$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: gUqZCeXYtK66ide+uZ9GdSCCqpCHcRg2HV1dNtTfzCE= Subject key identifier: B4:B3:E3:2F:91:91:7B:12:EF:4F:34:61:6A:96:BF:BE:28:67:2B:EF Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01BD Signing time: Fri 17 Apr 2026 03:35:26 +0000 Manifest this update: Fri 17 Apr 2026 03:35:25 +0000 Manifest next update: Fri 24 Apr 2026 03:35:25 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: lYBQ+2D7r2LXjWqzm6xn1jZx2z7H5HNxFZPQmrFnUmA=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: AWpj07zDh15fklZ/07HH5rxQ/lecHbJoawDHB8JKXuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Apr 17 03:35:25 2026 GMT Not After : Apr 24 03:35:25 2026 GMT Subject: CN=69e1aa7e-ee96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c3:00:fa:ca:80:0f:5a:62:54:c5:bd:a5:eb: 44:81:dd:20:43:94:8b:4e:02:5e:4f:33:7a:2e:c2: f9:f2:9e:a4:e2:f6:3a:36:3e:14:8e:7c:be:6b:20: 1f:ac:aa:82:cf:54:19:ba:e8:1c:a8:8d:ad:24:40: a9:67:81:40:80:41:2e:d7:2d:59:b9:e1:ae:18:3f: 97:4d:79:1f:07:ae:8b:7f:05:ed:89:1c:70:69:64: 4f:22:62:c3:74:19:7e:29:bf:9e:81:07:1e:7c:56: da:03:7f:f9:3f:1d:6d:c6:b9:cc:e6:d1:74:0e:5e: cb:df:3d:fc:98:4d:67:b8:ed:8a:c4:34:ad:1e:71: 88:b3:20:e5:71:99:8d:51:1f:d9:20:15:52:d8:0c: 87:85:87:30:c3:18:bf:f3:48:4b:fd:71:90:d6:14: 7b:ee:00:11:29:00:b8:40:c6:8a:17:40:81:c1:49: c0:65:34:a1:15:05:57:89:f2:b5:ff:58:1a:2f:95: 0d:e3:a4:75:bc:5e:ac:46:46:d1:59:93:93:0a:c4: d0:98:94:d1:56:87:6a:00:2b:31:c5:a6:49:05:3a: 2b:6b:88:4d:31:58:a5:a5:b1:37:b5:f7:7d:bf:44: 96:d8:72:d3:7d:0d:db:59:dc:a3:01:54:a6:88:c1: 9c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B3:E3:2F:91:91:7B:12:EF:4F:34:61:6A:96:BF:BE:28:67:2B:EF X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:7b:60:e9:eb:da:5b:89:9a:aa:a4:9f:4a:46:50:71:73:bd: 52:fd:55:39:2a:ed:dc:98:dc:fb:52:a2:81:ac:ec:e2:ec:ed: fe:7d:25:0a:42:b7:09:f8:4e:86:f0:06:05:12:a8:86:ac:10: 38:74:ac:ff:01:1d:82:96:c7:5d:b4:b0:64:d9:50:39:67:f8: 8c:18:d8:53:1d:86:24:9a:ce:43:be:b9:09:41:d0:82:c6:b6: 5a:cd:10:b7:61:cb:97:f1:3f:fb:f4:58:0f:7b:b5:25:29:c8: 32:d9:aa:ae:87:78:54:a6:a7:ea:fb:2e:d3:19:48:30:90:72: c6:13:88:2c:a9:2a:2a:7f:7d:f1:88:74:7b:6e:fd:77:0d:85: ab:e2:0f:11:3b:e1:06:07:bd:a4:5f:3c:c5:84:4b:95:89:10: 5d:e6:4b:2c:50:35:f7:38:de:3c:eb:34:4e:4e:b6:84:cf:50: fe:5e:e6:9f:91:81:f4:a0:6c:41:a7:25:8a:b6:66:b9:48:20: 51:73:f9:8e:72:91:9a:14:4f:39:51:e5:25:ad:3a:02:33:15: 1a:47:a0:80:da:17:82:96:64:6f:56:4d:69:18:4d:52:45:db: 9f:06:09:9f:c0:df:6a:30:c7:5b:99:af:6e:74:5d:9a:71:ab: ff:d7:a5:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwNDE3MDMzNTI1WhcNMjYwNDI0MDMzNTI1WjAYMRYwFAYD VQQDEw02OWUxYWE3ZS1lZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsMA+sqAD1piVMW9petEgd0gQ5SLTgJeTzN6LsL58p6k4vY6Nj4Ujny+ayAf rKqCz1QZuugcqI2tJECpZ4FAgEEu1y1ZueGuGD+XTXkfB66LfwXtiRxwaWRPImLD dBl+Kb+egQcefFbaA3/5Px1txrnM5tF0Dl7L3z38mE1nuO2KxDStHnGIsyDlcZmN UR/ZIBVS2AyHhYcwwxi/80hL/XGQ1hR77gARKQC4QMaKF0CBwUnAZTShFQVXifK1 /1gaL5UN46R1vF6sRkbRWZOTCsTQmJTRVodqACsxxaZJBTora4hNMVilpbE3tfd9 v0SW2HLTfQ3bWdyjAVSmiMGcaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLSz4y+R kXsS7080YWqWv74oZyvvMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAintg6evaW4maqqSfSkZQcXO9Uv1VOSrt3Jjc+1Kigazs4uzt/n0lCkK3CfhO hvAGBRKohqwQOHSs/wEdgpbHXbSwZNlQOWf4jBjYUx2GJJrOQ765CUHQgsa2Ws0Q t2HLl/E/+/RYD3u1JSnIMtmqrod4VKan6vsu0xlIMJByxhOILKkqKn998Yh0e279 dw2Fq+IPETvhBge9pF88xYRLlYkQXeZLLFA19zjePOs0Tk62hM9Q/l7mn5GB9KBs QaclirZmuUggUXP5jnKRmhRPOVHlJa06AjMVGkeggNoXgpZkb1ZNaRhNUkXbnwYJ n8DfajDHW5mvbnRdmnGr/9elXw== -----END CERTIFICATE-----Generated at Fri Apr 17 21:18:17 2026 by rpki-client