$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft File: 3lBUK-oQggGncsALyfJRrRf6ls0.mft (raw, json) Hash identifier: izGhJ+oH5EXCSfTK2rnU7K++PhfGc+pJSLFupNUGPFg= Subject key identifier: 33:B7:9C:06:4D:DD:A9:EC:C0:23:77:5C:71:32:12:37:B5:63:D4:E2 Authority key identifier: DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD Certificate issuer: /CN=A91DEBE3/serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Certificate serial: 0D66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft Manifest number: 0D25 Signing time: Thu 16 Apr 2026 18:07:21 +0000 Manifest this update: Thu 16 Apr 2026 18:07:20 +0000 Manifest next update: Thu 23 Apr 2026 18:07:20 +0000 Files and hashes: 1: 3lBUK-oQggGncsALyfJRrRf6ls0.crl (hash: RzKzMvr1Mbd3F47jnDkCY0mlDMNmEkFfczUqhztd7IY=) 2: AF0508E8B1EE11EF93E70F63C4F9AE02.roa (hash: /T4LYRFjurWo+sXlwXITQRtGPqnCSql2DU5VkiOEfeM=) 3: D59CB8F4968511EF93AE8239C4F9AE02.roa (hash: 4IRrcima1swbv66pFPjLf2ozuN5JrXfc27o1SCSzjAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3430 (0xd66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEBE3, serialNumber=DE50542BEA108201A772C00BC9F251AD17FA96CD Validity Not Before: Apr 16 18:07:20 2026 GMT Not After : Apr 23 18:07:20 2026 GMT Subject: CN=69e12558-a5ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:71:9a:04:3c:70:e2:da:ef:a3:d5:ec:78:9c: 65:41:f5:a7:bd:80:73:f3:54:ad:b7:26:8f:db:e6: cb:ef:33:8d:fe:cb:55:6e:47:ac:5b:09:73:e9:f5: 70:02:8b:89:f8:d0:13:31:bd:18:b3:f3:15:8f:15: a7:38:b2:ae:95:82:74:ba:f2:bc:56:cd:a2:4b:ce: 05:25:e8:c5:32:9b:ac:87:7d:3e:fd:93:92:ff:95: 8e:67:2d:2a:d8:c0:6f:d3:60:cb:28:b7:a5:93:0f: a3:39:1b:d7:a1:c8:3b:0e:ec:05:fa:5d:dd:be:1f: 56:4b:56:d2:33:a6:6a:c2:c1:f8:ba:ad:13:bd:6c: ac:ac:6d:f0:5b:74:f8:5b:1a:b9:c6:55:9d:f4:4d: 4b:75:8a:00:03:c1:24:8a:96:80:31:58:39:d5:ea: 2e:8f:db:dc:89:02:2c:2b:67:87:f4:fa:65:02:e3: 81:fb:2f:4e:49:73:df:7a:e0:e7:9f:d5:72:b6:ff: 8c:2a:15:98:58:0c:c2:02:02:5b:f5:e8:77:f5:6e: 4e:f3:34:31:ee:46:c0:6a:9b:a8:21:70:30:27:11: f7:29:f0:14:d9:d7:05:d3:9c:7d:16:eb:cc:53:00: a0:a3:cf:5b:9d:6d:c6:05:de:b9:c0:5d:16:53:6e: 27:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B7:9C:06:4D:DD:A9:EC:C0:23:77:5C:71:32:12:37:B5:63:D4:E2 X509v3 Authority Key Identifier: keyid:DE:50:54:2B:EA:10:82:01:A7:72:C0:0B:C9:F2:51:AD:17:FA:96:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lBUK-oQggGncsALyfJRrRf6ls0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEBE3/80AE10C6045011EABA82C415C4F9AE02/3lBUK-oQggGncsALyfJRrRf6ls0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:8b:20:75:31:5c:29:e8:b0:9a:41:73:82:86:8b:2b:32:64: