$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: QuiOHdZyYg6s4PRCkOTf9mpxrGIFKeJunjPhpMUAICc= Subject key identifier: BD:0E:42:5D:81:2D:4E:B8:DC:94:DA:72:91:5C:20:2E:BF:0F:EE:A6 Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0F93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F81 Signing time: Thu 16 Apr 2026 17:27:52 +0000 Manifest this update: Thu 16 Apr 2026 17:27:51 +0000 Manifest next update: Thu 23 Apr 2026 17:27:51 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: tG8pL1NgCEUKAUC/yQo0koA4pzr5nrrTNMeoGKAqVDE=) 2: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: M1O0TrYvAUms1ssHPRAoRq4bhn4VdK0pL3BB4ocE2jg=) 3: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: rVqpkfIia95fH7hrm3/K25j3N5yZHWL25KnyFo0eRas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3987 (0xf93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Apr 16 17:27:51 2026 GMT Not After : Apr 23 17:27:51 2026 GMT Subject: CN=69e11c18-7db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:38:70:c5:a5:d4:26:06:38:5a:90:88:86: ea:02:ea:30:6f:33:ba:f6:d5:f1:47:0a:9f:2d:65: 40:2f:f6:c4:dd:f6:21:34:48:f1:d0:c3:e6:85:b1: e0:9d:bb:e3:ba:b1:fb:3e:53:ca:a3:34:3f:1d:05: 20:70:e0:83:5d:d2:dc:b3:28:b4:55:d2:2f:72:54: 1d:53:d9:71:a6:3e:e8:0a:c0:2b:c3:32:94:82:24: 02:65:81:a6:75:b1:dd:e8:2b:8f:86:1c:14:bb:94: 70:dc:1a:3d:93:99:db:e7:79:53:ba:5b:4d:97:b0: ff:a6:c1:a4:0b:4c:0f:a9:29:02:cb:36:86:7b:43: c2:5b:a4:a8:ed:bc:62:d7:80:02:98:a3:6b:8d:70: 26:0b:c3:72:1f:f2:36:78:a7:59:c4:85:48:80:ce: 6f:86:06:3c:b2:a0:9d:13:ff:84:39:70:ee:04:2d: fc:27:4b:8c:23:40:48:0c:d7:31:4e:2e:62:41:47: 9c:09:2c:79:89:a5:f2:8d:1c:4f:89:49:0e:a8:ec: 76:9c:15:12:0d:f0:92:c5:7d:ff:f2:71:c5:4b:b5: 4f:2f:83:d4:ad:9d:8d:2d:be:72:14:6c:8f:59:76: 38:c3:fd:e3:81:d7:b1:ef:72:d5:f7:4c:a7:93:0f: bf:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0E:42:5D:81:2D:4E:B8:DC:94:DA:72:91:5C:20:2E:BF:0F:EE:A6 X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:af:6b:1e:f4:4b:6d:93:2e:9a:b2:d0:03:d2:1e:8b:8d:1c: e3:0c:03:c8:b9:db:fb:12:11:6b:55:d3:2b:48:40:0f:ee:53: dd:13:df:8f:5e:81:df:2f:b5:27:b6:2e:2a:2e:77:3c:71:be: aa:1c:df:17:1c:2b:ac:42:49:0d:0a:8e:3a:85:27:2a:b3:04: 86:31:7b:28:e1:be:a0:36:f3:13:48:18:5d:16:72:b7:28:9f: af:f6:84:a2:d2:cb:7a:1c:f9:34:5a:77:ca:4d:35:39:dc:0d: 04:7e:4c:cb:40:51:e8:1b:d5:72:d1:ea:d3:01:81:40:d8:df: 03:40:c9:c6:a5:1a:98:24:24:22:c0:0d:ab:51:61:59:77:fa: ad:6a:d8:e1:ba:14:7f:9c:8c:00:a0:db:9b:82:7d:b6:1f:70: 50:14:d8:db:25:ed:07:d2:c6:6f:57:59:51:a5:fd:a1:28:df: 4a:c1:e3:7f:1d:af:bb:e4:fd:69:05:0d:6a:1e:1d:d8:0a:f6: cf:86:86:99:96:9d:2f:17:55:32:b3:a1:16:39:01:55:3e:92: 57:2c:b3:d4:b4:27:d8:63:78:de:9e:84:0d:36:00:ef:f9:47: b6:db:84:47:87:62:ce:8f:b9:9a:21:56:ef:74:9f:d8:2e:56: 89:f3:1b:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwNDE2MTcyNzUxWhcNMjYwNDIzMTcyNzUxWjAYMRYwFAYD VQQDEw02OWUxMWMxOC03ZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1o4cMWl1CYGOFqQiIbqAuowbzO69tXxRwqfLWVAL/bE3fYhNEjx0MPmhbHg nbvjurH7PlPKozQ/HQUgcOCDXdLcsyi0VdIvclQdU9lxpj7oCsArwzKUgiQCZYGm dbHd6CuPhhwUu5Rw3Bo9k5nb53lTultNl7D/psGkC0wPqSkCyzaGe0PCW6So7bxi 14ACmKNrjXAmC8NyH/I2eKdZxIVIgM5vhgY8sqCdE/+EOXDuBC38J0uMI0BIDNcx Ti5iQUecCSx5iaXyjRxPiUkOqOx2nBUSDfCSxX3/8nHFS7VPL4PUrZ2NLb5yFGyP WXY4w/3jgdex73LV90ynkw+/ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0OQl2B LU643JTacpFcIC6/D+6mMB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANa9rHvRLbZMumrLQA9Iei40c4wwDyLnb+xIRa1XTK0hAD+5T3RPfj16B3y+1 J7YuKi53PHG+qhzfFxwrrEJJDQqOOoUnKrMEhjF7KOG+oDbzE0gYXRZytyifr/aE otLLehz5NFp3yk01OdwNBH5My0BR6BvVctHq0wGBQNjfA0DJxqUamCQkIsANq1Fh WXf6rWrY4boUf5yMAKDbm4J9th9wUBTY2yXtB9LGb1dZUaX9oSjfSsHjfx2vu+T9 aQUNah4d2Ar2z4aGmZadLxdVMrOhFjkBVT6SVyyz1LQn2GN43p6EDTYA7/lHttuE R4dizo+5miFW73Sf2C5WifMbqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:15:58 2026 by rpki-client