$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft File: 3VM9EaneKrkYCFCDvoLVFDTfRUA.mft (raw, json) Hash identifier: SkGX/qEwSaPjMhRdU31AXTzSEUqCdR+nR1e3WfMhQFo= Subject key identifier: 72:68:55:65:21:C1:76:25:6D:59:5E:C6:93:33:77:72:97:15:EE:7B Authority key identifier: DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 Certificate issuer: /CN=A91C8EB6/serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Certificate serial: 1673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft Manifest number: 1668 Signing time: Thu 16 Apr 2026 16:39:01 +0000 Manifest this update: Thu 16 Apr 2026 16:39:01 +0000 Manifest next update: Thu 23 Apr 2026 16:39:01 +0000 Files and hashes: 1: 3VM9EaneKrkYCFCDvoLVFDTfRUA.crl (hash: g/4eV3IXggR/HUXjMnmG+OOfPd5zZ2my+YhYwI4bVcI=) 2: 116B4B06282011E8BBA2F625C4F9AE02.roa (hash: VHKrRamBzI5Z2a2wNY14oKOBu6LJFzzc8akNzDVPDyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5747 (0x1673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EB6, serialNumber=DD533D11A9DE2AB918085083BE82D51434DF4540 Validity Not Before: Apr 16 16:39:01 2026 GMT Not After : Apr 23 16:39:01 2026 GMT Subject: CN=69e110a5-c867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ac:42:e1:e5:58:15:84:d7:ab:fd:2f:82:aa: 62:fa:00:f4:1d:bb:8a:3e:7d:85:0d:a8:3f:1c:c9: 2c:8c:7d:10:f4:bc:c3:52:f1:f9:09:03:6f:a0:2c: 7b:2f:8e:ba:d8:21:e9:10:65:4d:1f:fe:1b:d5:15: 86:e9:84:38:dd:7d:bb:35:70:aa:8f:e2:57:e8:11: 8b:67:58:bd:9a:3e:6d:e3:84:dd:5f:0d:de:10:e5: 43:3e:17:9c:5a:0c:73:04:12:33:92:36:54:f2:c2: 10:a7:52:9b:06:6c:5e:a7:91:f5:86:0a:de:17:f2: ac:80:84:63:72:83:a9:49:ee:d4:72:e5:ac:fe:a4: 83:48:bc:60:64:22:9a:57:13:c5:ef:72:ee:f5:56: ac:9b:76:9b:79:98:9a:f0:97:e6:3a:dd:23:23:0c: 29:41:4c:03:7f:dc:c1:ec:7a:9f:29:4f:22:af:c7: 94:28:97:08:17:a0:64:ef:e9:c8:1e:12:d9:16:0c: 9e:52:e1:b7:78:5f:d0:e4:f2:70:78:3e:01:c1:fa: 4c:ac:d1:01:37:f3:10:ad:60:71:39:fa:dc:eb:f7: a8:ee:f2:1d:e9:9f:c4:cd:8d:7e:1a:91:70:11:93: d9:f7:ea:a7:b2:35:6f:9f:e1:ac:5f:7b:3e:70:b6: 1a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:68:55:65:21:C1:76:25:6D:59:5E:C6:93:33:77:72:97:15:EE:7B X509v3 Authority Key Identifier: keyid:DD:53:3D:11:A9:DE:2A:B9:18:08:50:83:BE:82:D5:14:34:DF:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3VM9EaneKrkYCFCDvoLVFDTfRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EB6/108F53AE281F11E8B2038224C4F9AE02/3VM9EaneKrkYCFCDvoLVFDTfRUA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d8:7b:7d:5d:fb:35:dd:44:74:7d:49:29:e9:91:0e:45:23: 