d5:5e:0b:08:61:3d:ae:9e:7d:e5:ab:e0:48:33:1d:1e:ae:1d: 8a:04:ac:64:8c:9c:64:fb:5f:9b:90:4a:46:30:06:f6:80:e4: e3:90:eb:0c:23:ae:56:17:07:5e:54:6c:6e:08:0e:41:31:9f: da:34:a8:45:e1:7b:df:6c:22:8b:f6:61:2a:75:ae:48:67:3e: 13:0d:c1:1b:71:a0:78:1e:c1:9d:24:3e:22:b0:3a:36:2a:32: fc:65:63:fc:bf:1f:5b:b9:e5:8f:89:0a:17:cf:61:cb:bf:64: d2:56:09:01:a6:94:18:1c:9c:e8:30:a6:66:b0:8e:2a:32:04: 51:1b:fb:0c:df:39:22:fc:4e:76:eb:81:3d:95:17:43:bf:e3: 88:a8:a6:d4:7c:0e:06:a2:ff:87:cd:bc:99:6e:f7:e0:a5:a5: c5:0c:bb:0b:93:1f:cc:f4:53:7b:7e:ba:2a:15:da:93:de:67: 6a:62:dc:0f:22:e1:58:0e:5c:8f:89:97:60:8d:46:1f:4b:54: 8c:41:c4:b5:88:1b:6b:18:75:f1:9b:2c:af:1e:b5:eb:cc:e3: 23:0b:f7:c8:27:57:30:08:ab:31:0a:28:59:b8:b4:d3:fc:9c: 8c:92:9c:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCRTMxMTAvBgNVBAUTKERFNTA1NDJCRUExMDgyMDFBNzcyQzAwQkM5RjI1MUFE MTdGQTk2Q0QwHhcNMjYwNDE2MTgwNzIwWhcNMjYwNDIzMTgwNzIwWjAYMRYwFAYD VQQDEw02OWUxMjU1OC1hNWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXGaBDxw4trvo9XseJxlQfWnvYBz81SttyaP2+bL7zON/stVbkesWwlz6fVw AouJ+NATMb0Ys/MVjxWnOLKulYJ0uvK8Vs2iS84FJejFMpush30+/ZOS/5WOZy0q 2MBv02DLKLelkw+jORvXocg7DuwF+l3dvh9WS1bSM6ZqwsH4uq0TvWysrG3wW3T4 Wxq5xlWd9E1LdYoAA8EkipaAMVg51eouj9vciQIsK2eH9PplAuOB+y9OSXPfeuDn n9Vytv+MKhWYWAzCAgJb9eh39W5O8zQx7kbAapuoIXAwJxH3KfAU2dcF05x9FuvM UwCgo89bnW3GBd65wF0WU24n/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDO3nAZN 3answCN3XHEyEje1Y9TiMB8GA1UdIwQYMBaAFN5QVCvqEIIBp3LAC8nyUa0X+pbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUJFMy84MEFFMTBDNjA0 NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdnR25jc0FMeWZKUnJSZjZs czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsQlVLLW9RZ2dHbmNzQUx5ZkpSclJmNmxzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUJFMy84MEFFMTBDNjA0NTAxMUVBQkE4MkM0MTVDNEY5QUUwMi8zbEJVSy1vUWdn R25jc0FMeWZKUnJSZjZsczAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIIsgdTFcKeiwmkFzgoaLKzJk1V4LCGE9rp595avgSDMdHq4digSsZIycZPtf m5BKRjAG9oDk45DrDCOuVhcHXlRsbggOQTGf2jSoReF732wii/ZhKnWuSGc+Ew3B G3GgeB7BnSQ+IrA6Nioy/GVj/L8fW7nlj4kKF89hy79k0lYJAaaUGByc6DCmZrCO KjIEURv7DN85IvxOduuBPZUXQ7/jiKim1HwOBqL/h828mW734KWlxQy7C5MfzPRT e366KhXak95namLcDyLhWA5cj4mXYI1GH0tUjEHEtYgbaxh18Zssrx6168zjIwv3 yCdXMAirMQooWbi00/ycjJKc1g== -----END CERTIFICATE-----Generated at Fri Apr 17 18:10:05 2026 by rpki-client