$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: 25/aL1Y5SDQAsGVpL5bE7Agsuhgwr+tS5JxmVi3Z3Lg= Subject key identifier: CD:E3:D2:8A:8C:F1:85:34:81:FE:91:61:93:44:23:B7:77:B8:D0:E1 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 3541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3530 Signing time: Thu 16 Apr 2026 15:11:17 +0000 Manifest this update: Thu 16 Apr 2026 15:11:16 +0000 Manifest next update: Thu 23 Apr 2026 15:11:16 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: EEQoxJM6c5qYCARVsW/XMxgnXnVouv5Tl3OnuUA9vaE=) 2: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: +F9H9L+0+ICkfZDERWmYJJTvYvZTjlwlv2iEB9U5xD8=) 3: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: S+2nZ/LwiFl9lCGr/q1pgYuQMM2ksAuYCF9P9dTV9cI=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: oWvONdzVtdNZzN0GXwvLtJk1cQSVlxMNqPZEYE5ztwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753, serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Apr 16 15:11:16 2026 GMT Not After : Apr 23 15:11:16 2026 GMT Subject: CN=69e0fc15-8bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:77:aa:f2:f4:4b:72:c3:b4:94:1e:8c:52:a0: c0:ef:a3:15:e8:39:fd:e3:a0:c8:1c:68:83:ee:bf: ba:c6:bd:62:fd:9d:f1:ae:40:02:d7:da:e7:67:b8: eb:dc:ea:4f:0a:f7:8e:36:05:18:b9:49:68:66:ab: de:39:02:2f:54:5c:13:81:e3:4e:c7:79:12:61:95: 0a:f5:fa:1a:89:20:0e:06:1d:05:14:66:ec:44:88: c1:44:9e:15:29:ad:70:fe:0b:b0:5c:8f:98:2a:02: ad:e0:17:f0:30:ff:b6:bf:20:78:8c:2b:f4:b2:9b: 08:d8:82:2b:70:97:41:bf:88:08:af:0d:f7:99:5a: 51:b1:2d:e0:eb:8c:f3:57:f2:17:1f:2f:7b:60:8d: 02:c6:d3:be:52:1b:dc:0c:c0:88:5d:d8:47:ae:73: 10:ee:d2:c0:18:2e:33:77:3d:c6:b7:90:00:ce:f9: 43:4a:65:fe:6b:e2:38:7b:91:b9:af:45:49:33:56: 23:68:d6:ec:71:5d:a9:6b:9a:48:d4:c8:d7:9a:3d: 97:c2:55:2e:1a:81:23:07:29:1e:04:68:ff:e7:26: b5:6c:de:30:02:fd:2b:49:76:7c:6c:72:87:7a:db: f6:a5:34:e7:46:c9:e9:01:1c:60:b4:d2:7d:f2:48: 99:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E3:D2:8A:8C:F1:85:34:81:FE:91:61:93:44:23:B7:77:B8:D0:E1 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:80:ae:01:d5:d9:bf:9b:f6:2c:f1:83:90:c7:79:89:eb:a6: 27:cf:b6:88:82:bc:27:55:c5:6a:3f:ab:6f:f6:c1:98:74:d0: 52:31:ae:89:94:12:66:a1:95:75:d0:b6:f4:08:0c:ab:9f:50: dc:ab:fd:77:1f:27:4b:bd:96:ce:6b:fc:e3:eb:0b:bd:70:b8: 6c:a9:14:a0:87:cd:01:24:e4:bf:2b:bd:37:aa:32:40:26:a7: 68:e2:6e:26:6a:20:45:e4:65:df:e1:10:73:9a:6a:e3:0f:23: 11:61:9d:c2:d4:af:3f:1a:8a:a4:cf:1d:04:3c:e7:c7:13:be: 9b:8c:d6:a2:82:33:27:cb:4e:26:b8:75:c0:56:33:3e:94:9a: c1:41:7c:19:77:29:39:4d:7f:dd:5b:7b:da:04:f7:37:cd:ff: 2f:47:e5:c9:4c:b1:b1:8b:4f:67:42:78:e8:60:22:39:98:4f: 74:5e:8a:17:0d:da:4c:57:60:86:f2:0e:f9:76:1f:ba:2e:32: 7f:8a:bd:b4:65:cb:b1:d7:df:55:db:1d:f4:75:83:a1:50:b9: 0c:c6:f9:94:f7:25:cb:69:e3:1f:94:e2:a6:cc:7e:9a:9a:fc: 0a:a7:6a:cd:5e:8e:e9:89:4c:9c:8b:30:67:d8:5f:3c:75:62: 69:2e:ae:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjYwNDE2MTUxMTE2WhcNMjYwNDIzMTUxMTE2WjAYMRYwFAYD VQQDEw02OWUwZmMxNS04YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA93eq8vRLcsO0lB6MUqDA76MV6Dn946DIHGiD7r+6xr1i/Z3xrkAC19rnZ7jr 3OpPCveONgUYuUloZqveOQIvVFwTgeNOx3kSYZUK9foaiSAOBh0FFGbsRIjBRJ4V Ka1w/guwXI+YKgKt4BfwMP+2vyB4jCv0spsI2IIrcJdBv4gIrw33mVpRsS3g64zz V/IXHy97YI0CxtO+UhvcDMCIXdhHrnMQ7tLAGC4zdz3Gt5AAzvlDSmX+a+I4e5G5 r0VJM1YjaNbscV2pa5pI1MjXmj2XwlUuGoEjBykeBGj/5ya1bN4wAv0rSXZ8bHKH etv2pTTnRsnpARxgtNJ98kiZHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3j0oqM 8YU0gf6RYZNEI7d3uNDhMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJYCuAdXZv5v2LPGDkMd5ieumJ8+2iIK8J1XFaj+rb/bBmHTQUjGuiZQSZqGV ddC29AgMq59Q3Kv9dx8nS72Wzmv84+sLvXC4bKkUoIfNASTkvyu9N6oyQCanaOJu JmogReRl3+EQc5pq4w8jEWGdwtSvPxqKpM8dBDznxxO+m4zWooIzJ8tOJrh1wFYz PpSawUF8GXcpOU1/3Vt72gT3N83/L0flyUyxsYtPZ0J46GAiOZhPdF6KFw3aTFdg hvIO+XYfui4yf4q9tGXLsdffVdsd9HWDoVC5DMb5lPcly2njH5Tipsx+mpr8Cqdq zV6O6YlMnIswZ9hfPHViaS6uiw== -----END CERTIFICATE-----Generated at Fri Apr 17 16:43:18 2026 by rpki-client