$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: qNzQhN3NSitZrlZIogYgyT7VIRtFvvicwea2SYX6q5A= Subject key identifier: 19:46:1A:54:00:E4:09:C2:DA:1C:BB:55:C1:B4:6B:67:47:1D:34:70 Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: 011D Signing time: Wed 15 Apr 2026 05:22:33 +0000 Manifest this update: Wed 15 Apr 2026 05:22:32 +0000 Manifest next update: Wed 22 Apr 2026 05:22:32 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: pLXFBqyxuD5XFDLoZoTwXXea+eF1Bewf9cYeEPCnlEM=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: d7xVs3t7CcfMe/ajdsTZTFxRrOglm1vaW7xirB1AT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 05:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB, serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Apr 15 05:22:32 2026 GMT Not After : Apr 22 05:22:32 2026 GMT Subject: CN=69df2098-3cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:c0:91:b2:20:74:f7:0f:ce:68:93:8f:22: 92:22:a7:ef:4c:91:27:1d:6a:dd:99:72:58:8d:ce: 69:0b:af:a0:14:9a:5c:79:b7:d0:25:5b:99:31:79: 99:1c:7f:e2:0d:9d:32:0d:87:3b:c6:56:7b:b8:62: 26:cd:81:98:59:35:76:c7:84:b6:e6:9f:f0:b3:92: 13:9a:ff:69:3d:25:c5:d5:7f:f2:c4:5f:43:79:a7: ce:46:90:51:31:98:b6:34:70:d6:52:53:76:34:bf: 90:c4:b4:51:fd:5a:09:32:03:8d:9d:e1:73:7b:e7: 5c:64:ef:8c:58:bb:29:8c:0c:84:1b:3e:ae:6e:1a: 51:41:33:4b:cf:a3:b4:c6:15:00:c1:ca:52:01:4e: 27:3b:06:38:52:64:97:01:30:4a:3c:fb:57:f0:9d: 58:06:67:0d:b7:32:50:a7:11:53:51:be:0d:b3:df: 2f:b7:0d:79:1f:44:0a:f5:36:c6:16:87:7e:8d:35: 2f:2c:da:96:e0:db:1b:82:74:0b:87:00:ae:6b:f4: c4:5a:68:0c:cb:ec:d9:74:bb:5b:84:42:ef:8c:66: 4d:2f:d8:ca:ac:29:e1:df:15:88:3a:2a:d0:c4:17: c1:4d:73:8f:90:cf:24:fa:c7:6f:9b:39:05:05:34: b4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:46:1A:54:00:E4:09:C2:DA:1C:BB:55:C1:B4:6B:67:47:1D:34:70 X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4b:e9:f2:09:b3:b4:cc:ae:c1:73:d2:d6:06:dc:48:f2:c3: d0:0d:0b:f8:47:4f:3f:c0:02:20:bb:bc:95:44:e2:62:9c:8d: 3c:a9:a2:01:6a:2e:c6:39:27:13:db:19:bc:f7:d8:fe:ea:25: ee:12:4f:40:b1:c6:6c:a8:10:97:e2:3d:c5:c5:37:2f:cb:75: 97:09:67:ea:1c:fe:7d:f0:48:34:62:ab:de:d2:e0:c0:83:33: 8a:37:67:02:23:ab:83:b1:27:c9:fb:82:05:e4:7d:c3:2e:76: 0a:12:d4:43:27:ed:a2:07:b2:11:a3:63:90:78:ce:5a:50:0b: 34:aa:96:9d:c6:1e:c6:a8:2a:41:68:b0:aa:0a:e7:77:fd:86: 37:59:ce:1c:89:86:e2:2f:15:62:8a:91:be:21:9e:f2:e2:84: c4:87:f5:61:8c:ee:f9:db:22:4c:1f:e3:b0:64:45:c2:22:c9: e4:42:62:87:1c:a4:aa:4f:c7:5d:7a:05:9b:52:44:35:6d:96: f7:6b:0e:67:81:41:9b:c2:0f:c8:3b:c3:26:6e:98:fb:ce:88: 32:35:70:ee:bb:34:23:d4:50:cc:20:c8:ce:e4:0f:e7:54:81: ac:e1:33:a4:9d:b0:87:07:eb:e1:3c:80:ad:d7:ca:6a:72:0f: c9:1d:db:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0IxMTAvBgNVBAUTKERGRTRBQ0RDQTBBNjIyNDM2NTRCRDIwOTM2ODIwNTc4 RTkyRDI1MjQwHhcNMjYwNDE1MDUyMjMyWhcNMjYwNDIyMDUyMjMyWjAYMRYwFAYD VQQDEw02OWRmMjA5OC0zY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9LAkbIgdPcPzmiTjyKSIqfvTJEnHWrdmXJYjc5pC6+gFJpcebfQJVuZMXmZ HH/iDZ0yDYc7xlZ7uGImzYGYWTV2x4S25p/ws5ITmv9pPSXF1X/yxF9DeafORpBR MZi2NHDWUlN2NL+QxLRR/VoJMgONneFze+dcZO+MWLspjAyEGz6ubhpRQTNLz6O0 xhUAwcpSAU4nOwY4UmSXATBKPPtX8J1YBmcNtzJQpxFTUb4Ns98vtw15H0QK9TbG Fod+jTUvLNqW4NsbgnQLhwCua/TEWmgMy+zZdLtbhELvjGZNL9jKrCnh3xWIOirQ xBfBTXOPkM8k+sdvmzkFBTS0OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBlGGlQA 5AnC2hy7VcG0a2dHHTRwMB8GA1UdIwQYMBaAFN/krNygpiJDZUvSCTaCBXjpLSUk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDQi9GNDRDQ0Y3RTg5 RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlrTmxTOUlKTm9JRmVPa3RK U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDQi9GNDRDQ0Y3RTg5RjAxMUVGQUQyNkI5N0FDNEY5QUUwMi8zLVNzM0tDbUlr TmxTOUlKTm9JRmVPa3RKU1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATEvp8gmztMyuwXPS1gbcSPLD0A0L+EdPP8ACILu8lUTiYpyNPKmiAWouxjkn E9sZvPfY/uol7hJPQLHGbKgQl+I9xcU3L8t1lwln6hz+ffBINGKr3tLgwIMzijdn AiOrg7EnyfuCBeR9wy52ChLUQyftogeyEaNjkHjOWlALNKqWncYexqgqQWiwqgrn d/2GN1nOHImG4i8VYoqRviGe8uKExIf1YYzu+dsiTB/jsGRFwiLJ5EJihxykqk/H XXoFm1JENW2W92sOZ4FBm8IPyDvDJm6Y+86IMjVw7rs0I9RQzCDIzuQP51SBrOEz pJ2whwfr4TyArdfKanIPyR3bmg== -----END CERTIFICATE-----Generated at Fri Apr 17 05:28:41 2026 by rpki-client