$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: XBXSHOjegyhH0XsBQN09YsWwZ2bdZ9tKSxBdg12bzC0= Subject key identifier: 8C:F5:4B:AF:36:A8:55:57:0A:67:2D:58:70:56:74:AD:A6:C8:E3:E2 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 3538 Signing time: Thu 16 Apr 2026 14:25:58 +0000 Manifest this update: Thu 16 Apr 2026 14:25:58 +0000 Manifest next update: Thu 23 Apr 2026 14:25:58 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: jPtNb7ggTt01miVrM+IxyhgTfefFmZn7S4ft8b/DiPI=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: TYTool8z77Qm0uVA+1XtSBmD4W/ew0FLlQD2j6h3SPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Apr 16 14:25:58 2026 GMT Not After : Apr 23 14:25:58 2026 GMT Subject: CN=69e0f176-7c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:46:21:5d:8b:d8:be:af:d1:dc:ce:06:08:78: d0:8c:a1:be:be:dc:6b:b9:79:3e:ff:f0:17:a6:b2: 14:18:a6:82:f4:78:cc:72:8f:7d:25:0d:a5:4f:e2: 43:a8:eb:71:3e:bf:1e:b5:ab:dc:fe:ad:97:05:f1: e2:c2:b1:7e:a1:1d:08:0f:d3:bc:a0:84:c9:53:25: 6d:44:4b:58:7a:13:bd:40:97:45:32:f8:eb:82:b4: 13:10:d7:c1:4a:b3:28:13:74:7d:47:98:05:a5:43: fd:ba:3d:6d:bb:f1:34:bb:dd:0e:9c:cd:42:87:bc: 01:2a:21:9c:98:3d:5b:3b:ec:1e:40:a5:ed:eb:9e: b9:1f:f1:63:90:d8:f5:44:85:da:6d:00:52:98:c1: e8:ce:5e:d8:09:d4:c6:9c:f4:4d:0a:50:74:07:e5: 33:08:5a:ed:b2:78:08:e0:9b:2c:27:84:8c:d9:37: 96:93:91:3e:bd:67:73:8f:ea:9d:08:26:f9:e9:f4: d1:76:a3:17:4b:c4:24:69:db:95:93:9d:65:2d:cc: 58:0f:0a:4d:54:af:0b:5c:e4:5a:44:e0:7a:7a:d6: eb:a4:64:4b:82:e7:74:14:0f:68:d5:9d:db:e9:9f: fc:74:af:68:4c:8d:b2:3e:ec:99:fb:3b:58:eb:a4: c8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F5:4B:AF:36:A8:55:57:0A:67:2D:58:70:56:74:AD:A6:C8:E3:E2 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c4:c1:6b:1a:bd:2e:65:98:22:e5:a5:2e:39:e5:51:b5:cf: 3c:82:cb:de:d8:15:e7:5f:48:5a:c9:55:b4:f1:fb:ce:36:d5: e2:86:f3:f9:c3:cc:d0:62:b8:ca:52:44:3a:b9:86:b7:0d:50: ec:89:11:63:99:ef:0b:c4:4d:e5:28:28:7e:f2:90:8d:2a:77: 12:35:68:85:05:cc:e9:60:be:d7:ab:08:a9:75:ca:2d:67:cd: bd:d1:b8:47:50:99:e9:ec:e0:15:c0:a4:49:42:de:95:99:f5: 58:ed:b2:31:3a:d9:39:7a:77:8a:98:2a:ed:2c:5e:d5:6a:a0: 3e:a2:75:24:09:ed:3e:43:eb:9d:23:06:06:4c:a1:1b:dd:c6: ad:4a:f0:8d:56:13:e8:c5:5d:7b:23:6f:c4:b5:1b:34:ef:8b: 0c:48:f7:e9:6b:5f:8c:ba:cb:55:20:5b:20:41:35:9d:d8:f2: 5f:0f:33:0a:76:d0:71:e7:15:ca:41:35:5f:c5:42:46:d5:f6: 55:70:f1:42:16:3c:50:bd:56:bb:9c:3a:43:8e:b3:f0:bd:0b: 35:f8:ba:d7:fb:b7:5f:41:82:43:42:40:f9:06:93:1b:3f:73: 1f:a3:bf:d0:f2:75:fa:5a:ef:c5:50:8e:b3:83:47:e5:57:90: b3:97:93:d7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjYwNDE2MTQyNTU4WhcNMjYwNDIzMTQyNTU4WjAYMRYwFAYD VQQDEw02OWUwZjE3Ni03YzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40YhXYvYvq/R3M4GCHjQjKG+vtxruXk+//AXprIUGKaC9HjMco99JQ2lT+JD qOtxPr8etavc/q2XBfHiwrF+oR0ID9O8oITJUyVtREtYehO9QJdFMvjrgrQTENfB SrMoE3R9R5gFpUP9uj1tu/E0u90OnM1Ch7wBKiGcmD1bO+weQKXt6565H/FjkNj1 RIXabQBSmMHozl7YCdTGnPRNClB0B+UzCFrtsngI4JssJ4SM2TeWk5E+vWdzj+qd CCb56fTRdqMXS8QkaduVk51lLcxYDwpNVK8LXORaROB6etbrpGRLgud0FA9o1Z3b 6Z/8dK9oTI2yPuyZ+ztY66TIbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIz1S682 qFVXCmctWHBWdK2myOPiMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW8TBaxq9LmWYIuWlLjnlUbXPPILL3tgV519IWslVtPH7zjbV4obz+cPM0GK4 ylJEOrmGtw1Q7IkRY5nvC8RN5SgofvKQjSp3EjVohQXM6WC+16sIqXXKLWfNvdG4 R1CZ6ezgFcCkSULelZn1WO2yMTrZOXp3ipgq7Sxe1WqgPqJ1JAntPkPrnSMGBkyh G93GrUrwjVYT6MVdeyNvxLUbNO+LDEj36WtfjLrLVSBbIEE1ndjyXw8zCnbQcecV ykE1X8VCRtX2VXDxQhY8UL1Wu5w6Q46z8L0LNfi61/u3X0GCQ0JA+QaTGz9zH6O/ 0PJ1+lrvxVCOs4NH5VeQs5eT1w== -----END CERTIFICATE-----Generated at Fri Apr 17 12:18:31 2026 by rpki-client