$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: DPEgHSZqlfjtxfwYugtqOzNrZfndbh5wGxIKAxCzjxk= Subject key identifier: AE:CC:BD:A0:8C:A5:C7:92:EC:9B:F8:B6:C9:F7:F9:A8:49:A4:88:6D Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 3532 Signing time: Thu 16 Apr 2026 14:50:36 +0000 Manifest this update: Thu 16 Apr 2026 14:50:35 +0000 Manifest next update: Thu 23 Apr 2026 14:50:35 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: TsvOCEOhdSKzHc9HME5r1T+kj63krQmdsGK0LN46wm8=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: nLdLNd1FqbqzPBvmomvzxR8c2GOexrERlWPqFeDBvG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC, serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Apr 16 14:50:35 2026 GMT Not After : Apr 23 14:50:35 2026 GMT Subject: CN=69e0f73b-9f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e8:af:d3:72:ad:81:23:50:52:b3:28:63:e6: 07:8d:a3:53:89:c9:39:d8:63:4b:20:96:78:1b:8e: 23:1d:12:51:34:a7:78:10:82:26:6f:9c:ed:cd:77: 5c:70:e7:40:36:a4:ce:d2:2e:b0:38:f9:ab:8d:fb: 9b:7d:de:a7:f7:e4:37:dd:a8:96:93:d7:db:45:12: 06:9a:9c:4f:e2:2f:1b:46:8b:96:df:f7:fb:22:48: 7b:26:4a:a9:1e:09:ce:15:3e:2b:64:7e:fb:32:c0: 58:8b:81:94:b5:7e:76:15:22:c2:4f:e1:76:72:c7: bc:28:d6:16:39:df:d3:70:3e:c9:e3:1d:2a:1f:dc: a0:44:a2:1a:e9:eb:56:69:16:b3:ae:03:e8:5a:ee: a7:a6:20:2e:b1:1e:ea:73:60:7a:c5:33:c3:6b:17: d4:cc:50:4e:20:42:2c:01:c4:01:1b:c7:36:75:d2: f1:07:b3:55:6d:05:55:29:5c:73:a9:1e:b6:13:df: 14:f4:77:84:ba:98:f0:6e:99:0e:89:71:a8:0b:e5: 00:2b:e1:45:21:74:b7:43:f2:d0:c9:ae:2a:e1:05: eb:85:09:c1:63:bd:9d:94:0f:36:35:72:bd:3b:1f: 4e:c6:5e:ab:dc:ee:c1:3d:17:76:3c:29:0b:64:dd: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:CC:BD:A0:8C:A5:C7:92:EC:9B:F8:B6:C9:F7:F9:A8:49:A4:88:6D X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:68:a0:27:78:b4:7c:66:9e:4d:13:1a:8b:7d:43:83:ae:b7: 23:c1:14:d7:0a:9c:5d:da:11:17:e5:b2:25:29:17:c7:6b:8b: ac:44:89:15:da:20:27:bc:3a:4e:20:72:4e:97:46:66:5e:8a: b8:94:24:ec:de:be:ec:21:4e:37:78:3d:9b:2d:91:3e:ce:e2: a2:24:5e:b1:40:fd:0d:f0:8f:ce:bc:88:cc:b3:6c:36:8d:77: 1c:89:94:9e:ba:ca:44:0a:6e:7d:61:d0:d4:dd:82:63:02:02: 16:27:2e:67:bb:5d:11:88:40:d7:07:2b:92:79:6f:17:58:6f: 4c:4f:5f:a7:18:22:c3:94:ff:ca:50:d2:67:26:d4:72:1d:8f: 10:6e:19:62:ca:d6:39:00:92:32:21:61:19:20:1f:f5:fc:48: 4b:93:3c:19:96:dd:e4:9f:ba:b0:0e:c6:20:1e:b0:78:ec:5c: 62:7e:84:7b:b5:59:e6:19:74:ff:87:53:60:ca:b6:be:99:20: 17:f2:39:85:fd:90:3c:a3:3c:98:a4:c7:e0:ea:c0:9d:2a:88: b7:31:75:5e:88:75:26:d1:d3:33:c0:b2:ab:da:83:33:79:48: 52:30:18:5b:77:4a:41:69:9d:e6:6e:0a:80:50:f1:68:89:1d: 5e:84:40:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjYwNDE2MTQ1MDM1WhcNMjYwNDIzMTQ1MDM1WjAYMRYwFAYD VQQDEw02OWUwZjczYi05ZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5eiv03KtgSNQUrMoY+YHjaNTick52GNLIJZ4G44jHRJRNKd4EIImb5ztzXdc cOdANqTO0i6wOPmrjfubfd6n9+Q33aiWk9fbRRIGmpxP4i8bRouW3/f7Ikh7Jkqp HgnOFT4rZH77MsBYi4GUtX52FSLCT+F2cse8KNYWOd/TcD7J4x0qH9ygRKIa6etW aRazrgPoWu6npiAusR7qc2B6xTPDaxfUzFBOIEIsAcQBG8c2ddLxB7NVbQVVKVxz qR62E98U9HeEupjwbpkOiXGoC+UAK+FFIXS3Q/LQya4q4QXrhQnBY72dlA82NXK9 Ox9Oxl6r3O7BPRd2PCkLZN2CNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK7MvaCM pceS7Jv4tsn3+ahJpIhtMB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXGigJ3i0fGaeTRMai31Dg663I8EU1wqcXdoRF+WyJSkXx2uLrESJFdogJ7w6 TiByTpdGZl6KuJQk7N6+7CFON3g9my2RPs7ioiResUD9DfCPzryIzLNsNo13HImU nrrKRApufWHQ1N2CYwICFicuZ7tdEYhA1wcrknlvF1hvTE9fpxgiw5T/ylDSZybU ch2PEG4ZYsrWOQCSMiFhGSAf9fxIS5M8GZbd5J+6sA7GIB6weOxcYn6Ee7VZ5hl0 /4dTYMq2vpkgF/I5hf2QPKM8mKTH4OrAnSqItzF1Xoh1JtHTM8Cyq9qDM3lIUjAY W3dKQWmd5m4KgFDxaIkdXoRAdQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:29:03 2026 by rpki-client