$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: xLoy4k6akCsdCVNVfNjjUH3Qs11FUsB4ov+Rf4sGDbI= Subject key identifier: 59:8A:40:F1:86:B2:85:77:19:B2:C8:95:D6:7D:B5:92:5B:D7:86:83 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0A99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A87 Signing time: Sat 28 Mar 2026 19:29:23 +0000 Manifest this update: Sat 28 Mar 2026 19:29:22 +0000 Manifest next update: Sat 04 Apr 2026 19:29:22 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: COB1pQ7DqotyH9k6oz3oGjk2LVcjxfyi0OuXCQWDKYA=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: pjTWlhBU9uLdZ8Pokz/j8Myvf4pRfYFG3vHjcrWT10w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2713 (0xa99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Mar 28 19:29:22 2026 GMT Not After : Apr 4 19:29:22 2026 GMT Subject: CN=69c82c13-77a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:34:af:86:8f:97:f1:fa:1a:c7:c1:e7:04:90: aa:ba:23:65:19:61:64:38:f2:82:49:a5:b1:ba:4e: 70:cb:2d:37:52:6a:00:91:21:71:7e:5d:84:1a:b0: b9:ed:89:ee:3a:8e:c8:5e:76:08:30:05:d4:2f:0c: c3:a1:1f:3e:b1:61:3f:fc:9e:71:27:31:37:43:ea: ac:5c:53:fe:da:36:25:b8:ca:15:33:ce:0f:0c:3b: f5:67:ca:51:71:6b:25:25:0e:18:85:81:15:00:cb: cc:ef:bd:0f:28:c9:94:5a:6e:67:a3:a8:94:bf:fd: 37:9d:72:e0:ef:d3:41:1f:9d:00:c1:1d:06:68:d3: 57:99:e3:18:0e:37:b3:c7:07:2e:9a:7c:fe:ef:c0: 3e:54:18:8c:12:77:5d:73:5b:33:67:62:bd:d6:da: 03:5b:7c:c6:45:99:b7:c3:c0:4e:6b:74:28:29:10: 49:9f:37:3b:03:d9:d7:d4:62:71:a0:bb:e4:17:a9: 9b:41:bf:e5:14:13:8f:81:a0:10:68:16:a3:8a:79: 44:2c:89:df:d0:d3:4e:cf:41:ee:e8:6b:6e:a2:88: b7:7e:95:f6:33:fc:a4:63:28:6b:28:27:e0:47:18: 56:86:3c:34:35:f5:71:5e:52:8e:15:93:49:8e:97: 5b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8A:40:F1:86:B2:85:77:19:B2:C8:95:D6:7D:B5:92:5B:D7:86:83 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:89:49:a2:96:0e:28:7b:76:44:a7:68:b3:fa:c2:a4:f0:c5: 96:fc:a9:30:2c:0e:51:ec:47:f6:9b:ea:2a:4a:e7:3e:8a:ec: 60:cb:5c:25:24:53:f6:2d:1f:ae:fe:a5:7e:6b:27:ba:21:81: f1:d1:01:0f:77:3b:da:67:80:1b:74:90:a1:09:fa:05:98:bf: 38:df:65:dd:cf:cf:f4:4d:48:8e:68:23:88:6c:d5:91:ee:ef: 28:64:ae:0a:dd:99:7e:49:37:7f:f4:43:f6:cd:c4:13:1f:19: 4a:09:17:ad:c3:ef:a9:29:d4:7a:f4:2a:0c:64:91:1f:69:4a: d0:7d:55:8d:5e:50:d5:2e:a9:66:94:f1:ba:62:51:f5:00:cd: a4:a7:6b:61:87:c7:a7:b6:ac:e1:2a:aa:8a:e9:23:42:29:f6: 81:25:f5:e4:a5:ff:88:e5:c8:0d:e8:c5:19:2d:f5:f9:17:d7: c3:85:ae:63:40:be:2f:b8:77:41:38:49:68:98:a7:6f:99:00: 61:98:6f:1a:61:7f:d3:d1:7f:5c:3c:6d:86:6a:07:7c:fb:b0: f1:c8:de:1c:ce:a8:f4:30:a8:eb:04:47:44:65:48:9c:96:dc: 05:51:6a:48:3c:e1:9a:56:18:b5:34:d6:0d:0f:b5:1e:96:9b: 51:6e:b3:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjYwMzI4MTkyOTIyWhcNMjYwNDA0MTkyOTIyWjAYMRYwFAYD VQQDEw02OWM4MmMxMy03N2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAijSvho+X8foax8HnBJCquiNlGWFkOPKCSaWxuk5wyy03UmoAkSFxfl2EGrC5 7YnuOo7IXnYIMAXULwzDoR8+sWE//J5xJzE3Q+qsXFP+2jYluMoVM84PDDv1Z8pR cWslJQ4YhYEVAMvM770PKMmUWm5no6iUv/03nXLg79NBH50AwR0GaNNXmeMYDjez xwcumnz+78A+VBiMEnddc1szZ2K91toDW3zGRZm3w8BOa3QoKRBJnzc7A9nX1GJx oLvkF6mbQb/lFBOPgaAQaBajinlELInf0NNOz0Hu6Gtuooi3fpX2M/ykYyhrKCfg RxhWhjw0NfVxXlKOFZNJjpdbqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmKQPGG soV3GbLIldZ9tZJb14aDMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXIlJopYOKHt2RKdos/rCpPDFlvypMCwOUexH9pvqKkrnPorsYMtcJSRT9i0f rv6lfmsnuiGB8dEBD3c72meAG3SQoQn6BZi/ON9l3c/P9E1IjmgjiGzVke7vKGSu Ct2Zfkk3f/RD9s3EEx8ZSgkXrcPvqSnUevQqDGSRH2lK0H1VjV5Q1S6pZpTxumJR 9QDNpKdrYYfHp7as4SqqiukjQin2gSX15KX/iOXIDejFGS31+RfXw4WuY0C+L7h3 QThJaJinb5kAYZhvGmF/09F/XDxthmoHfPuw8cjeHM6o9DCo6wRHRGVInJbcBVFq SDzhmlYYtTTWDQ+1HpabUW6zDw== -----END CERTIFICATE-----Generated at Mon Mar 30 13:57:12 2026 by rpki-client