$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: Mslc0i+pdW6W8eVHBQ7usvDk6wKEE7AAFqxuLxanQCc= Subject key identifier: 48:32:69:84:C1:2F:E5:2D:77:74:4D:48:1B:2E:C1:9B:E9:C8:76:0C Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3533 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3522 Signing time: Fri 20 Mar 2026 15:09:13 +0000 Manifest this update: Fri 20 Mar 2026 15:09:13 +0000 Manifest next update: Fri 27 Mar 2026 15:09:13 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: DDB7CMCkC1lepLLSvBTEsrbbxtp64+rpD5OjafPxb1I=) 2: 41623A12778111ED8F236A62C4F9AE02.roa (hash: oWvONdzVtdNZzN0GXwvLtJk1cQSVlxMNqPZEYE5ztwk=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: +F9H9L+0+ICkfZDERWmYJJTvYvZTjlwlv2iEB9U5xD8=) 4: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: S+2nZ/LwiFl9lCGr/q1pgYuQMM2ksAuYCF9P9dTV9cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 15:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13619 (0x3533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Mar 20 15:09:13 2026 GMT Not After : Mar 27 15:09:13 2026 GMT Subject: CN=69bd6319-dc31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:60:2d:4c:94:56:f3:5a:1c:f2:cc:11:04: cc:84:8f:e5:11:7b:a2:28:cc:85:98:b1:e3:e8:2b: 17:d6:32:03:72:b7:d6:40:a1:71:25:32:c2:c6:de: 08:a7:ee:84:1c:e0:32:19:e3:d3:ff:00:cd:4a:97: 2e:43:ba:95:d2:f2:db:a7:af:5b:33:af:72:43:9b: be:76:9e:25:f0:3c:0f:84:fb:83:ef:d0:84:87:d3: 41:db:be:87:be:71:21:f2:d4:d2:fd:39:42:2b:9d: 7e:ea:c0:dc:35:53:ca:a4:ed:91:50:cd:99:78:9c: 83:22:96:0c:19:2d:eb:b8:c7:95:29:0a:9f:97:1c: 21:da:4a:6e:ca:94:ee:17:47:47:21:87:d9:39:04: 68:a3:ca:51:7f:44:7a:34:4f:43:ae:13:11:03:ed: ae:c0:bd:a8:7d:04:1e:e9:4a:3e:72:19:cb:e9:ca: 2f:ee:71:68:97:5e:89:96:b2:bd:34:aa:31:dc:44: 47:bd:77:75:e3:dc:3f:2f:1f:df:c3:db:7b:d6:b3: f1:94:5e:aa:9a:5e:ef:a5:10:37:99:de:46:e4:42: f0:2e:30:a7:90:a0:ac:85:c4:67:08:6a:74:63:5f: 65:85:e5:73:58:b6:38:f1:09:7a:96:66:34:a0:fa: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:32:69:84:C1:2F:E5:2D:77:74:4D:48:1B:2E:C1:9B:E9:C8:76:0C X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9e:b4:db:aa:28:7f:19:62:0f:ce:1d:ab:1a:a7:25:0e:4b: a7:24:71:b6:84:69:7a:36:15:81:12:af:85:d2:ea:d5:68:83: cb:16:e3:c7:69:74:45:fb:ff:b7:6c:d2:f3:00:25:6c:fc:e4: eb:a7:b8:8a:4b:11:4b:a5:21:8f:8e:29:a9:5d:f6:58:2e:6c: 2c:62:d5:b0:17:17:70:40:92:62:af:e7:af:a2:23:e8:0d:40: b3:e5:51:73:48:20:5f:a2:c7:88:3c:a4:4d:d9:2d:79:23:33: b7:56:92:97:3c:5d:04:71:a9:31:03:83:b3:7d:a9:80:ff:d7: 6a:d5:75:59:8c:47:4a:9f:65:5e:fc:f4:72:30:50:a2:a8:98: e1:b2:49:d3:b0:58:e1:b1:a3:a7:8c:bd:4c:68:c8:42:31:01: 62:f1:c0:e0:83:59:43:8f:4b:89:42:e5:3d:fe:26:2c:17:45: 91:77:21:e0:fe:6c:6e:84:49:54:22:0f:fb:2d:ff:b5:12:f3: f7:24:e8:4b:9d:07:be:18:fe:e1:b5:80:4e:b8:2a:2d:2a:f5: 02:49:37:a9:80:3d:9f:bc:e4:bb:a5:46:93:5a:02:08:39:35: f9:51:94:08:7b:ec:97:fb:af:ec:32:f9:d7:8a:0f:ce:76:65: cf:22:20:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwMzIwMTUwOTEzWhcNMjYwMzI3MTUwOTEzWjAYMRYwFAYD VQQDEw02OWJkNjMxOS1kYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTtgLUyUVvNaHPLMEQTMhI/lEXuiKMyFmLHj6CsX1jIDcrfWQKFxJTLCxt4I p+6EHOAyGePT/wDNSpcuQ7qV0vLbp69bM69yQ5u+dp4l8DwPhPuD79CEh9NB276H vnEh8tTS/TlCK51+6sDcNVPKpO2RUM2ZeJyDIpYMGS3ruMeVKQqflxwh2kpuypTu F0dHIYfZOQRoo8pRf0R6NE9DrhMRA+2uwL2ofQQe6Uo+chnL6cov7nFol16JlrK9 NKox3ERHvXd149w/Lx/fw9t71rPxlF6qml7vpRA3md5G5ELwLjCnkKCshcRnCGp0 Y19lheVzWLY48Ql6lmY0oPoFMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEgyaYTB L+Utd3RNSBsuwZvpyHYMMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASJ6026oofxliD84dqxqnJQ5LpyRxtoRpejYVgRKvhdLq1WiDyxbjx2l0Rfv/ t2zS8wAlbPzk66e4iksRS6Uhj44pqV32WC5sLGLVsBcXcECSYq/nr6Ij6A1As+VR c0ggX6LHiDykTdkteSMzt1aSlzxdBHGpMQODs32pgP/XatV1WYxHSp9lXvz0cjBQ oqiY4bJJ07BY4bGjp4y9TGjIQjEBYvHA4INZQ49LiULlPf4mLBdFkXch4P5sboRJ VCIP+y3/tRLz9yToS50Hvhj+4bWATrgqLSr1Akk3qYA9n7zku6VGk1oCCDk1+VGU CHvsl/uv7DL514oPznZlzyIgCw== -----END CERTIFICATE-----Generated at Sun Mar 22 13:35:07 2026 by rpki-client