$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft File: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft (raw, json) Hash identifier: JVKFFN81xATPf+xaT9lbp6PwF8xVjhIj4XEEF/TRYP4= Subject key identifier: BA:FF:41:CC:1B:8C:D4:EA:10:BB:61:D0:21:65:A6:D9:E2:C7:72:1F Authority key identifier: DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 Certificate issuer: /CN=A918F1C9/serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft Manifest number: 0B76 Signing time: Thu 16 Apr 2026 19:30:14 +0000 Manifest this update: Thu 16 Apr 2026 19:30:13 +0000 Manifest next update: Thu 23 Apr 2026 19:30:13 +0000 Files and hashes: 1: 3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl (hash: YXPg201VwyZF9NTvPcgKZOJYyU2HC7HIJASXz56T7As=) 2: 93E4B52CE43E11EF91571D16C4F9AE02.roa (hash: 3k/MD9slc9k5QTtKaX1WS6uhMpxTNBjACucfwOuP+Og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:30:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=DE4CE960A3930AB4C227FCE8F857C084197F08D0 Validity Not Before: Apr 16 19:30:13 2026 GMT Not After : Apr 23 19:30:13 2026 GMT Subject: CN=69e138c6-9e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:a0:c0:c9:ce:f0:08:9f:ec:30:d4:05:11: b6:54:95:68:d4:0a:0b:83:3f:2c:c6:d3:68:da:ac: b0:75:59:42:20:51:12:84:e7:70:1b:24:20:14:6d: 0e:06:ca:4f:1a:d9:8c:db:8d:75:47:ba:1f:36:7e: 50:5a:f8:49:9f:59:5c:72:36:93:60:f5:33:cc:3d: dd:4a:4c:ba:78:99:db:e4:e5:34:e5:5b:f7:39:e2: 55:0e:1f:62:3c:9c:63:64:34:a4:91:b2:be:a0:46: 56:99:0e:8d:5b:a9:af:3c:55:5c:41:5e:6c:39:0a: bc:0b:19:9f:ff:0b:ca:a8:e7:f8:d4:98:ae:fe:88: bc:e1:9e:07:11:20:20:90:e8:0d:8c:f5:4c:da:25: f7:54:0c:34:95:78:1f:9c:57:17:d5:df:32:7b:a6: 81:07:41:41:b2:eb:d5:20:9b:3c:2c:32:c9:74:53: 0b:42:ba:a5:d2:df:c2:7c:b0:41:00:ec:3f:80:8d: 31:21:e6:de:2c:91:ed:34:27:ec:33:d6:14:a6:32: ea:6e:8c:25:85:ea:99:84:9c:0a:fa:23:03:b9:22: e8:55:bd:ee:36:28:a5:96:12:d2:ad:c2:8b:6d:d8: 66:e9:e9:fc:c9:e6:33:e1:61:84:96:84:fd:22:43: 20:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FF:41:CC:1B:8C:D4:EA:10:BB:61:D0:21:65:A6:D9:E2:C7:72:1F X509v3 Authority Key Identifier: keyid:DE:4C:E9:60:A3:93:0A:B4:C2:27:FC:E8:F8:57:C0:84:19:7F:08:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/3kzpYKOTCrTCJ_zo-FfAhBl_CNA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:9b:53:8e:cb:d5:20:54:22:ff:64:a4:b7:e4:f9:dd:ac:68: f8:db:db:fd:de:96:4c:73:a8:54:d1:d5:aa:0a:52:7e:41:46: ae:35:36:2e:c4:ea:1e:77:f4:d5:2f:bd:af:74:08:ae:eb:eb: cb:4b:25:5d:78:6b:16:f2:cf:20:32:cb:bb:52:f4:ae:8c:d3: a9:c4:bf:14:05:44:f5:97:56:f1:06:d4:e2:e7:c8:2e:f9:10: 45:78:2e:5e:95:67:fb:79:70:81:41:18:8d:95:47:8c:ad:95: 44:e7:dc:30:21:f3:97:27:ef:c0:9e:9c:4f:b3:07:21:70:32: ac:78:e5:90:14:e8:41:4e:7c:86:e2:fb:81:6e:df:f4:9c:7d: 18:73:b4:c1:a7:f4:fb:3d:1a:ee:51:40:62:fa:fc:96:54:d3: ec:b8:be:19:02:17:75:1c:31:79:28:c7:50:5a:f9:bc:54:72: d4:a6:0f:e9:e4:66:e2:11:c2:bd:53:3b:24:42:00:ae:f5:69: e8:b0:44:12:f3:bc:0b:18:f1:80:dd:07:fb:e2:f1:f5:5f:c7: c8:b3:aa:cb:55:be:da:6f:5b:f1:f4:01:37:10:dc:99:95:a5: 08:0b:64:c0:59:c5:63:61:60:40:98:6d:5f:a1:a8:2d:cf:af: 66:0d:9e:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKERFNENFOTYwQTM5MzBBQjRDMjI3RkNFOEY4NTdDMDg0 MTk3RjA4RDAwHhcNMjYwNDE2MTkzMDEzWhcNMjYwNDIzMTkzMDEzWjAYMRYwFAYD VQQDEw02OWUxMzhjNi05ZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2SgwMnO8Aif7DDUBRG2VJVo1AoLgz8sxtNo2qywdVlCIFEShOdwGyQgFG0O BspPGtmM2411R7ofNn5QWvhJn1lccjaTYPUzzD3dSky6eJnb5OU05Vv3OeJVDh9i PJxjZDSkkbK+oEZWmQ6NW6mvPFVcQV5sOQq8Cxmf/wvKqOf41Jiu/oi84Z4HESAg kOgNjPVM2iX3VAw0lXgfnFcX1d8ye6aBB0FBsuvVIJs8LDLJdFMLQrql0t/CfLBB AOw/gI0xIebeLJHtNCfsM9YUpjLqbowlheqZhJwK+iMDuSLoVb3uNiillhLSrcKL bdhm6en8yeYz4WGEloT9IkMgrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLr/Qcwb jNTqELth0CFlptnix3IfMB8GA1UdIwQYMBaAFN5M6WCjkwq0wif86PhXwIQZfwjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENyVENKX3pvLUZmQWhCbF9D TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNrenBZS09UQ3JUQ0pfem8tRmZBaEJsX0NOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi8za3pwWUtPVENy VENKX3pvLUZmQWhCbF9DTkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjptTjsvVIFQi/2Skt+T53axo+Nvb/d6WTHOoVNHVqgpSfkFGrjU2LsTqHnf0 1S+9r3QIruvry0slXXhrFvLPIDLLu1L0rozTqcS/FAVE9ZdW8QbU4ufILvkQRXgu XpVn+3lwgUEYjZVHjK2VROfcMCHzlyfvwJ6cT7MHIXAyrHjlkBToQU58huL7gW7f 9Jx9GHO0waf0+z0a7lFAYvr8llTT7Li+GQIXdRwxeSjHUFr5vFRy1KYP6eRm4hHC vVM7JEIArvVp6LBEEvO8CxjxgN0H++Lx9V/HyLOqy1W+2m9b8fQBNxDcmZWlCAtk wFnFY2FgQJhtX6GoLc+vZg2eqw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:07:04 2026 by rpki-client