$ rpki-client -vvf rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft File: 3qY-MQG_FZkCCkCD-hw9lkshMMA.mft (raw, json) Hash identifier: 2NRpC461AP5+T+EFfPOyJ7cBGW64G7WHXbvZrTKKNUI= Subject key identifier: 33:83:48:F4:5C:73:26:89:5A:F8:C0:D8:09:78:86:43:DB:AD:FF:08 Authority key identifier: DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 Certificate issuer: /CN=A9161857/serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft Manifest number: B8 Signing time: Wed 15 Apr 2026 06:49:38 +0000 Manifest this update: Wed 15 Apr 2026 06:49:37 +0000 Manifest next update: Wed 22 Apr 2026 06:49:37 +0000 Files and hashes: 1: 3qY-MQG_FZkCCkCD-hw9lkshMMA.crl (hash: SmJntX08Z41mZgNmlnDthueSavE6Mt3UDLzIY1C6VXU=) 2: 375E8232C13411F0A297231CC4F9AE02.roa (hash: Rcvi6yejJNqA4Zq2UKAey1CzzI6dgFF00kMlDMOnfRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161857, serialNumber=DEA63E3101BF1599020A4083FA1C3D964B2130C0 Validity Not Before: Apr 15 06:49:37 2026 GMT Not After : Apr 22 06:49:37 2026 GMT Subject: CN=69df3502-f0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:14:02:91:44:14:90:e0:70:5e:00:18:b9: 54:69:9c:9b:72:45:70:a4:e1:e6:46:ee:3f:1c:c9: 96:c3:ee:1c:a0:a7:e0:29:c8:96:d6:0c:c7:45:81: 22:ae:2c:8b:c1:e3:7a:a0:c2:f3:b4:45:4f:ef:4f: 7c:bb:43:58:26:81:31:69:3e:d7:5d:c9:76:e9:d1: 7b:64:93:ba:48:da:fb:fe:68:cd:16:31:3d:66:15: 17:35:40:a2:15:45:e1:4d:f2:9b:4f:77:56:8e:c5: a1:78:21:b9:28:14:10:1a:ab:49:1c:8a:fc:61:68: 25:f2:ee:53:c1:40:be:8a:bc:1c:f6:60:18:e0:33: 3b:3a:d7:e3:28:54:23:d0:fa:2b:df:37:16:b8:df: d4:07:81:ce:b9:13:5e:67:2d:4c:1a:a0:9c:58:1a: bb:82:a0:4b:c2:14:ee:c5:e3:97:56:df:b1:94:24: 8f:8b:00:cf:7e:33:00:51:03:21:8a:1c:53:ee:c4: d4:be:38:54:44:68:e0:5f:50:59:dc:a5:da:47:96: fe:bd:f6:f9:21:8c:a3:e8:15:ce:08:ee:cb:f0:f6: e4:12:58:62:5d:89:33:64:8d:82:bc:77:bb:43:e3: 89:37:ce:b0:32:f2:e2:c1:14:30:71:7e:87:48:02: 79:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:83:48:F4:5C:73:26:89:5A:F8:C0:D8:09:78:86:43:DB:AD:FF:08 X509v3 Authority Key Identifier: keyid:DE:A6:3E:31:01:BF:15:99:02:0A:40:83:FA:1C:3D:96:4B:21:30:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3qY-MQG_FZkCCkCD-hw9lkshMMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161857/CB14BF263C9811F0AF124B38C4F9AE02/3qY-MQG_FZkCCkCD-hw9lkshMMA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7b:58:8c:36:1b:26:53:f1:f7:74:7f:8b:1a:92:8e:aa:d1: