$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: lwxV7zNz7MDJQsrhUZr94PkD9rAYVFFC+s3cyttsrzQ= Subject key identifier: DE:2A:E7:3E:47:9D:69:3C:B3:BE:9D:92:9C:43:69:DE:9E:CE:20:0A Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0E39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0E2D Signing time: Mon 30 Mar 2026 17:47:30 +0000 Manifest this update: Mon 30 Mar 2026 17:47:30 +0000 Manifest next update: Mon 06 Apr 2026 17:47:30 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: gCjYYsEP8eqrir6mFo3/3Nm/KIQp5z4VxwwH45gkOgc=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: DD1ADaREQj4FZ7nnow63JObODw7KCChH9CO7F5RCGA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3641 (0xe39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Mar 30 17:47:30 2026 GMT Not After : Apr 6 17:47:30 2026 GMT Subject: CN=69cab732-b7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d1:16:99:dc:39:9c:09:bd:71:2e:c7:f5:01: 7f:4a:75:c4:bd:72:57:f9:b3:72:c4:87:ed:19:37: 0d:2d:49:0c:ac:0e:a3:c1:47:70:79:7a:00:34:f1: ce:4b:93:0b:7c:73:91:92:81:dd:a2:01:2d:67:c4: bb:7f:19:35:75:c4:8e:dc:7a:7d:02:35:16:03:e5: 55:27:c8:63:fe:7a:5c:96:77:26:3d:27:cb:11:ec: 56:c7:ce:b3:ba:d4:83:d6:97:5f:2e:33:76:6a:e2: 95:78:8f:19:ed:83:2c:59:54:af:02:95:65:46:0e: 17:c9:f5:54:bb:25:80:c8:31:fe:14:69:c3:7a:66: 99:3e:73:dd:d7:51:db:2a:72:a8:74:0f:33:bb:95: dd:12:5e:6e:5f:62:36:ae:6f:c0:86:d4:f9:c2:bc: a7:06:40:c3:88:7c:de:50:53:a5:c4:da:e6:9f:e5: a2:f8:fd:33:4a:13:92:70:55:7a:2e:8a:26:1f:a9: 7d:1b:9e:9b:aa:bf:b1:28:c6:b0:4b:30:59:25:64: 74:39:e3:7d:ef:42:45:58:ec:5f:c1:4f:bb:31:44: 11:98:f3:ae:2b:46:21:31:dc:ab:e8:52:7f:2e:e3: c7:0e:00:7e:b4:bf:2f:85:1b:9e:73:e9:8c:63:c0: bd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2A:E7:3E:47:9D:69:3C:B3:BE:9D:92:9C:43:69:DE:9E:CE:20:0A X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:36:23:30:ea:28:a2:13:e1:b8:fe:c0:c7:f4:7f:c7:43:a7: e7:8d:b4:78:70:34:76:ba:ba:6c:47:a8:eb:33:c2:0c:79:9a: 18:e6:be:cb:ac:11:38:1a:3b:93:a3:a9:19:9e:7d:49:ac:4c: 60:4b:c1:ac:a9:85:87:6b:ba:60:7e:d4:94:a2:ea:87:df:22: ba:f2:c8:f9:d0:0b:84:e6:74:c7:64:35:d2:9f:44:4e:a2:28: e2:b8:48:d1:f8:e9:86:d4:5e:02:5b:8c:3a:57:eb:9f:c5:0b: 1e:3d:a8:65:bf:c1:3e:54:4d:3c:68:a2:b9:dd:d9:92:90:ea: 76:09:33:b5:36:b3:4c:1a:bd:7b:cc:d7:fb:28:20:4c:b7:7f: ec:f8:ee:92:fe:08:76:b0:01:c4:54:b7:97:4a:79:98:f4:86: 72:9c:db:95:0b:37:ea:39:7f:3f:ae:ca:64:81:7a:55:10:da: 3c:10:6c:6f:eb:41:c4:40:f3:e3:e0:65:15:1d:33:2b:a5:78: 23:18:3a:a0:c8:ad:c3:57:76:c6:db:36:7d:43:20:11:22:d2: 62:42:aa:6f:fa:72:7b:e3:98:85:52:70:01:d2:4d:f4:2b:2f: b5:7a:ed:94:13:ae:dc:d9:89:d5:79:39:05:01:bc:63:27:ad: 37:c4:ef:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjYwMzMwMTc0NzMwWhcNMjYwNDA2MTc0NzMwWjAYMRYwFAYD VQQDEw02OWNhYjczMi1iN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9EWmdw5nAm9cS7H9QF/SnXEvXJX+bNyxIftGTcNLUkMrA6jwUdweXoANPHO S5MLfHORkoHdogEtZ8S7fxk1dcSO3Hp9AjUWA+VVJ8hj/npclncmPSfLEexWx86z utSD1pdfLjN2auKVeI8Z7YMsWVSvApVlRg4XyfVUuyWAyDH+FGnDemaZPnPd11Hb KnKodA8zu5XdEl5uX2I2rm/AhtT5wrynBkDDiHzeUFOlxNrmn+Wi+P0zShOScFV6 LoomH6l9G56bqr+xKMawSzBZJWR0OeN970JFWOxfwU+7MUQRmPOuK0YhMdyr6FJ/ LuPHDgB+tL8vhRuec+mMY8C9NwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN4q5z5H nWk8s76dkpxDad6eziAKMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGTYjMOooohPhuP7Ax/R/x0On5420eHA0drq6bEeo6zPCDHmaGOa+y6wROBo7 k6OpGZ59SaxMYEvBrKmFh2u6YH7UlKLqh98iuvLI+dALhOZ0x2Q10p9ETqIo4rhI 0fjphtReAluMOlfrn8ULHj2oZb/BPlRNPGiiud3ZkpDqdgkztTazTBq9e8zX+ygg TLd/7Pjukv4IdrABxFS3l0p5mPSGcpzblQs36jl/P67KZIF6VRDaPBBsb+tBxEDz 4+BlFR0zK6V4Ixg6oMitw1d2xts2fUMgESLSYkKqb/pye+OYhVJwAdJN9CsvtXrt lBOu3NmJ1Xk5BQG8YyetN8Tvzg== -----END CERTIFICATE-----Generated at Mon Mar 30 22:56:15 2026 by rpki-client