$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: QkGXHDWpQhpZ/5Ju/Btr9ILQ6QF1aIctPEu8yAsZIk0= Subject key identifier: CA:2D:2C:67:FA:E2:54:79:44:0A:AE:17:49:95:6B:1D:71:03:40:85 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0CA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0C95 Signing time: Thu 16 Apr 2026 18:29:29 +0000 Manifest this update: Thu 16 Apr 2026 18:29:28 +0000 Manifest next update: Thu 23 Apr 2026 18:29:28 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: AUSQo/H3LfS7gKfm+7qWp3pZKNxb7ojcd5A0PEZZnrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Apr 16 18:29:28 2026 GMT Not After : Apr 23 18:29:28 2026 GMT Subject: CN=69e12a89-4c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6c:82:12:b4:8e:56:51:25:3f:da:2e:43:2b: f3:14:49:40:f0:4a:15:42:cc:58:a3:26:77:b3:96: cb:26:f8:85:62:47:7c:f7:8e:34:8e:c7:c1:7b:16: 4f:f9:1a:a8:61:25:d0:87:f7:83:56:ad:94:44:f9: c0:f4:5e:4f:3c:73:01:94:b0:20:1c:4b:57:21:73: 42:5f:6b:49:35:8c:bb:52:82:98:f7:6b:77:a1:a0: 68:b7:68:1a:ae:7c:f0:08:79:d5:95:62:26:68:ff: b5:da:96:62:4b:6b:03:2d:28:8d:e0:d7:ba:ae:e4: 3e:6d:ad:53:f8:6a:cb:71:53:83:cb:ed:89:e6:0e: 97:75:d4:5d:04:df:e2:76:44:a2:49:22:31:0e:7f: 2f:e5:24:dc:d2:a9:0a:23:5f:b6:88:6d:b4:25:db: 90:42:38:ce:61:bc:2b:c2:fb:80:a1:67:58:be:51: 4a:d4:e1:62:70:5b:e4:b9:53:24:c5:df:fd:51:15: 0d:32:8f:da:eb:23:0b:8c:ea:b2:07:14:7c:bd:52: e9:f4:a0:4a:4b:be:97:6d:0b:6f:aa:b8:fe:3d:6a: bf:3f:c0:c4:a7:60:b1:e6:91:24:71:ff:b4:cb:f5: b1:1d:0d:98:bc:41:84:8b:ed:10:77:bb:2c:ba:3f: ce:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2D:2C:67:FA:E2:54:79:44:0A:AE:17:49:95:6B:1D:71:03:40:85 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:6d:89:30:7e:21:e9:b0:5f:9b:25:d4:71:0b:11:dd:ab:30: ba:7d:cd:a7:38:5c:4b:76:bb:a0:92:53:a7:5a:53:7d:21:12: cd:06:3f:88:f7:ef:7f:4f:a8:58:d0:3e:91:20:0c:99:2b:5b: 5a:4f:7b:d3:2e:14:9d:b4:25:13:8d:4f:e2:42:c7:23:e0:bc: 21:d3:30:1d:61:23:bd:85:e1:f0:c8:d8:f0:99:c2:6b:31:18: c2:a8:30:82:ca:09:2e:3d:ce:2d:55:c6:0a:d0:41:07:05:92: f2:09:5f:09:07:6f:f5:89:cf:b6:c8:af:e4:82:38:61:e7:a4: 14:8a:8f:b8:cf:35:9f:e4:38:36:68:77:8f:fb:ab:56:de:e3: 92:fc:ff:08:84:e4:0f:03:2f:0f:17:f0:0e:70:35:7b:ea:93: cc:34:f5:c5:23:25:fe:a4:1f:cd:39:93:83:fb:8a:d1:5f:9b: 6c:05:65:88:5d:b7:74:ad:66:9d:e7:45:57:6f:3e:c5:53:36: d9:9e:17:e9:23:0f:a4:37:68:e1:34:86:0c:5e:92:4a:8f:70: ff:c2:87:b6:6f:fa:14:ba:2f:20:7c:47:ae:b0:fa:91:78:4e: d6:5e:e3:2a:76:34:ab:9d:5b:53:17:49:5a:c1:fb:88:42:81: bf:ff:18:0b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjYwNDE2MTgyOTI4WhcNMjYwNDIzMTgyOTI4WjAYMRYwFAYD VQQDEw02OWUxMmE4OS00YzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGyCErSOVlElP9ouQyvzFElA8EoVQsxYoyZ3s5bLJviFYkd89440jsfBexZP +RqoYSXQh/eDVq2URPnA9F5PPHMBlLAgHEtXIXNCX2tJNYy7UoKY92t3oaBot2ga rnzwCHnVlWImaP+12pZiS2sDLSiN4Ne6ruQ+ba1T+GrLcVODy+2J5g6XddRdBN/i dkSiSSIxDn8v5STc0qkKI1+2iG20JduQQjjOYbwrwvuAoWdYvlFK1OFicFvkuVMk xd/9URUNMo/a6yMLjOqyBxR8vVLp9KBKS76XbQtvqrj+PWq/P8DEp2Cx5pEkcf+0 y/WxHQ2YvEGEi+0Qd7ssuj/OVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMotLGf6 4lR5RAquF0mVax1xA0CFMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh22JMH4h6bBfmyXUcQsR3aswun3NpzhcS3a7oJJTp1pTfSESzQY/iPfvf0+o WNA+kSAMmStbWk970y4UnbQlE41P4kLHI+C8IdMwHWEjvYXh8MjY8JnCazEYwqgw gsoJLj3OLVXGCtBBBwWS8glfCQdv9YnPtsiv5II4YeekFIqPuM81n+Q4Nmh3j/ur Vt7jkvz/CITkDwMvDxfwDnA1e+qTzDT1xSMl/qQfzTmTg/uK0V+bbAVliF23dK1m nedFV28+xVM22Z4X6SMPpDdo4TSGDF6SSo9w/8KHtm/6FLovIHxHrrD6kXhO1l7j KnY0q51bUxdJWsH7iEKBv/8YCw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:06:14 2026 by rpki-client