$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft File: r3YSV94snaXzPnHGQZ4meoYt-2I.mft (raw, json) Hash identifier: fFTrJsAfvrRlwgBc3Gm8Sk4xAgqWLY5VDUENSmyzf54= Subject key identifier: 7F:8A:F3:0A:46:D5:59:76:22:E6:E0:BB:7A:14:A4:04:E7:10:78:1F Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft Manifest number: C5 Signing time: Sun 01 Mar 2026 08:06:07 +0000 Manifest this update: Sun 01 Mar 2026 08:06:07 +0000 Manifest next update: Sun 08 Mar 2026 08:06:07 +0000 Files and hashes: 1: r3YSV94snaXzPnHGQZ4meoYt-2I.crl (hash: XjXUegPq/iDjuvjM2HmcMPy9boW2s2Fhygf2YGvE9Fo=) 2: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (hash: dQJ3RW7hJaU0g8iPp7h8PfqQXue8K1gg2a56fyB2vzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Mar 1 08:06:07 2026 GMT Not After : Mar 8 08:06:07 2026 GMT Subject: CN=69a3f36f-1210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:64:b8:83:3b:c8:5d:d6:6e:a5:d6:52:ef:3c: 60:dc:43:22:01:c0:8c:74:ed:42:3e:a0:31:f2:51: 0f:99:53:79:ff:6a:cd:f7:eb:0f:3f:ee:8e:0e:7c: 39:c1:ee:ad:db:75:1e:4f:b9:09:40:8a:dd:3c:68: 6f:d6:c6:cd:52:85:59:ef:a2:62:5f:7f:c3:a0:0f: 01:1a:41:d8:3d:82:b4:89:e7:1b:32:34:db:13:5c: 97:38:89:88:e9:de:25:99:26:c3:35:41:8d:db:f2: 65:c1:db:0b:27:c7:2d:38:ce:22:84:83:77:7b:53: a3:d8:f8:89:fd:3a:91:46:c8:d7:72:dc:56:c9:79: 04:07:e6:b4:5b:ec:57:0d:34:47:12:63:18:f8:b2: a1:ec:26:42:99:a7:b0:52:20:2b:de:f7:44:be:82: 3e:50:ff:e8:ec:0f:5e:3f:86:91:41:c1:73:be:9e: a5:f0:59:86:29:14:fc:62:01:04:30:6e:92:6f:b3: 3b:f6:68:c7:2b:a0:7c:44:0f:ad:f1:33:11:e6:e9: ee:53:e9:36:46:db:88:f0:d9:3a:2d:0b:f9:b5:d6: 8b:b6:9d:88:8c:70:53:39:81:f9:49:de:40:ca:d0: 2f:f1:46:b6:86:0a:56:8f:ea:ed:b3:b9:43:89:be: 13:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8A:F3:0A:46:D5:59:76:22:E6:E0:BB:7A:14:A4:04:E7:10:78:1F X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:d9:1b:9f:7b:fb:3e:a4:58:e0:5b:cd:3b:9e:f1:af:27:cf: 85:75:10:1f:7e:dc:dc:57:ec:67:e8:64:b2:70:f6:51:08:7b: ac:42:4d:e4:0d:34:61:c9:74:6b:a5:1f:fb:75:7e:96:29:5c: 4e:f6:2f:38:bf:1b:32:04:f2:61:f2:b0:a1:51:2d:e0:e2:b4: 18:51:6a:78:17:b5:20:10:ef:25:76:fa:6a:0c:a0:08:e9:e1: 23:f2:58:88:a3:74:3b:78:98:c7:23:56:28:02:17:e6:bd:ea: 21:e4:b9:c8:97:f3:55:e0:28:d3:6a:09:8e:36:71:bb:da:52: f4:7c:53:35:1c:5b:a2:24:7d:84:37:41:77:cc:7e:81:a9:14: 46:2b:9d:ff:5d:4f:3e:cd:dd:63:70:29:72:3d:7d:1f:a3:90: c6:97:f2:da:85:d4:8f:96:c9:ab:f2:33:60:63:6e:38:ef:8d: e2:ec:e4:2e:57:a8:b8:cd:8c:89:4e:3b:a7:6a:01:b5:33:4d: ac:6e:b5:67:3c:42:00:20:31:00:49:4d:24:a4:a9:49:83:37: 6d:ad:b0:af:46:69:98:cf:25:49:76:8e:b8:ba:cd:95:96:97: 3b:a3:90:04:f7:da:09:fa:62:69:ea:c0:9d:f7:80:70:65:ba: 5a:42:56:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRENTQxMTAvBgNVBAUTKEFGNzYxMjU3REUyQzlEQTVGMzNFNzFDNjQxOUUyNjdB ODYyREZCNjIwHhcNMjYwMzAxMDgwNjA3WhcNMjYwMzA4MDgwNjA3WjAYMRYwFAYD VQQDEw02OWEzZjM2Zi0xMjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmS4gzvIXdZupdZS7zxg3EMiAcCMdO1CPqAx8lEPmVN5/2rN9+sPP+6ODnw5 we6t23UeT7kJQIrdPGhv1sbNUoVZ76JiX3/DoA8BGkHYPYK0iecbMjTbE1yXOImI 6d4lmSbDNUGN2/JlwdsLJ8ctOM4ihIN3e1Oj2PiJ/TqRRsjXctxWyXkEB+a0W+xX DTRHEmMY+LKh7CZCmaewUiAr3vdEvoI+UP/o7A9eP4aRQcFzvp6l8FmGKRT8YgEE MG6Sb7M79mjHK6B8RA+t8TMR5unuU+k2RtuI8Nk6LQv5tdaLtp2IjHBTOYH5Sd5A ytAv8Ua2hgpWj+rts7lDib4TJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH+K8wpG 1Vl2Iubgu3oUpATnEHgfMB8GA1UdIwQYMBaAFK92ElfeLJ2l8z5xxkGeJnqGLfti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEQ1NC9EMjg3N0RCNkU5 RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25hWHpQbkhHUVo0bWVvWXQt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEQ1NC9EMjg3N0RCNkU5RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25h WHpQbkhHUVo0bWVvWXQtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsdkbn3v7PqRY4FvNO57xryfPhXUQH37c3FfsZ+hksnD2UQh7rEJN5A00Ycl0 a6Uf+3V+lilcTvYvOL8bMgTyYfKwoVEt4OK0GFFqeBe1IBDvJXb6agygCOnhI/JY iKN0O3iYxyNWKAIX5r3qIeS5yJfzVeAo02oJjjZxu9pS9HxTNRxboiR9hDdBd8x+ gakURiud/11PPs3dY3Apcj19H6OQxpfy2oXUj5bJq/IzYGNuOO+N4uzkLleouM2M iU47p2oBtTNNrG61ZzxCACAxAElNJKSpSYM3ba2wr0ZpmM8lSXaOuLrNlZaXO6OQ BPfaCfpiaerAnfeAcGW6WkJWUA== -----END CERTIFICATE-----Generated at Mon Mar 2 15:02:05 2026 by rpki-client