$ rpki-client -vvf rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.mft File: szF8Z90Vsor6OYAEwZ0deLG_3oY.mft (raw, json) Hash identifier: IRT6EY/ZEEP2sUhenKlaQEZ0bEIHWcDg5ODYFpu6xBQ= Subject key identifier: E9:3A:A4:46:E9:D2:0B:5C:6E:B6:4F:A9:99:62:88:DC:7B:5B:D5:19 Authority key identifier: B3:31:7C:67:DD:15:B2:8A:FA:39:80:04:C1:9D:1D:78:B1:BF:DE:86 Certificate issuer: /CN=A91736F5/serialNumber=B3317C67DD15B28AFA398004C19D1D78B1BFDE86 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/szF8Z90Vsor6OYAEwZ0deLG_3oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.mft Manifest number: 3A Signing time: Fri 17 Apr 2026 08:14:38 +0000 Manifest this update: Fri 17 Apr 2026 08:14:38 +0000 Manifest next update: Fri 24 Apr 2026 08:14:38 +0000 Files and hashes: 1: szF8Z90Vsor6OYAEwZ0deLG_3oY.crl (hash: YMvkuO8wLKTkX9FK7JANHtnJbhpBCI9vMkUuTAug8RY=) 2: DF325558E6EE11F09FA64894636F56BC.roa (hash: vEOW1RXhvztzL2HV82vJS53AY6+1wricRf5vvLZfhIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.crl rsync://rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/szF8Z90Vsor6OYAEwZ0deLG_3oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736F5, serialNumber=B3317C67DD15B28AFA398004C19D1D78B1BFDE86 Validity Not Before: Apr 17 08:14:38 2026 GMT Not After : Apr 24 08:14:38 2026 GMT Subject: CN=69e1ebee-771a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:45:b1:07:29:ee:d8:22:f6:d5:48:a9:a7:12: 00:16:1e:36:68:d3:f9:6d:43:39:f1:f0:63:56:c2: f8:5d:24:b4:8a:4b:d3:c0:d5:35:aa:fe:2e:d8:b5: 26:f7:54:ce:87:38:2f:90:f5:5b:1a:d4:f3:f7:5a: ce:76:9a:e4:5e:34:e3:cf:37:84:64:aa:a8:c8:b2: 72:11:e0:9e:e2:31:d1:e7:c0:00:b5:67:2d:66:12: 77:5f:51:09:6d:ba:1b:ea:35:40:df:11:34:ab:f8: 87:d5:18:b6:af:67:0e:4a:f4:f3:d5:0e:e8:12:ab: 40:bb:07:a7:ed:1d:a2:89:e6:46:cd:50:74:4b:ff: b1:c1:cd:5c:b7:a9:b5:65:ed:df:4f:e9:4e:ec:7a: 43:dd:d9:7c:6f:a4:a2:44:73:4c:23:be:b7:4f:5f: 3f:3a:0a:b4:3e:c6:a4:2c:83:ed:3c:6d:9d:f7:8f: 1f:82:05:4e:5f:c6:68:2f:16:4a:f9:0c:e5:a1:60: b0:90:56:da:c4:b6:ff:71:89:8f:de:29:ff:cd:f8: f2:63:37:50:a2:0e:44:51:14:d2:8c:b0:14:d3:86: 86:ab:5c:2d:2c:8b:f3:21:3a:89:8f:6b:99:be:28: 63:dd:ed:57:dc:08:2c:eb:f9:34:e8:b5:0b:b9:e6: 0e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3A:A4:46:E9:D2:0B:5C:6E:B6:4F:A9:99:62:88:DC:7B:5B:D5:19 X509v3 Authority Key Identifier: keyid:B3:31:7C:67:DD:15:B2:8A:FA:39:80:04:C1:9D:1D:78:B1:BF:DE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/szF8Z90Vsor6OYAEwZ0deLG_3oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736F5/2A50B648E6EE11F0AD095792636F56BC/szF8Z90Vsor6OYAEwZ0deLG_3oY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:25:9f:92:60:b4:16:bc:53:22:74:9a:d3:ee:91:27:6c:09: 