$ rpki-client -vvf rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft File: 3UhfmiMRbUEQwHvThx70phTsTSw.mft (raw, json) Hash identifier: lyZ2/uLWSlIF1prsx3J81GhWCrW2kEeXdMxc3do2+Aw= Subject key identifier: E7:98:20:F9:92:73:42:42:C7:4D:F5:69:E5:35:54:F2:6C:6D:CE:EA Authority key identifier: DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C Certificate issuer: /CN=A91331AA/serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft Manifest number: 3A Signing time: Wed 11 Mar 2026 07:17:05 +0000 Manifest this update: Wed 11 Mar 2026 07:17:05 +0000 Manifest next update: Wed 18 Mar 2026 07:17:05 +0000 Files and hashes: 1: 3UhfmiMRbUEQwHvThx70phTsTSw.crl (hash: +iae1MBCipA2WS2lO1Yv0sA6hkto4k5rtWilLZbYqyI=) 2: DAC133B0C8EC11F08ED15548C4F9AE02.roa (hash: 1ew7qVLpB8TWdqlXh+YAjZXQOnaoMm4IqX92zh5/ghU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 07:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91331AA, serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Validity Not Before: Mar 11 07:17:05 2026 GMT Not After : Mar 18 07:17:05 2026 GMT Subject: CN=69b116f1-c81b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:06:2d:6b:47:71:50:62:44:4c:ad:7e:15:f1: c2:cf:cb:74:ac:f3:01:c6:b8:82:15:30:0d:99:04: 15:0b:46:48:10:b4:3f:5f:22:6a:68:a9:30:89:3c: f9:a9:93:9e:74:0c:e1:b0:50:b3:a4:15:0b:0c:bc: 0c:66:33:0b:6d:cd:6f:3d:6b:5c:5a:7e:19:cc:a1: 1f:2c:be:92:43:b6:64:dc:5f:de:0c:27:68:41:7c: 63:90:62:6f:c2:2b:5a:7f:2b:73:0e:93:a3:8c:f2: 8c:c1:d4:1e:25:2a:2f:67:23:c2:a2:19:54:9b:75: 07:d6:6d:c7:c1:3f:44:2a:aa:b3:3d:f9:3d:b6:58: ad:55:9b:84:ad:52:82:75:21:9c:97:98:37:0f:d7: 31:d8:2e:a6:09:a0:71:06:b4:5e:27:24:df:aa:71: 24:5e:d0:26:89:38:10:46:43:14:51:33:67:e9:11: 11:36:59:ba:4a:b5:41:32:e3:e6:f4:69:8b:a3:17: 95:e7:e5:e4:b7:76:da:7c:e3:43:bf:f9:dd:4d:63: 69:33:72:f2:b7:6d:02:44:90:8d:4f:c2:f0:d0:81: 93:3e:05:6a:10:14:3d:f9:99:35:ba:f0:a3:42:50: a6:58:94:83:d3:02:aa:ce:1d:02:f9:7e:82:61:ed: 55:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:98:20:F9:92:73:42:42:C7:4D:F5:69:E5:35:54:F2:6C:6D:CE:EA X509v3 Authority Key Identifier: keyid:DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c3:bb:9c:73:72:a7:56:b6:9d:ff:67:6b:17:f7:2c:47:c1: 9a:64:1e:16:ec:04:4e:b3:1d:c7:52:52:b7:61:78:f4:f7:b5: eb:33:06:c7:62:af:48:b6:74:bd:2c:75:af:14:14:2f:4d:35: a9:db:eb:eb:18:19:f2:72:55:27:97:52:a5:af:ec:49:d8:6e: 86:44:5a:89:ce:2b:56:0d:c0:ab:c9:66:39:66:ee:bf:fb:da: fa:42:e4:b3:80:ec:d8:d1:73:e5:04:ba:07:91:be:3d:8f:56: 60:a8:93:d2:24:9b:3f:f3:ea:28:ec:bc:09:6e:8f:68:39:1c: 58:82:4f:e1:43:4a:cb:18:f8:e7:ea:70:35:67:2c:21:92:4d: 24:c4:54:c3:69:4b:64:37:d5:02:9c:e8:e2:cf:47:5f:e3:02: d1:ad:5c:fe:c9:bf:93:f9:77:9e:af:54:74:01:7e:5f:9d:21: 86:1b:54:5e:6b:e8:8c:98:14:e3:49:a3:a9:fe:40:43:d4:dc: 85:d0:01:37:6e:9d:19:59:3d:36:4c:7b:93:c0:02:e6:ff:d7: 8f:d9:c1:85:6c:90:20:6e:eb:56:ef:d6:b9:68:f0:ec:61:43: 4e:e7:31:9c:4c:98:4d:7d:40:b5:e2:58:0c:10:46:8d:4a:18: 37:fc:29:88 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzFBQTExMC8GA1UEBRMoREQ0ODVGOUEyMzExNkQ0MTEwQzA3QkQzODcxRUY0QTYx NEVDNEQyQzAeFw0yNjAzMTEwNzE3MDVaFw0yNjAzMTgwNzE3MDVaMBgxFjAUBgNV BAMTDTY5YjExNmYxLWM4MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD8Bi1rR3FQYkRMrX4V8cLPy3Ss8wHGuIIVMA2ZBBULRkgQtD9fImpoqTCJPPmp k550DOGwULOkFQsMvAxmMwttzW89a1xafhnMoR8svpJDtmTcX94MJ2hBfGOQYm/C K1p/K3MOk6OM8ozB1B4lKi9nI8KiGVSbdQfWbcfBP0QqqrM9+T22WK1Vm4StUoJ1 IZyXmDcP1zHYLqYJoHEGtF4nJN+qcSRe0CaJOBBGQxRRM2fpERE2WbpKtUEy4+b0 aYujF5Xn5eS3dtp840O/+d1NY2kzcvK3bQJEkI1PwvDQgZM+BWoQFD35mTW68KNC UKZYlIPTAqrOHQL5foJh7VXVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU55gg+ZJz QkLHTfVp5TVU8mxtzuowHwYDVR0jBBgwFoAU3UhfmiMRbUEQwHvThx70phTsTSww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMUFBLzhBRkJEQjYwQzhF QjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVFUXdIdlRoeDcwcGhUc1RT dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1VoZm1pTVJiVUVRd0h2VGh4NzBwaFRzVFN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz MUFBLzhBRkJEQjYwQzhFQjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVF UXdIdlRoeDcwcGhUc1RTdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBbw7ucc3KnVrad/2drF/csR8GaZB4W7AROsx3HUlK3YXj097XrMwbHYq9ItnS9 LHWvFBQvTTWp2+vrGBnyclUnl1Klr+xJ2G6GRFqJzitWDcCryWY5Zu6/+9r6QuSz gOzY0XPlBLoHkb49j1ZgqJPSJJs/8+oo7LwJbo9oORxYgk/hQ0rLGPjn6nA1Zywh kk0kxFTDaUtkN9UCnOjiz0df4wLRrVz+yb+T+Xeer1R0AX5fnSGGG1Rea+iMmBTj SaOp/kBD1NyF0AE3bp0ZWT02THuTwALm/9eP2cGFbJAgbutW79a5aPDsYUNO5zGc TJhNfUC14lgMEEaNShg3/CmI -----END CERTIFICATE-----Generated at Fri Mar 13 00:13:24 2026 by rpki-client