$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft File: PNmBJcGXpVFDEgG3kG1QS7iySt4.mft (raw, json) Hash identifier: i0gLb9bY0UXw/7WZcs6JODIAISIJ2cd0ePvxxi9Pf48= Subject key identifier: 96:A4:7C:05:39:C3:D7:2F:E9:5F:45:91:96:B5:87:CA:01:38:40:CE Authority key identifier: 3C:D9:81:25:C1:97:A5:51:43:12:01:B7:90:6D:50:4B:B8:B2:4A:DE Certificate issuer: /CN=A918BB6D/serialNumber=3CD98125C197A551431201B7906D504BB8B24ADE Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft Manifest number: 3B Signing time: Fri 17 Apr 2026 08:14:58 +0000 Manifest this update: Fri 17 Apr 2026 08:14:57 +0000 Manifest next update: Fri 24 Apr 2026 08:14:57 +0000 Files and hashes: 1: PNmBJcGXpVFDEgG3kG1QS7iySt4.crl (hash: 9B3y0ZzyHdos+xTVyUps7xp+u+dDWRuLcZlTyPLH5t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.crl rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB6D, serialNumber=3CD98125C197A551431201B7906D504BB8B24ADE Validity Not Before: Apr 17 08:14:57 2026 GMT Not After : Apr 24 08:14:57 2026 GMT Subject: CN=69e1ec02-d4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:01:ea:0d:da:36:e0:ad:36:73:26:30:f6: 65:8f:81:51:35:49:e4:04:50:c3:72:98:69:c9:cd: 9b:40:1e:9e:1c:9d:ec:e1:73:85:ce:5b:f8:4e:ff: 42:c8:38:5d:89:7a:64:cb:f4:11:b8:ec:44:ed:a8: 5f:e5:cc:5f:81:a2:71:54:d7:bc:57:93:f3:d0:bc: 89:06:e4:57:7c:fb:f0:04:7b:a5:67:52:e2:fd:ef: a0:17:b6:4c:33:ad:56:f4:8b:09:eb:7e:81:21:c8: b5:82:18:bb:6a:5e:9a:26:1a:5f:0f:4f:d0:7a:8a: 07:46:89:36:55:e7:75:a1:2d:2b:3f:e6:c9:c2:d4: fc:66:40:ef:94:27:23:f1:23:2a:eb:77:dc:ae:d3: c7:90:c0:20:bf:08:bc:d0:0e:de:8c:49:f8:1b:d2: 7f:b5:24:82:38:f3:97:08:89:00:b7:4f:ac:23:ff: 60:82:85:8a:13:77:9c:40:15:e5:27:61:8e:ba:8f: 95:3e:b3:73:da:81:33:c5:2e:cb:9f:88:00:87:99: d7:83:92:ad:9c:c2:3b:5d:68:f5:52:57:a6:ae:8e: a3:5c:8c:c4:cb:26:1b:bb:15:a8:4b:de:99:72:3f: 17:53:03:fa:25:59:67:ee:03:72:1f:09:59:00:e1: 15:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A4:7C:05:39:C3:D7:2F:E9:5F:45:91:96:B5:87:CA:01:38:40:CE X509v3 Authority Key Identifier: keyid:3C:D9:81:25:C1:97:A5:51:43:12:01:B7:90:6D:50:4B:B8:B2:4A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PNmBJcGXpVFDEgG3kG1QS7iySt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB6D/880D6CACE91B11F0A7541612736F56BC/PNmBJcGXpVFDEgG3kG1QS7iySt4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9f:01:6a:c9:89:05:c7:d2:fd:f8:ef:93:36:4f:22:a6:80: