$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: GqKWlrK6KfEeVtgcWg2qb71JGbY0ySxovO0GqvsLydU= Subject key identifier: 63:DF:6A:3A:36:EE:B1:35:40:28:2E:CE:BD:BE:18:A0:DB:35:25:40 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0D07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0CF7 Signing time: Mon 02 Mar 2026 02:09:48 +0000 Manifest this update: Mon 02 Mar 2026 02:09:46 +0000 Manifest next update: Mon 09 Mar 2026 02:09:46 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: wWdcaBaVW2/Aa14AmBC/cfd0yWstYHx5no5o16CGGFE=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: 1V529Ks3PXwTRKi34Eodwq3M4BDwCRU11im6mkDfUoc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3335 (0xd07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5, serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Mar 2 02:09:46 2026 GMT Not After : Mar 9 02:09:46 2026 GMT Subject: CN=69a4f16b-a811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:67:08:f3:34:65:95:e0:2d:64:cc:ce:6d:10: 12:48:f7:15:c9:43:28:f8:c8:8c:bd:ed:98:d6:81: d1:d9:39:dc:8c:06:2e:4d:0e:4f:7a:7f:96:8c:64: 8c:6c:09:c7:0c:37:9d:2b:25:b7:d4:fa:2d:36:63: 9d:c9:19:5b:9e:e3:6d:f3:6b:d8:13:76:53:9e:ac: 47:23:ad:20:8c:9b:86:18:8c:4b:f8:3d:ef:32:8e: cd:da:1a:11:89:8e:48:3f:1a:a0:10:3c:a8:bf:3e: 09:80:af:f5:6d:f0:ff:4d:b1:a5:d9:e9:95:f2:1c: 07:e0:04:cd:0c:29:fd:ae:07:08:6f:86:4d:68:09: 1d:80:db:fc:50:90:48:70:8e:e0:fa:b3:89:88:c4: 30:98:ee:df:89:05:4b:55:2f:b3:22:b4:34:02:a9: 65:4a:29:c3:e4:d6:5b:9f:e0:8c:b4:62:bf:17:85: ab:7c:08:5b:4f:db:05:c4:32:c6:53:d0:73:ef:91: 25:c4:fd:92:e0:ad:ed:84:43:4a:36:19:e4:93:38: f3:40:76:1b:b2:3d:84:65:72:a9:11:f0:85:a9:64: 7d:50:64:e9:45:8a:33:e3:4e:70:b1:ed:e6:a4:a1: c6:01:42:3f:bf:5c:62:a2:f8:95:28:40:a2:1b:72: cc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DF:6A:3A:36:EE:B1:35:40:28:2E:CE:BD:BE:18:A0:DB:35:25:40 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c7:3e:9c:c6:df:f2:8b:f3:96:c7:47:c3:fc:9c:18:0d:ae: ad:52:08:e6:e6:39:50:08:5b:4e:19:6e:af:ff:09:99:6d:cd: 8c:78:b5:d8:54:93:bc:db:f8:28:95:80:ee:e9:7f:2e:7d:87: 9a:77:73:f8:31:a1:34:63:9f:22:57:aa:0c:2c:4a:31:cd:41: 4a:46:9a:b2:73:3c:d3:11:55:cb:89:ae:0c:76:17:92:a3:81: 15:8a:d2:48:1e:ca:d1:e1:86:cd:85:0b:fc:4e:c5:b4:c5:da: 01:ec:7c:ce:69:3d:0c:29:54:a3:63:ac:64:ba:58:b4:f1:aa: 01:c8:93:5f:02:12:35:75:99:9f:96:c6:ad:b8:26:a5:37:1f: 81:eb:8b:c6:e2:a7:c6:89:13:3b:ff:fd:f3:bd:51:6b:f4:3e: 70:29:51:5c:7c:31:36:dc:9f:a5:27:fa:f9:0f:88:58:a1:2f: 6b:ea:7c:73:52:55:83:b2:cc:6d:ce:fa:a3:06:21:13:bd:da: c5:7f:3a:90:0b:1d:98:bf:8a:9b:df:80:96:e9:e6:bc:46:e0: 30:8b:72:80:78:e1:ce:de:6e:03:9d:8d:fc:4f:97:fe:5e:e7: 9d:5b:72:53:57:2c:9d:97:97:66:9e:a1:50:7d:8c:f2:e1:8a: 6f:ac:82:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjYwMzAyMDIwOTQ2WhcNMjYwMzA5MDIwOTQ2WjAYMRYwFAYD VQQDEw02OWE0ZjE2Yi1hODExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mcI8zRlleAtZMzObRASSPcVyUMo+MiMve2Y1oHR2TncjAYuTQ5Pen+WjGSM bAnHDDedKyW31PotNmOdyRlbnuNt82vYE3ZTnqxHI60gjJuGGIxL+D3vMo7N2hoR iY5IPxqgEDyovz4JgK/1bfD/TbGl2emV8hwH4ATNDCn9rgcIb4ZNaAkdgNv8UJBI cI7g+rOJiMQwmO7fiQVLVS+zIrQ0AqllSinD5NZbn+CMtGK/F4WrfAhbT9sFxDLG U9Bz75ElxP2S4K3thENKNhnkkzjzQHYbsj2EZXKpEfCFqWR9UGTpRYoz405wse3m pKHGAUI/v1xioviVKECiG3LMqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGPfajo2 7rE1QCguzr2+GKDbNSVAMB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMsc+nMbf8ovzlsdHw/ycGA2urVII5uY5UAhbThlur/8JmW3NjHi12FSTvNv4 KJWA7ul/Ln2Hmndz+DGhNGOfIleqDCxKMc1BSkaasnM80xFVy4muDHYXkqOBFYrS SB7K0eGGzYUL/E7FtMXaAex8zmk9DClUo2OsZLpYtPGqAciTXwISNXWZn5bGrbgm pTcfgeuLxuKnxokTO//9871Ra/Q+cClRXHwxNtyfpSf6+Q+IWKEva+p8c1JVg7LM bc76owYhE73axX86kAsdmL+Km9+AlunmvEbgMItygHjhzt5uA52N/E+X/l7nnVty U1csnZeXZp6hUH2M8uGKb6yCVg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:09 2026 by rpki-client