$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: EVfIE6i94vJQkkczuw+RUm7UgTYZ9nxGiHxEsQ51WiI= Subject key identifier: E8:82:4C:7D:D6:63:C7:46:F9:F3:32:DF:BA:C7:9F:8A:EC:03:1F:35 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 02A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 029D Signing time: Fri 17 Apr 2026 01:27:44 +0000 Manifest this update: Fri 17 Apr 2026 01:27:43 +0000 Manifest next update: Fri 24 Apr 2026 01:27:43 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: 3XA/e/ChIO7EwkYEST6JNKHLgNRok4hwMDqPqT/M6eI=) 2: 0CDAA8EEE86611EFA5152A24C4F9AE02.roa (hash: Z52mVJSz988Jd9hitOllyu60oqioAYARpSvRGcwNtnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 680 (0x2a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E, serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Apr 17 01:27:43 2026 GMT Not After : Apr 24 01:27:43 2026 GMT Subject: CN=69e18c8f-9ece Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3c:d4:d8:d5:67:67:a9:15:7a:43:87:6f:fe: b7:91:9f:50:cd:30:1a:e2:e8:d9:36:8d:dd:50:1a: c8:b9:17:94:ee:ff:cf:d4:83:52:86:6d:ac:17:f0: 00:31:a0:1f:cf:20:c3:0f:7e:e1:fd:95:7e:95:fe: b6:f8:46:b7:45:ba:7c:21:af:30:9f:34:30:a6:7e: 2f:a0:10:fb:fd:6d:ee:3e:d6:20:40:a4:76:13:ee: 99:3c:f9:98:80:a1:70:27:c2:72:7c:33:d2:bb:c2: 54:ba:28:f3:5f:27:05:cf:54:8d:74:22:01:ac:96: a5:70:f0:ec:13:7f:cc:4c:44:c0:e5:da:3e:4a:6e: 0b:12:3a:49:15:01:a1:53:25:17:92:82:d5:56:55: cc:ff:6e:70:2f:b3:e1:28:99:02:dd:a1:7a:d6:69: 35:a5:10:03:c3:72:2c:63:7c:91:53:7e:3d:ef:90: ae:47:63:b1:21:96:22:d4:31:bc:fc:0d:4c:1c:da: 2c:60:00:cf:ca:19:bb:ee:91:24:9f:55:b2:9e:04: c2:4e:30:e9:2e:f1:a8:97:ed:1b:0f:c9:e6:d7:37: df:05:41:3b:8e:c3:d7:2e:43:85:fd:00:cd:d4:c2: c6:e0:c6:50:12:ab:50:44:09:9b:e9:45:98:f5:95: 04:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:82:4C:7D:D6:63:C7:46:F9:F3:32:DF:BA:C7:9F:8A:EC:03:1F:35 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:fb:d2:53:00:c6:4a:1b:59:c6:6d:37:c2:dd:05:1a:91:97: 90:08:e2:7b:eb:89:e4:b4:ca:51:b6:31:f4:0e:b2:48:e3:ba: ac:88:eb:0d:61:aa:34:d3:b5:4b:a8:3d:7c:bc:d4:98:11:fb: 90:d4:b0:3d:53:43:95:b9:a0:32:33:1e:1f:49:47:b1:16:73: af:b8:db:65:dd:f7:b0:26:ed:30:ad:03:c7:5d:48:29:ad:5f: 18:0e:30:88:c1:6b:61:10:9f:94:2e:f3:ab:f5:1d:64:79:a4: 49:e2:b0:8d:05:b3:40:51:af:96:f2:69:19:28:30:2b:e3:8e: 7f:26:e5:26:28:b4:30:8f:c4:6f:a6:08:55:6f:31:b8:7a:b4: ff:b6:b0:c4:ff:8c:89:5d:a0:2f:0b:94:81:68:30:fd:c1:ae: 9b:15:3c:a0:3e:61:54:3b:2e:a9:4b:79:e7:c5:57:56:16:07: bd:9a:f6:2a:cd:a6:a1:38:32:ad:21:c4:25:56:83:25:eb:e2: 0a:0d:87:d4:b2:35:fa:ec:ea:2a:9e:bf:de:b8:6d:da:31:65: 8c:3e:cb:8f:53:a6:86:27:43:19:09:ab:c9:a4:42:e8:77:28: 19:15:95:94:0d:f3:e7:44:1f:46:cb:88:eb:4c:44:e9:d4:f0: 67:1d:9c:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjYwNDE3MDEyNzQzWhcNMjYwNDI0MDEyNzQzWjAYMRYwFAYD VQQDEw02OWUxOGM4Zi05ZWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTzU2NVnZ6kVekOHb/63kZ9QzTAa4ujZNo3dUBrIuReU7v/P1INShm2sF/AA MaAfzyDDD37h/ZV+lf62+Ea3Rbp8Ia8wnzQwpn4voBD7/W3uPtYgQKR2E+6ZPPmY gKFwJ8JyfDPSu8JUuijzXycFz1SNdCIBrJalcPDsE3/MTETA5do+Sm4LEjpJFQGh UyUXkoLVVlXM/25wL7PhKJkC3aF61mk1pRADw3IsY3yRU34975CuR2OxIZYi1DG8 /A1MHNosYADPyhm77pEkn1WyngTCTjDpLvGol+0bD8nm1zffBUE7jsPXLkOF/QDN 1MLG4MZQEqtQRAmb6UWY9ZUEmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOiCTH3W Y8dG+fMy37rHn4rsAx81MB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIvvSUwDGShtZxm03wt0FGpGXkAjie+uJ5LTKUbYx9A6ySOO6rIjrDWGqNNO1 S6g9fLzUmBH7kNSwPVNDlbmgMjMeH0lHsRZzr7jbZd33sCbtMK0Dx11IKa1fGA4w iMFrYRCflC7zq/UdZHmkSeKwjQWzQFGvlvJpGSgwK+OOfyblJii0MI/Eb6YIVW8x uHq0/7awxP+MiV2gLwuUgWgw/cGumxU8oD5hVDsuqUt558VXVhYHvZr2Ks2moTgy rSHEJVaDJeviCg2H1LI1+uzqKp6/3rht2jFljD7Lj1OmhidDGQmryaRC6HcoGRWV lA3z50QfRsuI60xE6dTwZx2cJg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:25:49 2026 by rpki-client