fe:30:ab:29:32:0b:e3:fd:16:b3:98:66:4c:a8:ba:9a:87:e8: be:9f:16:6f:b3:bd:5f:61:72:b3:93:5d:93:8e:d8:85:4f:68: 37:c1:e3:42:fe:67:55:55:0b:fa:c2:3f:84:1e:eb:9a:11:0b: a5:a7:c7:19:a9:93:69:a6:ef:7a:36:96:58:9a:44:5f:24:2d: 3a:83:e7:ab:c1:74:07:07:54:28:ab:d2:84:a6:2b:45:18:e7: a6:2b:f9:dc:48:8a:1d:51:1e:4a:f2:26:90:9a:88:ee:9f:2b: 4d:04:b7:f0:82:dd:d8:50:d3:d9:fb:dc:b9:37:a4:b3:73:25: f8:33:b7:5c:f6:ba:ad:4e:56:10:5e:f2:1c:8d:b3:29:a9:5d: 82:5a:98:ff:82:b4:af:8f:6a:50:aa:b2:45:cb:24:ed:d6:d4: e2:a3:68:b0:3a:0b:db:12:17:3e:5c:e1:4f:1d:eb:7f:05:12: ed:ef:4f:bf:13:2d:6b:ce:43:c0:0c:98:0b:62:f7:c3:35:c4: 77:9d:d6:ba:e7:d2:a9:b3:9b:cb:b3:0d:ca:06:96:3d:fc:1b: a4:1c:b1:14:25:5a:99:e6:94:5b:7c:55:d5:a6:0e:dd:3b:0d: cd:39:09:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4NTcxMTAvBgNVBAUTKERFQTYzRTMxMDFCRjE1OTkwMjBBNDA4M0ZBMUMzRDk2 NEIyMTMwQzAwHhcNMjYwNDE1MDY0OTM3WhcNMjYwNDIyMDY0OTM3WjAYMRYwFAYD VQQDEw02OWRmMzUwMi1mMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdsUApFEFJDgcF4AGLlUaZybckVwpOHmRu4/HMmWw+4coKfgKciW1gzHRYEi riyLweN6oMLztEVP7098u0NYJoExaT7XXcl26dF7ZJO6SNr7/mjNFjE9ZhUXNUCi FUXhTfKbT3dWjsWheCG5KBQQGqtJHIr8YWgl8u5TwUC+irwc9mAY4DM7OtfjKFQj 0Por3zcWuN/UB4HOuRNeZy1MGqCcWBq7gqBLwhTuxeOXVt+xlCSPiwDPfjMAUQMh ihxT7sTUvjhURGjgX1BZ3KXaR5b+vfb5IYyj6BXOCO7L8PbkElhiXYkzZI2CvHe7 Q+OJN86wMvLiwRQwcX6HSAJ5iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDODSPRc cyaJWvjA2Al4hkPbrf8IMB8GA1UdIwQYMBaAFN6mPjEBvxWZAgpAg/ocPZZLITDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTg1Ny9DQjE0QkYyNjND OTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Zaa0NDa0NELWh3OWxrc2hN TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxWS1NUUdfRlprQ0NrQ0QtaHc5bGtzaE1NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTg1Ny9DQjE0QkYyNjNDOTgxMUYwQUYxMjRCMzhDNEY5QUUwMi8zcVktTVFHX0Za a0NDa0NELWh3OWxrc2hNTUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaHtYjDYbJlPx93R/ixqSjqrR/jCrKTIL4/0Ws5hmTKi6mofovp8Wb7O9X2Fy s5Ndk47YhU9oN8HjQv5nVVUL+sI/hB7rmhELpafHGamTaabvejaWWJpEXyQtOoPn q8F0BwdUKKvShKYrRRjnpiv53EiKHVEeSvImkJqI7p8rTQS38ILd2FDT2fvcuTek s3Ml+DO3XPa6rU5WEF7yHI2zKaldglqY/4K0r49qUKqyRcsk7dbU4qNosDoL2xIX PlzhTx3rfwUS7e9PvxMta85DwAyYC2L3wzXEd53WuufSqbOby7MNygaWPfwbpByx FCVameaUW3xV1aYO3TsNzTkJDg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:31:22 2026 by rpki-client