2a:90:55:c6:22:03:46:69:b3:fe:46:d4:4e:9c:3b:b8:85:e5: 33:7f:0c:76:1f:09:47:58:13:8a:86:b2:20:d8:ff:00:6f:d4: 0c:6a:eb:d7:9c:4d:20:e9:4c:f2:7c:50:7d:3f:3a:79:1c:27: 49:f1:86:dd:73:fc:4a:16:da:62:a6:1b:66:f3:83:ff:a5:c5: ec:fe:b5:cb:d5:6a:3e:43:f3:03:4d:e9:13:39:03:ac:bf:d7: 80:d8:59:49:e1:8e:68:48:ac:ac:5a:9a:ea:28:54:1e:ad:59: 0b:8e:29:3d:5c:0c:08:87:e2:df:07:e0:d2:d1:84:ee:89:b2: 36:b6:ac:9a:cf:7b:12:1e:80:99:ef:10:4a:6b:06:8b:52:f9: 7e:59:e8:a1:b9:90:cf:de:e8:3c:c4:5f:f9:04:1d:04:91:81: f4:f4:a3:c1:91:46:50:19:37:b4:63:1a:77:7b:e4:f9:e7:aa: ce:99:f4:5e:be:a5:36:59:75:cc:23:19:49:45:06:b6:9a:95: 25:69:75:40:75:79:9d:84:11:fe:57:d6:2b:e0:30:4f:db:5d: 1b:30:c8:2b:cb:dc:2e:d7:8d:65:4a:24:ee:c8:ac:bc:93:63: 24:50:b3:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFQjYxMTAvBgNVBAUTKERENTMzRDExQTlERTJBQjkxODA4NTA4M0JFODJENTE0 MzRERjQ1NDAwHhcNMjYwNDE2MTYzOTAxWhcNMjYwNDIzMTYzOTAxWjAYMRYwFAYD VQQDEw02OWUxMTBhNS1jODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6xC4eVYFYTXq/0vgqpi+gD0HbuKPn2FDag/HMksjH0Q9LzDUvH5CQNvoCx7 L4662CHpEGVNH/4b1RWG6YQ43X27NXCqj+JX6BGLZ1i9mj5t44TdXw3eEOVDPhec WgxzBBIzkjZU8sIQp1KbBmxep5H1hgreF/KsgIRjcoOpSe7UcuWs/qSDSLxgZCKa VxPF73Lu9Vasm3abeZia8JfmOt0jIwwpQUwDf9zB7HqfKU8ir8eUKJcIF6Bk7+nI HhLZFgyeUuG3eF/Q5PJweD4BwfpMrNEBN/MQrWBxOfrc6/eo7vId6Z/EzY1+GpFw EZPZ9+qnsjVvn+GsX3s+cLYaowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHJoVWUh wXYlbVlexpMzd3KXFe57MB8GA1UdIwQYMBaAFN1TPRGp3iq5GAhQg76C1RQ030VA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVCNi8xMDhGNTNBRTI4 MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUtya1lDRkNEdm9MVkZEVGZS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNWTTlFYW5lS3JrWUNGQ0R2b0xWRkRUZlJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVCNi8xMDhGNTNBRTI4MUYxMUU4QjIwMzgyMjRDNEY5QUUwMi8zVk05RWFuZUty a1lDRkNEdm9MVkZEVGZSVUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALth7fV37Nd1EdH1JKemRDkUjKpBVxiIDRmmz/kbUTpw7uIXlM38Mdh8JR1gT ioayINj/AG/UDGrr15xNIOlM8nxQfT86eRwnSfGG3XP8ShbaYqYbZvOD/6XF7P61 y9VqPkPzA03pEzkDrL/XgNhZSeGOaEisrFqa6ihUHq1ZC44pPVwMCIfi3wfg0tGE 7omyNrasms97Eh6Ame8QSmsGi1L5flnoobmQz97oPMRf+QQdBJGB9PSjwZFGUBk3 tGMad3vk+eeqzpn0Xr6lNll1zCMZSUUGtpqVJWl1QHV5nYQR/lfWK+AwT9tdGzDI K8vcLteNZUok7sisvJNjJFCzQg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:27:39 2026 by rpki-client