$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: /CicAeGHfRyZSKHiloI8Rv4i37mABl7r+0dOaFm4IoU= Subject key identifier: 16:14:7E:3E:F5:F1:AD:6D:C0:93:1B:4F:58:6E:62:90:8F:90:24:B0 Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C83 Signing time: Thu 12 Mar 2026 18:22:46 +0000 Manifest this update: Thu 12 Mar 2026 18:22:45 +0000 Manifest next update: Thu 19 Mar 2026 18:22:45 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: s2GyTuVOlGG5PmkcLJbCaO+SsTXeZmRHS4NsPKnExww=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Mar 12 18:22:45 2026 GMT Not After : Mar 19 18:22:45 2026 GMT Subject: CN=69b30476-edff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:53:d0:1c:ce:86:8e:a6:c0:db:11:34:f2:0a: be:94:8b:7d:02:e4:75:5a:08:9e:fd:2d:23:71:e0: 73:d9:bd:09:df:f1:94:ef:05:32:34:ea:61:38:30: ad:49:df:e4:a6:0b:fb:cb:42:31:8d:54:09:08:09: dd:49:05:8c:e8:0c:8d:8a:ff:4a:9b:7b:af:02:63: 06:80:81:77:cb:a8:ac:07:b7:ee:c8:ce:69:b0:fe: 4f:3e:1d:34:a8:1b:3a:ec:77:f2:15:df:20:32:08: 44:42:9e:46:78:2a:51:2e:d2:a8:3b:72:02:fe:dd: 6e:66:42:df:19:21:03:ca:9e:89:86:72:1e:d1:37: da:21:32:a6:66:11:9e:c7:33:7f:aa:fa:e8:6d:0a: be:54:ef:c5:32:9f:e0:e8:66:4c:1d:1d:c0:69:1c: 93:16:8a:38:4a:ad:5c:27:b7:80:8f:a1:32:b8:ed: 51:ca:1f:49:4b:9b:ba:14:fe:13:9f:49:3a:c8:be: c0:2d:35:e8:b1:a4:36:ff:7e:eb:66:a5:7f:db:1b: 58:be:53:c9:58:46:d5:3e:74:4f:9a:c9:d3:21:eb: 28:67:cd:8a:06:bc:fa:9e:ba:5f:3d:a1:f8:5a:30: 35:4e:aa:06:c2:cb:7f:8d:97:3d:bf:d0:1c:9e:11: 51:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:14:7E:3E:F5:F1:AD:6D:C0:93:1B:4F:58:6E:62:90:8F:90:24:B0 X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c8:78:08:17:4c:c3:ca:06:f6:b4:52:91:8c:7d:47:bf:af: a1:ac:73:fb:07:11:2c:09:3f:6f:4c:e9:56:95:b7:6e:83:58: e2:45:ea:fc:75:ef:22:07:e0:56:cb:ec:18:0c:a5:27:90:9a: 7c:22:61:3e:b3:c8:6c:a1:58:7d:3e:eb:7a:b2:51:f3:12:bf: 7b:e4:5d:6f:f8:53:7d:ed:19:db:34:07:b2:3e:86:a4:ba:0d: 9c:f8:d0:5b:72:1e:93:c6:e9:f7:93:c9:df:b5:14:91:5d:52: b2:1c:10:da:d1:25:68:6c:81:26:15:cc:3c:c3:c3:21:45:12: 13:9b:11:67:09:c4:ad:d7:7e:47:9b:ad:3d:0c:c6:6c:45:32: fe:6c:b5:51:6a:71:b9:48:d0:b6:31:76:6f:46:d1:75:8c:45: 1d:c7:ab:27:62:b7:4e:11:5c:92:9b:aa:41:e8:bc:79:07:43: 4d:73:7f:72:f0:3d:c4:c6:cc:34:ed:3c:b9:ac:a3:d8:e5:02: 27:f5:7f:29:9a:65:04:85:a7:90:b7:e4:ff:8c:dd:be:18:0e: 7d:bd:c7:5a:d8:d4:bf:79:a2:87:43:48:d9:1d:ca:c5:8f:2f: 54:e2:02:94:3f:98:e1:77:87:aa:88:dd:38:87:19:b1:62:fc: 5d:27:54:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwMzEyMTgyMjQ1WhcNMjYwMzE5MTgyMjQ1WjAYMRYwFAYD VQQDEw02OWIzMDQ3Ni1lZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FPQHM6GjqbA2xE08gq+lIt9AuR1Wgie/S0jceBz2b0J3/GU7wUyNOphODCt Sd/kpgv7y0IxjVQJCAndSQWM6AyNiv9Km3uvAmMGgIF3y6isB7fuyM5psP5PPh00 qBs67HfyFd8gMghEQp5GeCpRLtKoO3IC/t1uZkLfGSEDyp6JhnIe0TfaITKmZhGe xzN/qvrobQq+VO/FMp/g6GZMHR3AaRyTFoo4Sq1cJ7eAj6EyuO1Ryh9JS5u6FP4T n0k6yL7ALTXosaQ2/37rZqV/2xtYvlPJWEbVPnRPmsnTIesoZ82KBrz6nrpfPaH4 WjA1TqoGwst/jZc9v9AcnhFRTwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBYUfj71 8a1twJMbT1huYpCPkCSwMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIch4CBdMw8oG9rRSkYx9R7+voaxz+wcRLAk/b0zpVpW3boNY4kXq/HXvIgfg VsvsGAylJ5CafCJhPrPIbKFYfT7rerJR8xK/e+Rdb/hTfe0Z2zQHsj6GpLoNnPjQ W3Iek8bp95PJ37UUkV1SshwQ2tElaGyBJhXMPMPDIUUSE5sRZwnErdd+R5utPQzG bEUy/my1UWpxuUjQtjF2b0bRdYxFHcerJ2K3ThFckpuqQei8eQdDTXN/cvA9xMbM NO08uayj2OUCJ/V/KZplBIWnkLfk/4zdvhgOfb3HWtjUv3mih0NI2R3KxY8vVOIC lD+Y4XeHqojdOIcZsWL8XSdUcg== -----END CERTIFICATE-----Generated at Fri Mar 13 09:59:38 2026 by rpki-client