$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: Gmq1w14PxLv7dFAjG6g3t3NPhCqMf7xtZ5qJLXT8xWY= Subject key identifier: 85:5B:37:01:D6:AA:5C:E0:B3:EC:AE:20:70:DE:A0:1B:39:E7:AB:17 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0D02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0CF1 Signing time: Thu 16 Apr 2026 18:13:34 +0000 Manifest this update: Thu 16 Apr 2026 18:13:34 +0000 Manifest next update: Thu 23 Apr 2026 18:13:34 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: MvMqEjvIPq80uWe1FldLXn/QAhuFtMP2W24Mj0USVN0=) 2: 96AE931812F511F1BA310F6D113D8C67.roa (hash: jP+hpdy04kY0o4MqB2uI3RyQMFd46KIJgsKGChbWqFc=) 3: CD3E621E12F511F180FA8278113D8C67.roa (hash: kXxD2EMvx6LCGBFTx93ZGtgwkhNjqsacd4c8/3EVFYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:13:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3330 (0xd02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Apr 16 18:13:34 2026 GMT Not After : Apr 23 18:13:34 2026 GMT Subject: CN=69e126ce-530f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:4b:71:34:71:2d:1a:b5:bd:9d:1d:f1:a4:df: 75:09:f6:cd:ce:c9:4d:07:47:49:a9:81:fd:85:b9: dd:b0:3f:c9:68:49:ea:b6:61:65:08:a3:ed:ea:21: ec:20:09:9d:30:1e:e3:12:cb:92:4e:2e:0c:12:f7: 5a:ac:1b:52:28:39:ed:69:4b:76:d6:9e:3c:a6:6b: 66:3a:a0:0b:64:8b:ba:85:0d:f5:3d:39:72:b7:0f: a8:89:b0:e7:49:58:ec:89:a1:d7:8f:92:de:04:a8: d4:fd:8d:9f:02:df:98:fc:2e:d9:98:b0:b8:d2:dd: 6d:c2:a1:05:bf:93:cc:c6:1b:b5:10:b0:83:01:77: b3:89:11:ad:89:a1:21:82:50:30:5a:83:1b:80:b5: b4:4c:a2:bf:9d:e1:8c:2b:46:3a:74:90:ed:3c:21: 56:f1:86:f5:67:4b:90:01:3c:d7:03:47:ef:6a:c3: cd:06:de:04:9a:c9:d6:09:56:1c:80:2e:62:ab:7b: 2c:61:5a:61:34:d6:b1:88:ac:94:7e:88:a6:56:b2: 2e:70:53:6c:9a:53:fd:d5:e0:9c:2a:de:54:12:83: ac:3c:49:ce:65:a7:c4:00:09:2a:13:c7:eb:97:7a: b3:96:d5:20:a7:f2:12:ca:2b:35:9e:2d:aa:4b:8b: 9d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5B:37:01:D6:AA:5C:E0:B3:EC:AE:20:70:DE:A0:1B:39:E7:AB:17 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:03:49:ab:12:8a:45:d3:3e:58:98:b9:38:43:15:18:b0:ae: 63:55:ca:43:c9:3b:cd:8c:d6:84:3e:d0:93:c1:5d:40:e9:44: c5:92:74:db:2c:f7:62:95:2d:c7:f3:a6:df:ad:d4:de:7c:94: fc:d8:92:e4:6f:d8:b6:15:fa:19:9b:68:63:94:06:e7:25:37: 1c:8c:2c:dd:0b:f6:66:98:95:dc:e6:f3:1f:a6:cb:91:10:99: f1:f6:fe:69:27:58:be:65:8c:25:3f:28:f3:51:9f:49:ee:ef: ef:9d:a8:92:f3:8f:48:61:99:f2:26:32:77:be:aa:56:52:2a: b9:6c:7d:c5:93:04:b4:5d:4e:26:2f:3d:d7:77:27:5f:73:3e: fc:33:08:6e:d0:72:29:99:86:0b:87:c2:63:c3:88:8e:3d:6a: d3:e1:26:96:88:70:17:fc:66:6f:9e:86:c2:66:42:7f:a6:35: 1d:db:5b:d0:55:e2:f5:4c:f2:8e:c0:67:b4:29:82:fc:cf:43: 3a:b7:42:a7:7f:c6:64:4b:49:e5:b9:28:e4:00:8e:e4:07:12: a7:40:52:3c:8c:94:41:83:7e:b7:3d:d5:b5:c5:36:5a:16:83: 0b:c3:2e:4d:1a:18:74:4a:41:8f:5e:fd:41:15:3e:b9:c7:e5: 3d:50:c4:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjYwNDE2MTgxMzM0WhcNMjYwNDIzMTgxMzM0WjAYMRYwFAYD VQQDEw02OWUxMjZjZS01MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkEtxNHEtGrW9nR3xpN91CfbNzslNB0dJqYH9hbndsD/JaEnqtmFlCKPt6iHs IAmdMB7jEsuSTi4MEvdarBtSKDntaUt21p48pmtmOqALZIu6hQ31PTlytw+oibDn SVjsiaHXj5LeBKjU/Y2fAt+Y/C7ZmLC40t1twqEFv5PMxhu1ELCDAXeziRGtiaEh glAwWoMbgLW0TKK/neGMK0Y6dJDtPCFW8Yb1Z0uQATzXA0fvasPNBt4EmsnWCVYc gC5iq3ssYVphNNaxiKyUfoimVrIucFNsmlP91eCcKt5UEoOsPEnOZafEAAkqE8fr l3qzltUgp/ISyis1ni2qS4udkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVbNwHW qlzgs+yuIHDeoBs556sXMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANgNJqxKKRdM+WJi5OEMVGLCuY1XKQ8k7zYzWhD7Qk8FdQOlExZJ02yz3YpUt x/Om363U3nyU/NiS5G/YthX6GZtoY5QG5yU3HIws3Qv2ZpiV3ObzH6bLkRCZ8fb+ aSdYvmWMJT8o81GfSe7v752okvOPSGGZ8iYyd76qVlIquWx9xZMEtF1OJi8913cn X3M+/DMIbtByKZmGC4fCY8OIjj1q0+EmlohwF/xmb56GwmZCf6Y1Hdtb0FXi9Uzy jsBntCmC/M9DOrdCp3/GZEtJ5bko5ACO5AcSp0BSPIyUQYN+tz3VtcU2WhaDC8Mu TRoYdEpBj179QRU+ucflPVDENA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:47:07 2026 by rpki-client