$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft File: 3oPHbNtE9PeURxkgK-OvqIPTSU0.mft (raw, json) Hash identifier: 4S+D+NO6JJUZE6wRhiYbowQegUSGeu9q2Z+Dwh26C0s= Subject key identifier: 36:A1:5A:82:CB:95:0A:B9:5D:83:81:DB:14:10:B1:0B:C3:C7:07:9D Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft Manifest number: 29 Signing time: Sun 01 Mar 2026 10:14:14 +0000 Manifest this update: Sun 01 Mar 2026 10:14:14 +0000 Manifest next update: Sun 08 Mar 2026 10:14:14 +0000 Files and hashes: 1: 3oPHbNtE9PeURxkgK-OvqIPTSU0.crl (hash: 0aX2v9JtoUWmCqRvhheof8vRnH6J9Jq0B7hi4SsOkjc=) 2: E9CC4952DBB711F09A595FAD4E641951.roa (hash: N8C+RbGZ4TxSn2UCb5i7gkeLR+IHJ44RuRig3WO+cbY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Mar 1 10:14:14 2026 GMT Not After : Mar 8 10:14:14 2026 GMT Subject: CN=69a41176-e3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:be:74:a3:d8:b7:4d:ee:1f:dd:18:aa:e8:df: 70:a8:16:fa:91:5f:7a:f9:a8:ee:62:a8:bb:59:bd: fe:6b:6e:3e:64:73:79:5c:92:cb:c6:66:c3:c1:79: 00:18:de:3e:70:a1:b6:88:91:59:c4:d2:47:74:76: 04:40:dd:46:63:5c:be:9e:5e:30:86:08:1c:40:2c: 2f:35:ab:73:79:eb:d0:00:b5:d7:48:27:87:db:9a: 27:4a:3d:aa:93:15:bd:c7:50:6c:7f:e7:a0:b5:b8: 54:9a:b9:6b:2b:dc:3f:b7:fb:16:76:9d:3c:cf:cf: 30:a8:48:0a:08:96:41:b5:c4:ba:25:88:28:1e:f4: 9c:60:aa:25:3e:80:42:05:8f:a1:da:05:7c:4a:89: e1:3c:0a:37:01:7b:f1:95:5e:0a:5b:fa:ae:9b:79: 59:f5:14:a3:b4:58:1c:8f:e8:35:e4:bd:1a:d4:e1: a3:34:4c:b1:40:93:34:95:8e:39:fd:1e:45:13:17: ff:86:60:0c:aa:8b:96:e7:eb:c7:2a:ea:81:29:c8: d6:b6:50:99:18:67:d5:6a:c1:15:23:d6:6a:fb:bc: db:a4:05:f1:e9:ee:0c:a4:ad:09:cb:24:13:dd:a3: 35:af:45:32:8c:b8:b0:c7:06:7e:f3:1b:9b:7b:98: ae:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A1:5A:82:CB:95:0A:B9:5D:83:81:DB:14:10:B1:0B:C3:C7:07:9D X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:72:19:32:81:47:21:2e:cc:c4:99:f3:c3:4c:56:32:a4:1e: 6f:fd:05:56:be:2c:99:7b:f6:78:f7:c4:0a:b7:42:59:9c:85: 50:de:35:56:8d:42:69:eb:07:c1:ed:58:f7:47:f2:0e:d7:72: 17:ef:6c:9b:52:01:d2:38:f9:3f:9f:3b:b2:cf:ab:7e:e8:de: 82:56:91:8d:a4:28:4e:d8:91:ba:f9:fc:05:d6:cd:cb:09:07: 44:98:06:c7:8c:41:8f:d6:18:f5:78:8e:59:1e:c8:9b:cf:f1: f7:de:25:04:a4:25:4c:5c:9a:03:d0:b2:0c:11:5d:b3:2a:9e: 28:16:27:75:97:f2:c3:ab:53:03:75:bb:14:3d:33:90:0c:5c: cd:b0:03:fd:63:39:71:ab:1a:0e:a4:73:1b:c6:a8:b4:bb:e4: 27:29:22:f4:0f:6a:60:f8:55:37:a2:21:29:18:14:3d:9e:d4: 68:39:20:37:fb:f9:d5:4d:ba:9b:9f:16:7d:53:5b:a4:10:6d: 4c:1d:47:57:03:dc:62:7f:16:42:c6:c6:eb:66:94:87:53:b6: 1e:0b:3b:77:e0:bb:41:a2:ff:29:63:26:be:ed:a3:a3:d2:75: 16:7c:7c:1b:65:8b:6a:53:9d:42:d7:ab:6e:34:11:43:12:b3: cd:27:84:b3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNjAzMDExMDE0MTRaFw0yNjAzMDgxMDE0MTRaMBgxFjAUBgNV BAMTDTY5YTQxMTc2LWUzZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcvnSj2LdN7h/dGKro33CoFvqRX3r5qO5iqLtZvf5rbj5kc3lcksvGZsPBeQAY 3j5wobaIkVnE0kd0dgRA3UZjXL6eXjCGCBxALC81q3N569AAtddIJ4fbmidKPaqT Fb3HUGx/56C1uFSauWsr3D+3+xZ2nTzPzzCoSAoIlkG1xLoliCge9JxgqiU+gEIF j6HaBXxKieE8CjcBe/GVXgpb+q6beVn1FKO0WByP6DXkvRrU4aM0TLFAkzSVjjn9 HkUTF/+GYAyqi5bn68cq6oEpyNa2UJkYZ9VqwRUj1mr7vNukBfHp7gykrQnLJBPd ozWvRTKMuLDHBn7zG5t7mK5HAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUNqFagsuV Crldg4HbFBCxC8PHB50wHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTI4LzQ3NjA2RUI0REJCNzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBl VVJ4a2dLLU92cUlQVFNVMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQADchkygUchLszEmfPDTFYypB5v/QVWviyZe/Z498QKt0JZnIVQ3jVWjUJp6wfB 7Vj3R/IO13IX72ybUgHSOPk/nzuyz6t+6N6CVpGNpChO2JG6+fwF1s3LCQdEmAbH jEGP1hj1eI5ZHsibz/H33iUEpCVMXJoD0LIMEV2zKp4oFid1l/LDq1MDdbsUPTOQ DFzNsAP9YzlxqxoOpHMbxqi0u+QnKSL0D2pg+FU3oiEpGBQ9ntRoOSA3+/nVTbqb nxZ9U1ukEG1MHUdXA9xifxZCxsbrZpSHU7YeCzt34LtBov8pYya+7aOj0nUWfHwb ZYtqU51C16tuNBFDErPNJ4Sz -----END CERTIFICATE-----Generated at Sun Mar 1 20:37:29 2026 by rpki-client