69:55:b1:67:b5: cd:f9:53:67:90:ca:f1:c0:78:2e:58:62:ff:33:4f:88:f0:2f: 00:4e:cd:74:14:aa:b1:bd:fb:94:bb:34:10:39:8f:d9:8d:be: 51:a6:0c:7c:3d:22:9e:69:ca:8e:26:da:56:81:bc:86:7d:af: ab:79:9e:70:c9:ae:6c:5b:28:cd:23:63:bc:1c:65:71:a5:8b: eb:d1:7c:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjYwMzAxMjMzMzI0WhcNMjYwMzA4MjMzMzI0WjAYMRYwFAYD VQQDEw02OWE0Y2NjNS1iOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr5YmqA4scoSh2ZDdoXSMumUjUPYqL4+jJN2kGK1QRxl7D0V34sn9AORKFIt L4VdRSekvWEiS/vQ7o5qqrbc54EtJc+KuTEK8RIhPXnoRnpfotJrCtj/Nmp+AEJI hJQFNWCJe/pQchONLGWLz/UEqCS6+qMkyV40MrIIJ51oCiY6Acl06wDnyNuh8KQb FwxJQrMcSjLuk+19l5nOQzT08ru2JsZKZz8DdN2c1TMrTDOlPxM9GvJHuVbX0EyG xvAnxBJsV+2mSy51Z0Vm9db5Vpb+tCDFV6sdR3HzCVIfUCi91mi+vH8+zUUWb2HU cOw+IHlaszrzyPUPnGp9cRFhJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIxDYvhZ uyHyH6qPGRRrSyaBApL2MB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqXWfipCH3Xq1y+MyUeKsV43HY7BP76BHkPSVg91KZrYLh4QU3qc/PWu7Rx9G Ubel5nLqMwxaDrBHDvQVYes3rCcwCRFwRGqK5XVuCuP702Zbf396GvO0Qchw3moD sTxtZOfSq0qNsif5YogRz3UsGj4lNDNYpsMA2qKeQRIYMrZVgH7QWXH4Zhioq/C/ 6JPs6r29btTWS1mWrQahd+zuyYRC+RY9eQvls8eHjtIQ9mlVsWe1zflTZ5DK8cB4 Llhi/zNPiPAvAE7NdBSqsb37lLs0EDmP2Y2+UaYMfD0inmnKjibaVoG8hn2vq3me cMmubFsozSNjvBxlcaWL69F8eg== -----END CERTIFICATE-----Generated at Mon Mar 2 02:35:57 2026 by rpki-client