$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: FkLocMaBHiwS9iKOfAWeb+RDDgfQX5Zk3kNyshwejzs= Subject key identifier: 2B:27:C6:49:91:F8:D5:A4:0E:0B:4F:E3:BA:5E:E9:2C:28:13:00:B8 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: 016E Signing time: Sun 01 Mar 2026 05:44:16 +0000 Manifest this update: Sun 01 Mar 2026 05:44:15 +0000 Manifest next update: Sun 08 Mar 2026 05:44:15 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: Gck3M7ya2dIWGQLFjJT6JyRlLSwyRKX5ipob8h58jEs=) 2: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: Kq9z18t39rAjNqTDFxx/COpb6FxmGJ+tPX1EqE4L/i0=) 3: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: YlzrLadmLZj8tcRLHED6W+B0nbQveqQqdBBbNI84e3w=) 4: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: qn4Fpxt7PWA/6hWMWYVeaGljIqcp672ouf6S4bONl/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:44:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Mar 1 05:44:15 2026 GMT Not After : Mar 8 05:44:15 2026 GMT Subject: CN=69a3d22f-978c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:59:b0:22:2e:c4:7a:71:47:60:d0:c6:03:af: 15:73:e4:f5:f2:ed:11:c5:f0:01:e6:2b:29:e4:1a: aa:c7:1b:d1:10:88:b3:ec:4e:83:49:d7:71:91:d6: 6b:94:70:30:d4:a0:d3:2d:db:fd:e5:0c:be:a9:8c: 61:2a:bc:54:51:0a:d5:e5:bf:6e:90:15:8f:90:cb: 6b:20:f6:eb:8b:2b:5e:49:86:e8:4e:d2:b9:43:cd: c4:1b:a3:ec:14:0b:d0:0f:f6:07:87:1d:2f:e2:94: 11:20:24:d6:df:d0:93:70:32:20:04:ee:fb:9d:de: f9:d3:20:04:4c:d4:e9:d4:e5:48:99:c7:6a:6a:99: aa:b1:f7:f0:2d:93:c7:7f:bb:9e:3f:7a:13:f5:1e: 2e:ca:35:7d:a6:6c:1a:01:9a:3b:84:9a:ea:03:b8: a5:1f:17:2f:c5:ef:bc:61:c6:47:b6:ed:89:26:1a: bc:ae:24:2e:8f:7e:06:ab:fc:eb:e6:d0:bc:82:f4: 70:40:fe:47:5d:0d:c6:f7:3a:63:91:22:c5:a3:43: 4d:77:c9:3e:e1:a8:eb:f7:55:52:55:2b:a6:72:25: d5:d8:a3:b0:78:b1:fc:60:7c:42:f2:4f:d1:c6:ed: 74:6e:0b:6a:d7:42:a9:a0:de:b4:16:17:f2:b5:c4: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:27:C6:49:91:F8:D5:A4:0E:0B:4F:E3:BA:5E:E9:2C:28:13:00:B8 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:68:02:aa:86:9f:82:93:aa:ce:57:53:90:a4:cc:f5:e4:8d: 64:38:47:6d:56:95:2b:dc:ee:84:16:54:7d:6b:2f:d4:17:e5: 09:a7:79:f7:7b:9d:29:64:99:59:92:fb:de:e5:82:7c:2b:9b: a6:f3:78:1a:93:8e:b1:d6:b5:2b:2c:c0:e6:99:1b:3e:08:f5: d7:a8:48:b2:a0:3e:41:81:3e:4e:8c:a7:b0:e9:4f:a4:1e:32: c9:51:57:09:c7:66:3d:43:fd:ca:4d:7f:e9:ce:82:f6:e9:7e: 1a:c3:cf:31:e3:43:b5:5f:49:99:45:98:d2:46:56:f4:3b:df: d6:a4:dd:90:4f:f3:b0:2b:16:39:71:6a:a3:3e:29:97:e5:f7: 33:15:2a:44:e3:81:f6:25:f1:15:22:b0:f1:ec:8d:a9:7f:4c: 5a:6c:3b:7b:30:b9:9b:57:bd:41:9a:50:c0:42:0e:a7:a1:a9: b9:6a:3c:91:be:13:6f:1a:d5:77:12:c3:0d:5f:f9:d3:23:30: 88:2f:b6:6f:b4:e3:d2:55:1e:34:38:f4:55:83:61:f2:02:79: 43:77:5c:a5:1a:3b:7b:f0:86:9a:8d:de:dc:de:8b:b9:e3:66: d1:09:41:43:4e:14:61:d7:c5:f1:5b:15:f6:0e:08:08:ca:5b: 97:97:b8:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjYwMzAxMDU0NDE1WhcNMjYwMzA4MDU0NDE1WjAYMRYwFAYD VQQDEw02OWEzZDIyZi05NzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFmwIi7EenFHYNDGA68Vc+T18u0RxfAB5isp5BqqxxvREIiz7E6DSddxkdZr lHAw1KDTLdv95Qy+qYxhKrxUUQrV5b9ukBWPkMtrIPbriyteSYboTtK5Q83EG6Ps FAvQD/YHhx0v4pQRICTW39CTcDIgBO77nd750yAETNTp1OVImcdqapmqsffwLZPH f7ueP3oT9R4uyjV9pmwaAZo7hJrqA7ilHxcvxe+8YcZHtu2JJhq8riQuj34Gq/zr 5tC8gvRwQP5HXQ3G9zpjkSLFo0NNd8k+4ajr91VSVSumciXV2KOweLH8YHxC8k/R xu10bgtq10KpoN60FhfytcSpxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCsnxkmR +NWkDgtP47pe6SwoEwC4MB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMmgCqoafgpOqzldTkKTM9eSNZDhHbVaVK9zuhBZUfWsv1BflCad593udKWSZ WZL73uWCfCubpvN4GpOOsda1KyzA5pkbPgj116hIsqA+QYE+ToynsOlPpB4yyVFX CcdmPUP9yk1/6c6C9ul+GsPPMeNDtV9JmUWY0kZW9Dvf1qTdkE/zsCsWOXFqoz4p l+X3MxUqROOB9iXxFSKw8eyNqX9MWmw7ezC5m1e9QZpQwEIOp6GpuWo8kb4TbxrV dxLDDV/50yMwiC+2b7Tj0lUeNDj0VYNh8gJ5Q3dcpRo7e/CGmo3e3N6LueNm0QlB Q04UYdfF8VsV9g4ICMpbl5e4VQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:38:47 2026 by rpki-client