ad:40:08:4a:7a:5a:8e:b1:5b:44:7b:48:e7:64:07:8d:45:c4: cb:a0:c3:53:0d:91:09:17:cb:c6:e3:10:40:d2:4c:1c:e5:ab: 65:63:3b:27:56:b9:f4:89:f6:fb:98:9b:bd:6a:c1:5b:bb:ad: a9:65:68:47:d1:a9:de:cb:2f:d1:a5:b3:9d:ba:36:8f:32:f4: e2:fc:fa:e4:40:04:b7:41:23:69:e9:4f:dd:a4:8a:2a:18:ee: 06:5d:2a:a3:81:0f:fc:3d:be:8b:06:0e:42:7e:f5:17:b7:64: a0:ac:4e:3f:50:08:9a:f9:b1:1d:f6:a5:ea:85:bd:fd:26:f9: 62:49:08:4a:4a:6c:c8:84:fd:e2:e0:9d:52:69:ba:61:53:a1: 77:ef:f2:d6:6c:fc:b8:3d:f7:9b:66:0d:88:0e:47:36:db:28: ae:d8:22:96:ce:4b:34:b9:12:5e:dc:3f:bd:97:ac:48:9b:48: 29:ec:21:55:58:b2:b0:4d:4f:72:04:cf:18:4b:0b:13:b1:0a: 74:70:ab:64:46:01:65:c2:5e:6c:00:d7:ba:e6:00:8a:95:04: a7:79:44:cb:39:cc:6b:5b:6d:0d:45:fe:41:9a:7b:ba:8e:79: d4:63:37:ae -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QkI2RDExMC8GA1UEBRMoM0NEOTgxMjVDMTk3QTU1MTQzMTIwMUI3OTA2RDUwNEJC OEIyNEFERTAeFw0yNjA0MTcwODE0NTdaFw0yNjA0MjQwODE0NTdaMBgxFjAUBgNV BAMTDTY5ZTFlYzAyLWQ0YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl1AHqDdo24K02cyYw9mWPgVE1SeQEUMNymGnJzZtAHp4cnezhc4XOW/hO/0LI OF2JemTL9BG47ETtqF/lzF+BonFU17xXk/PQvIkG5Fd8+/AEe6VnUuL976AXtkwz rVb0iwnrfoEhyLWCGLtqXpomGl8PT9B6igdGiTZV53WhLSs/5snC1PxmQO+UJyPx Iyrrd9yu08eQwCC/CLzQDt6MSfgb0n+1JII485cIiQC3T6wj/2CChYoTd5xAFeUn YY66j5U+s3PagTPFLsufiACHmdeDkq2cwjtdaPVSV6aujqNcjMTLJhu7FahL3ply PxdTA/olWWfuA3IfCVkA4RW/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUlqR8BTnD 1y/pX0WRlrWHygE4QM4wHwYDVR0jBBgwFoAUPNmBJcGXpVFDEgG3kG1QS7iySt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCQjZELzg4MEQ2Q0FDRTkx QjExRjBBNzU0MTYxMjczNkY1NkJDL1BObUJKY0dYcFZGREVnRzNrRzFRUzdpeVN0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUE5tQkpjR1hwVkZERWdHM2tHMVFTN2l5U3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC QjZELzg4MEQ2Q0FDRTkxQjExRjBBNzU0MTYxMjczNkY1NkJDL1BObUJKY0dYcFZG REVnRzNrRzFRUzdpeVN0NC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQABnwFqyYkFx9L9+O+TNk8ipoCtQAhKelqOsVtEe0jnZAeNRcTLoMNTDZEJF8vG 4xBA0kwc5atlYzsnVrn0ifb7mJu9asFbu62pZWhH0aneyy/RpbOdujaPMvTi/Prk QAS3QSNp6U/dpIoqGO4GXSqjgQ/8Pb6LBg5CfvUXt2SgrE4/UAia+bEd9qXqhb39 JvliSQhKSmzIhP3i4J1SabphU6F37/LWbPy4PfebZg2IDkc22yiu2CKWzks0uRJe 3D+9l6xIm0gp7CFVWLKwTU9yBM8YSwsTsQp0cKtkRgFlwl5sANe65gCKlQSneUTL OcxrW20NRf5Bmnu6jnnUYzeu -----END CERTIFICATE-----Generated at Fri Apr 17 18:32:30 2026 by rpki-client