$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: w9pX5lNvtWK/Livnq1nbCLa6knQ0ygPfo9gQ7tExShw= Subject key identifier: 37:7B:D1:2F:54:24:BB:5D:7A:55:D8:D1:07:E2:F9:4D:74:FD:57:F4 Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0A91 Signing time: Thu 16 Apr 2026 19:28:40 +0000 Manifest this update: Thu 16 Apr 2026 19:28:40 +0000 Manifest next update: Thu 23 Apr 2026 19:28:40 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: aOgiXPZeb3dw3vfC59FTP4hS+khiYpgq05w056z2lBs=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: pjTWlhBU9uLdZ8Pokz/j8Myvf4pRfYFG3vHjcrWT10w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Apr 16 19:28:40 2026 GMT Not After : Apr 23 19:28:40 2026 GMT Subject: CN=69e13868-e06a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:f6:f8:cf:e0:d2:8a:70:71:d5:2c:0a:5e: 37:4a:59:61:ce:c3:48:3d:96:16:b1:f4:6a:0e:0b: 89:a6:16:2a:20:7e:32:0c:17:69:30:2a:5a:03:0d: b4:02:90:df:40:8f:9c:1e:5b:a5:75:d3:0a:48:a0: 52:64:0c:40:99:24:bf:9c:a3:35:e9:f0:02:65:27: e7:c5:27:a4:7b:90:90:d3:e4:78:8d:2d:e2:23:61: 36:42:f1:49:14:33:cb:85:b9:a0:c2:0d:ef:44:3a: 0c:f8:40:f1:17:0f:f9:cd:86:2f:e6:b0:77:c7:61: 10:49:c8:3a:de:41:e1:b1:6c:6c:75:a4:ef:92:bd: 7d:31:32:2c:20:d9:d1:19:67:a5:05:a1:25:4d:eb: a8:36:d9:e9:29:6a:10:02:8e:c0:89:44:af:be:4a: 0c:d5:96:91:4f:c1:52:3f:14:1b:11:21:76:db:ae: 03:9f:e6:91:c7:bc:b6:4e:be:06:34:64:6a:4a:44: b4:e2:e4:d6:e7:94:75:6b:c8:71:a3:8a:6e:2d:b3: 28:1b:44:df:d0:4f:26:a2:0a:61:ab:99:8b:8e:55: b2:d2:6d:9a:de:fb:2e:4a:34:93:42:54:19:37:9c: 7f:e1:bc:09:d4:0d:e4:b5:81:8a:c9:17:47:cd:25: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7B:D1:2F:54:24:BB:5D:7A:55:D8:D1:07:E2:F9:4D:74:FD:57:F4 X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:da:a2:0b:2e:52:4f:ff:c4:13:17:98:6f:2a:80:f0:b9:25: 9c:8e:b1:e8:69:b1:5c:f0:67:e1:b2:33:b6:0d:0c:bd:34:e2: 64:fa:3f:fd:06:98:c2:4f:4e:96:5e:7d:c1:83:55:df:53:39: b2:d8:66:ee:b1:06:46:3e:a4:60:a3:c5:37:74:b1:8f:86:c0: de:95:6b:dc:01:ed:2f:a4:af:ad:77:60:b5:61:79:4f:f3:f0: df:3b:76:66:62:b9:de:cc:6a:34:f0:57:ea:a9:c2:14:1b:33: d0:06:64:6b:4b:2b:63:97:e5:81:53:36:3a:31:04:b0:a8:d3: 42:4e:31:18:31:f5:f0:ae:47:a9:4f:72:13:05:7d:61:bb:5f: 17:99:8c:08:23:9e:cd:68:68:44:9d:dd:55:eb:dd:b7:59:5f: 3b:63:38:6f:bb:77:e9:44:9f:96:87:08:c7:73:65:3a:61:61: 0b:4b:25:8b:f6:b8:e0:2d:77:27:90:f4:4a:6f:47:f9:b7:b1: 7e:9f:dc:e9:60:5e:78:ef:f8:e5:db:73:9a:a2:75:71:a0:c9: c0:38:aa:f4:6b:52:51:2c:b1:a8:85:49:a6:95:dd:d5:57:08: 91:36:33:d5:42:62:33:59:6e:5d:ab:9b:b7:dc:b0:04:21:a8: 0f:4a:3c:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjYwNDE2MTkyODQwWhcNMjYwNDIzMTkyODQwWjAYMRYwFAYD VQQDEw02OWUxMzg2OC1lMDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFP2+M/g0opwcdUsCl43SllhzsNIPZYWsfRqDguJphYqIH4yDBdpMCpaAw20 ApDfQI+cHlulddMKSKBSZAxAmSS/nKM16fACZSfnxSeke5CQ0+R4jS3iI2E2QvFJ FDPLhbmgwg3vRDoM+EDxFw/5zYYv5rB3x2EQScg63kHhsWxsdaTvkr19MTIsINnR GWelBaElTeuoNtnpKWoQAo7AiUSvvkoM1ZaRT8FSPxQbESF2264Dn+aRx7y2Tr4G NGRqSkS04uTW55R1a8hxo4puLbMoG0Tf0E8mogphq5mLjlWy0m2a3vsuSjSTQlQZ N5x/4bwJ1A3ktYGKyRdHzSXvUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDd70S9U JLtdelXY0Qfi+U10/Vf0MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh9qiCy5ST//EExeYbyqA8LklnI6x6GmxXPBn4bIztg0MvTTiZPo//QaYwk9O ll59wYNV31M5sthm7rEGRj6kYKPFN3Sxj4bA3pVr3AHtL6SvrXdgtWF5T/Pw3zt2 ZmK53sxqNPBX6qnCFBsz0AZka0srY5flgVM2OjEEsKjTQk4xGDH18K5HqU9yEwV9 YbtfF5mMCCOezWhoRJ3dVevdt1lfO2M4b7t36USflocIx3NlOmFhC0sli/a44C13 J5D0Sm9H+bexfp/c6WBeeO/45dtzmqJ1caDJwDiq9GtSUSyxqIVJppXd1VcIkTYz 1UJiM1luXaubt9ywBCGoD0o8SA== -----END CERTIFICATE-----Generated at Fri Apr 17 20:19:17 2026 by rpki-client