$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: iiFs5ZoYCQqZkiAO9LlFk85wwThk96jTGJEbRW8Q+jo= Subject key identifier: 68:96:5E:3B:9F:D0:8A:C7:38:94:6E:5D:A0:7C:A3:B3:53:E9:F9:1D Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0C94 Signing time: Thu 16 Apr 2026 18:28:43 +0000 Manifest this update: Thu 16 Apr 2026 18:28:42 +0000 Manifest next update: Thu 23 Apr 2026 18:28:42 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: oLQumdh+6FxsCsE/EzHVM7BGwcs7GRuM/BiMaWca6x0=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: jtNA4DSxailzGixhCLBv/XtkHLhwf6qcSCB3BjEuN/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Apr 16 18:28:42 2026 GMT Not After : Apr 23 18:28:42 2026 GMT Subject: CN=69e12a5b-83c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:37:67:e1:81:de:d1:1d:12:91:ee:f9:b1:e5: 32:08:b6:a2:66:7f:10:09:ea:e0:4e:70:85:28:ca: 65:92:06:4a:4d:21:63:6b:33:59:b7:aa:a5:aa:e2: 4c:8c:7f:9e:e2:77:14:2d:0a:ca:4b:7c:d4:f6:ee: e6:21:50:19:4c:68:be:27:56:7a:71:2a:0b:f1:f9: fb:70:f6:66:6f:85:4f:c0:da:65:0c:df:3e:e0:15: 85:49:27:c4:fd:ba:1f:15:d0:f5:1a:c9:02:cc:ec: 70:f2:e7:ab:8c:bf:6c:58:56:b2:2c:bd:38:10:98: 55:c8:74:e4:40:a7:cc:b8:df:2f:a1:88:ea:35:d7: 01:ca:c4:e2:cb:27:5a:88:c4:2e:cb:10:29:9f:81: b8:69:b5:85:08:fd:8d:4f:2b:75:96:a4:5d:33:b3: f8:0c:fb:72:02:43:7e:b8:3d:27:0b:aa:4a:49:41: 05:27:8a:dc:8d:34:16:04:13:08:0e:a3:53:2b:d4: 5e:b7:25:b4:88:86:7e:aa:c8:82:4f:f0:7b:a6:7e: a6:3e:30:1d:3a:57:d2:a2:ce:b9:cd:63:61:6a:84: fb:25:0c:39:77:2e:8e:4b:1e:1b:5e:e9:f9:50:6d: 39:58:47:3e:49:f4:16:a5:20:75:8a:7f:0d:f2:91: 51:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:96:5E:3B:9F:D0:8A:C7:38:94:6E:5D:A0:7C:A3:B3:53:E9:F9:1D X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:2e:d5:b2:93:fd:0b:90:c8:7d:79:02:26:3e:fc:a9:fb:f4: 0d:4b:f5:a0:97:66:79:71:0e:2a:c1:8f:a2:b5:73:b7:7c:d1: a5:ec:e7:d7:13:a8:19:f3:c7:b1:48:70:55:56:86:81:4d:57: 00:8e:d9:a9:7b:9d:a6:7a:52:e3:84:d5:38:55:99:c3:86:fe: 78:79:ad:d1:67:71:32:87:42:f9:88:ea:6e:c3:d7:29:79:d6: 3c:2c:1e:6f:43:33:e5:fc:59:a0:cb:7f:1f:28:ce:31:c9:04: 92:f7:6a:58:83:8a:69:8a:e0:f9:95:17:cd:58:8e:c3:70:4f: 66:92:75:6d:e9:7b:14:40:8a:9b:13:37:6e:87:33:57:61:ea: 58:dc:e7:bd:7a:53:82:38:d2:fa:5f:23:b6:d9:20:53:dc:b3: ba:ec:6d:3d:44:a7:c6:8b:b2:3a:ea:0a:f0:44:71:b7:2a:a5: 75:ac:2d:b6:ce:a7:bf:8f:ff:c0:8f:aa:af:38:0f:46:fd:8c: b8:55:8c:d9:02:bb:b7:1d:e5:65:5b:da:e4:e0:a5:86:79:11: b8:2b:fe:76:21:6b:e7:87:15:b7:59:5d:9e:4f:f3:e0:64:fe: db:cb:67:11:03:9f:8a:bf:85:fc:22:19:5e:ab:2f:c6:cc:62: 2f:cc:89:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjYwNDE2MTgyODQyWhcNMjYwNDIzMTgyODQyWjAYMRYwFAYD VQQDEw02OWUxMmE1Yi04M2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Tdn4YHe0R0Ske75seUyCLaiZn8QCergTnCFKMplkgZKTSFjazNZt6qlquJM jH+e4ncULQrKS3zU9u7mIVAZTGi+J1Z6cSoL8fn7cPZmb4VPwNplDN8+4BWFSSfE /bofFdD1GskCzOxw8uerjL9sWFayLL04EJhVyHTkQKfMuN8voYjqNdcBysTiyyda iMQuyxApn4G4abWFCP2NTyt1lqRdM7P4DPtyAkN+uD0nC6pKSUEFJ4rcjTQWBBMI DqNTK9RetyW0iIZ+qsiCT/B7pn6mPjAdOlfSos65zWNhaoT7JQw5dy6OSx4bXun5 UG05WEc+SfQWpSB1in8N8pFR6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGiWXjuf 0IrHOJRuXaB8o7NT6fkdMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALS7VspP9C5DIfXkCJj78qfv0DUv1oJdmeXEOKsGPorVzt3zRpezn1xOoGfPH sUhwVVaGgU1XAI7ZqXudpnpS44TVOFWZw4b+eHmt0WdxModC+YjqbsPXKXnWPCwe b0Mz5fxZoMt/HyjOMckEkvdqWIOKaYrg+ZUXzViOw3BPZpJ1bel7FECKmxM3bocz V2HqWNznvXpTgjjS+l8jttkgU9yzuuxtPUSnxouyOuoK8ERxtyqldawtts6nv4// wI+qrzgPRv2MuFWM2QK7tx3lZVva5OClhnkRuCv+diFr54cVt1ldnk/z4GT+28tn EQOfir+F/CIZXqsvxsxiL8yJmA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:46:13 2026 by rpki-client