$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft File: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft (raw, json) Hash identifier: G3pIGKG5PeEBG9cLUFapYBPf9M7yEjDCy5IMMHz8YNs= Subject key identifier: 51:DD:ED:66:C4:35:7E:38:C2:9E:E0:1C:AC:14:66:D5:24:35:7A:B3 Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft Manifest number: 056B Signing time: Thu 16 Apr 2026 23:15:24 +0000 Manifest this update: Thu 16 Apr 2026 23:15:23 +0000 Manifest next update: Thu 23 Apr 2026 23:15:23 +0000 Files and hashes: 1: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl (hash: CYzsWB2tzaTW8LoMvAmgCd1kaRhGBlZ6Q9qR4ym/HF0=) 2: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (hash: 5wECY0S1TItQf52Puzm7/lHfnEoyS0N/i319+RZPTPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7, serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Apr 16 23:15:23 2026 GMT Not After : Apr 23 23:15:23 2026 GMT Subject: CN=69e16d8c-840b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3e:c9:ae:21:47:23:ed:4a:9e:16:32:6c:b7: bc:24:86:27:f1:28:7d:28:c8:16:02:a4:16:a1:84: 75:a5:7a:b9:8b:64:bb:c9:f7:f0:a5:ab:72:8c:57: 55:d4:a5:4e:91:8e:f0:0e:e7:b2:ac:82:46:2d:33: c9:db:3d:d2:66:22:20:78:fe:6c:c1:6f:0b:e1:5b: 31:f6:0f:88:ca:70:74:e0:78:3c:f2:fd:b4:ab:f8: 97:0e:dd:7f:2a:f6:62:bf:bc:8a:09:48:92:b1:33: cd:71:bf:b0:2e:ef:9d:cd:64:62:d3:b0:d3:06:46: 93:1e:fe:81:16:95:57:de:73:de:e6:32:e8:16:b3: 65:b0:e3:14:46:8b:60:d3:2b:89:ca:ad:e9:82:54: e2:02:13:2b:4b:ea:42:22:42:7b:c5:ee:8e:e4:07: 44:8a:eb:48:88:4f:c3:e4:32:53:db:42:a8:4b:41: d0:44:58:bf:0f:92:8e:5e:8f:22:91:8f:84:52:20: 58:48:35:39:4d:f7:40:c5:2f:5a:fe:be:84:f7:ca: f4:af:e1:8c:81:e7:1d:31:2c:5a:87:98:76:04:3b: 70:f8:c6:af:d7:df:5e:44:b5:82:11:17:94:25:31: a7:37:13:90:ab:a6:06:9b:56:60:d0:e8:be:11:04: b5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DD:ED:66:C4:35:7E:38:C2:9E:E0:1C:AC:14:66:D5:24:35:7A:B3 X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:38:88:99:72:ae:ed:b1:5b:73:a2:d4:dc:67:a4:9b:dc:1e: 84:ee:ad:35:f7:98:b0:c8:e0:18:90:23:5f:d4:dd:0a:5e:b3: 09:8a:1c:e4:7f:61:3b:69:8e:63:75:87:02:ed:d6:12:8b:f3: cd:d2:b5:c1:ec:00:f5:ff:ec:77:19:f9:0c:26:29:0a:5f:59: 30:d7:a3:64:70:01:4a:0a:ae:56:c3:fa:a2:30:7a:b9:16:f3: 6e:7a:ed:29:ef:e5:97:43:e8:a0:63:73:82:b6:26:2a:53:da: 0e:62:db:1d:80:e0:b8:99:c0:10:23:0c:22:09:23:5b:e3:6c: eb:55:a7:85:98:a5:31:43:83:7c:63:2f:a6:f8:a5:f7:1f:33: 2b:f2:0d:f3:87:88:35:d7:dc:8b:2c:fe:b9:11:b3:31:e7:0b: 4b:d6:5f:00:1e:fe:19:67:63:aa:23:9d:97:90:0e:60:99:e1: 4e:5d:61:94:24:8c:b3:45:b9:29:27:02:1d:66:1d:c7:e7:00: df:47:03:1f:17:66:be:73:5a:ea:7e:0e:1d:de:b5:97:66:3a: 42:19:8d:92:df:a2:c3:ef:bd:4d:83:10:8a:90:3b:c7:5f:b0: 95:a5:86:31:cf:92:a1:8d:83:37:75:fe:7c:36:fd:f0:4c:2b: 77:3b:b4:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjYwNDE2MjMxNTIzWhcNMjYwNDIzMjMxNTIzWjAYMRYwFAYD VQQDEw02OWUxNmQ4Yy04NDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD7JriFHI+1KnhYybLe8JIYn8Sh9KMgWAqQWoYR1pXq5i2S7yffwpatyjFdV 1KVOkY7wDueyrIJGLTPJ2z3SZiIgeP5swW8L4Vsx9g+IynB04Hg88v20q/iXDt1/ KvZiv7yKCUiSsTPNcb+wLu+dzWRi07DTBkaTHv6BFpVX3nPe5jLoFrNlsOMURotg 0yuJyq3pglTiAhMrS+pCIkJ7xe6O5AdEiutIiE/D5DJT20KoS0HQRFi/D5KOXo8i kY+EUiBYSDU5TfdAxS9a/r6E98r0r+GMgecdMSxah5h2BDtw+Mav199eRLWCEReU JTGnNxOQq6YGm1Zg0Oi+EQS14wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFHd7WbE NX44wp7gHKwUZtUkNXqzMB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUZFNy9GOEI2NTM3NDI5MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40 M2RyenpRNUJxZTl2M1RGSTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMziImXKu7bFbc6LU3Gekm9wehO6tNfeYsMjgGJAjX9TdCl6zCYoc5H9hO2mO Y3WHAu3WEovzzdK1wewA9f/sdxn5DCYpCl9ZMNejZHABSgquVsP6ojB6uRbzbnrt Ke/ll0PooGNzgrYmKlPaDmLbHYDguJnAECMMIgkjW+Ns61WnhZilMUODfGMvpvil 9x8zK/IN84eINdfciyz+uRGzMecLS9ZfAB7+GWdjqiOdl5AOYJnhTl1hlCSMs0W5 KScCHWYdx+cA30cDHxdmvnNa6n4OHd61l2Y6QhmNkt+iw++9TYMQipA7x1+wlaWG Mc+SoY2DN3X+fDb98Ewrdzu0uA== -----END CERTIFICATE-----Generated at Fri Apr 17 16:22:52 2026 by rpki-client