$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft File: 3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json) Hash identifier: 3irEh9UlZM8QRB6HADSnG/okOpdOABG5ZUV4x6IjNXs= Subject key identifier: F7:04:89:C0:45:A0:A5:0D:A1:F7:F4:88:EE:DF:19:3E:05:04:B8:5D Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 Certificate issuer: /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Certificate serial: 0CC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft Manifest number: 0CBA Signing time: Thu 16 Apr 2026 18:23:25 +0000 Manifest this update: Thu 16 Apr 2026 18:23:24 +0000 Manifest next update: Thu 23 Apr 2026 18:23:24 +0000 Files and hashes: 1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: xFLfKCoNPNriL9lvZ1fn9kZKbwqMZPK9HYB07IcvXKw=) 2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: STCKrvlRsuBwgCCitF/41y1bZsQULp/xbRwSRQTsp2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3268 (0xcc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CABB, serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Validity Not Before: Apr 16 18:23:24 2026 GMT Not After : Apr 23 18:23:24 2026 GMT Subject: CN=69e1291d-fb79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:07:83:9f:57:29:43:76:97:95:07:f6:9d:e5: 11:15:eb:06:c5:8b:93:82:55:27:8a:a0:c3:fa:27: 44:c0:ce:12:19:9d:f1:91:b7:41:8f:35:86:bc:32: d5:0a:d4:62:ea:c0:40:48:4a:22:3e:34:0f:13:c8: e5:7a:b4:b7:77:75:c5:04:25:ad:41:90:4c:7a:76: 75:c4:fd:7d:b8:d1:fc:6c:62:64:f2:dc:21:03:20: 51:40:d1:71:c9:fd:71:2b:60:4b:b6:55:4c:b8:de: d3:f3:e8:3f:4a:8a:6d:5a:f0:36:a3:cf:f1:2a:43: 99:bf:cd:0d:b2:e7:c5:ba:98:a7:02:99:f5:39:66: ee:aa:89:17:4a:bb:53:21:43:f5:cf:1f:43:1c:ea: 94:5e:e6:07:39:58:df:4c:22:d9:7c:97:df:ce:a3: 20:c5:b4:f2:1d:d4:43:78:6b:f4:9d:dd:43:c3:ae: 67:31:54:fd:df:55:29:70:ad:d1:c8:0c:79:7d:25: 8d:80:92:d7:0a:b5:1b:a7:e9:f0:80:5b:43:2f:68: 8d:4b:8a:d6:a4:10:1b:d0:34:26:c6:01:d6:ec:d3: 49:b6:33:40:d0:5a:e6:a8:f2:2d:3d:a0:e0:5b:cf: 74:96:66:51:68:95:80:ba:b8:73:02:09:10:b3:c3: 5e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:04:89:C0:45:A0:A5:0D:A1:F7:F4:88:EE:DF:19:3E:05:04:B8:5D X509v3 Authority Key Identifier: keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d1:f1:50:57:a3:95:93:80:a0:11:35:a7:5c:6f:20:0b:20: f8:2e:c8:af:92:8b:be:0d:a8:fd:d0:ae:8d:d2:d9:36:e5:78: be:43:33:53:06:4c:ff:85:d8:d5:13:0f:b6:0d:32:99:d4:0d: 5d:0c:f2:d6:16:3c:77:fc:e6:be:d2:14:28:ae:ea:2d:af:c1: ce:cd:09:66:e6:17:3b:4f:a3:22:db:b6:e6:a0:91:bd:52:aa: 40:91:1f:01:06:c6:92:f0:1c:bd:c0:66:d4:82:57:e2:c5:27: 83:46:ff:96:c1:c4:a1:72:2e:f9:52:00:74:1f:f5:7b:73:7a: 76:47:0a:d0:13:6e:87:2f:5e:d8:fc:d2:58:8e:af:78:37:54: ac:39:a6:08:d0:46:34:09:6f:99:ed:b5:c8:b3:3e:31:ac:4d: 00:1c:ea:7f:03:b4:f4:b5:74:f7:da:d5:3f:69:b1:47:24:79: 9a:72:ec:bf:63:83:d6:03:7c:81:a1:aa:11:9b:f9:16:37:22: 41:4b:30:b2:ab:41:b2:36:35:fc:82:74:cb:e5:ea:c4:e8:d9: ba:0c:78:d7:ce:e9:b2:7e:0a:22:40:0c:87:b8:a1:8e:de:58: f5:67:64:e8:6e:fd:45:91:35:79:4a:d7:fd:b4:ea:19:d6:2d: f8:2a:a8:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2 MzMwNzcxMTgwHhcNMjYwNDE2MTgyMzI0WhcNMjYwNDIzMTgyMzI0WjAYMRYwFAYD VQQDEw02OWUxMjkxZC1mYjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuweDn1cpQ3aXlQf2neURFesGxYuTglUniqDD+idEwM4SGZ3xkbdBjzWGvDLV CtRi6sBASEoiPjQPE8jlerS3d3XFBCWtQZBMenZ1xP19uNH8bGJk8twhAyBRQNFx yf1xK2BLtlVMuN7T8+g/SoptWvA2o8/xKkOZv80NsufFupinApn1OWbuqokXSrtT IUP1zx9DHOqUXuYHOVjfTCLZfJffzqMgxbTyHdRDeGv0nd1Dw65nMVT931UpcK3R yAx5fSWNgJLXCrUbp+nwgFtDL2iNS4rWpBAb0DQmxgHW7NNJtjNA0FrmqPItPaDg W890lmZRaJWAurhzAgkQs8Ne5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPcEicBF oKUNoff0iO7fGT4FBLhdMB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP ajd5YlRaaXoxRjFqTUhjUmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALNHxUFejlZOAoBE1p1xvIAsg+C7Ir5KLvg2o/dCujdLZNuV4vkMzUwZM/4XY 1RMPtg0ymdQNXQzy1hY8d/zmvtIUKK7qLa/Bzs0JZuYXO0+jItu25qCRvVKqQJEf AQbGkvAcvcBm1IJX4sUng0b/lsHEoXIu+VIAdB/1e3N6dkcK0BNuhy9e2PzSWI6v eDdUrDmmCNBGNAlvme21yLM+MaxNABzqfwO09LV099rVP2mxRyR5mnLsv2OD1gN8 gaGqEZv5FjciQUswsqtBsjY1/IJ0y+XqxOjZugx4187psn4KIkAMh7ihjt5Y9Wdk 6G79RZE1eUrX/bTqGdYt+CqoRA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:24:04 2026 by rpki-client