58:e6:db:ea:96:1d:98:6f:48:f3:e8:12:2e:7d:2b:57:bf:89: de:7f:0b:f9:58:cd:47:94:e9:2e:81:d1:4a:4d:05:87:79:94: 53:fb:cd:f0:9d:10:c1:1b:45:4a:32:10:de:6e:03:b9:95:a2: da:63:20:8b:35:e8:5c:7d:2a:82:12:c3:41:a9:91:6c:5a:d2: 4e:34:be:df:22:df:16:7a:e5:ac:d4:40:da:83:e0:df:9a:c7: 40:5a:1a:7c:7f:6e:5c:5d:7c:be:39:8e:04:9b:35:5b:48:58: e3:16:d4:b8:7b:3c:2e:1e:45:d4:49:61:be:70:9b:0a:68:02: ce:ab:68:87:38:e4:14:73:3a:23:81:7e:ab:5f:9c:b7:0e:87: cc:0e:e5:46:df:a8:62:20:1c:c3:87:93:47:f4:43:a2:f6:b1: 4e:19:ba:60:f9:0b:ae:e7:2b:c7:74:19:d2:df:f3:68:4d:20: ba:5d:cd:ee:f2:85:5b:03:38:7c:7d:ca:d6:bf:6b:ff:4f:ae: 75:32:51:f4:01:2f:36:fb:71:4c:b7:4f:d5:da:6b:69:a9:fb: 43:ff:b1:80:41:f3:18:be:d3:2c:8e:9b:b0:f9:57:7b:79:3b: 05:16:b5:43 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzZGNTExMC8GA1UEBRMoQjMzMTdDNjdERDE1QjI4QUZBMzk4MDA0QzE5RDFENzhC MUJGREU4NjAeFw0yNjA0MTcwODE0MzhaFw0yNjA0MjQwODE0MzhaMBgxFjAUBgNV BAMTDTY5ZTFlYmVlLTc3MWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDRbEHKe7YIvbVSKmnEgAWHjZo0/ltQznx8GNWwvhdJLSKS9PA1TWq/i7YtSb3 VM6HOC+Q9Vsa1PP3Ws52muReNOPPN4RkqqjIsnIR4J7iMdHnwAC1Zy1mEndfUQlt uhvqNUDfETSr+IfVGLavZw5K9PPVDugSq0C7B6ftHaKJ5kbNUHRL/7HBzVy3qbVl 7d9P6U7sekPd2XxvpKJEc0wjvrdPXz86CrQ+xqQsg+08bZ33jx+CBU5fxmgvFkr5 DOWhYLCQVtrEtv9xiY/eKf/N+PJjN1CiDkRRFNKMsBTThoarXC0si/MhOomPa5m+ KGPd7VfcCCzr+TTotQu55g5/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU6TqkRunS C1xutk+pmWKI3Htb1RkwHwYDVR0jBBgwFoAUszF8Z90Vsor6OYAEwZ0deLG/3oYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczNkY1LzJBNTBCNjQ4RTZF RTExRjBBRDA5NTc5MjYzNkY1NkJDL3N6RjhaOTBWc29yNk9ZQUV3WjBkZUxHXzNv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc3pGOFo5MFZzb3I2T1lBRXdaMGRlTEdfM29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz NkY1LzJBNTBCNjQ4RTZFRTExRjBBRDA5NTc5MjYzNkY1NkJDL3N6RjhaOTBWc29y Nk9ZQUV3WjBkZUxHXzNvWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAIJZ+SYLQWvFMidJrT7pEnbAlY5tvqlh2Yb0jz6BIufStXv4nefwv5WM1HlOku gdFKTQWHeZRT+83wnRDBG0VKMhDebgO5laLaYyCLNehcfSqCEsNBqZFsWtJONL7f It8WeuWs1EDag+DfmsdAWhp8f25cXXy+OY4EmzVbSFjjFtS4ezwuHkXUSWG+cJsK aALOq2iHOOQUczojgX6rX5y3DofMDuVG36hiIBzDh5NH9EOi9rFOGbpg+Quu5yvH dBnS3/NoTSC6Xc3u8oVbAzh8fcrWv2v/T651MlH0AS82+3FMt0/V2mtpqftD/7GA QfMYvtMsjpuw+Vd7eTsFFrVD -----END CERTIFICATE-----Generated at Fri Apr 17 10:19:53 2026 by rpki-client