$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: rJ8MJspjaCcc8AcY4FNKMqxz3W1CcX5l+rz1uEMYoEE= Subject key identifier: 67:05:67:AE:96:41:85:89:15:D0:D4:5B:91:BB:69:A6:94:79:DD:E7 Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0ED5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0EB4 Signing time: Thu 16 Apr 2026 17:37:55 +0000 Manifest this update: Thu 16 Apr 2026 17:37:55 +0000 Manifest next update: Thu 23 Apr 2026 17:37:55 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: fWsUAqm9fnkbATcyxAOI6P5gwlk5U48tBO/hL2P3Lk8=) 2: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: x2dbHHpd6lHu6U/D+Z5h6UrLSps4ACkU8JTV2sRYFDo=) 3: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: 8ERTDv7Mz23v2Rbdakt8Gt3XJ8tL5M1Uk1kQf/u/YMs=) 4: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: 9DZO4gtEwqGm1N7r2iLEutY8W3IqMNDQEag8fkVAF7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3797 (0xed5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Apr 16 17:37:55 2026 GMT Not After : Apr 23 17:37:55 2026 GMT Subject: CN=69e11e73-27f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8e:15:a6:6a:5f:70:c4:a5:24:2b:38:d9:f0: 67:d4:40:27:be:31:8a:6e:1c:6d:7e:7f:00:af:b1: 73:71:dd:ea:a0:f4:39:f3:c5:17:37:4b:2b:39:b6: d1:57:1e:16:f4:1e:fb:05:f0:5a:ed:e8:0d:a5:19: da:ae:2b:12:74:d5:f6:95:4c:c2:d0:2c:eb:15:37: 97:17:07:85:77:57:d4:37:35:9b:a9:eb:9f:7a:c1: 69:a6:d1:78:7c:52:80:c3:44:fe:59:01:af:38:be: 79:d5:8d:67:a4:14:11:db:dc:90:3f:2d:1c:c3:3b: 4a:3a:ab:73:ff:64:d5:b2:a9:51:48:b1:08:97:db: 9c:e8:4f:12:7e:65:a7:5a:67:46:a1:b7:c2:16:bb: e3:02:b1:ff:bd:dd:a9:99:93:ff:ba:39:1e:01:ba: 1e:4f:10:26:22:31:8a:43:45:a8:3d:aa:bc:32:1e: 43:66:57:ae:58:79:12:d2:5f:ed:19:e0:b8:a6:93: 68:e9:05:0b:c9:74:2c:ac:94:87:e7:46:a1:c0:ec: 5f:88:b8:70:2b:47:30:f0:bd:32:31:da:86:30:0a: e3:c5:52:33:67:a4:43:20:88:e8:a7:bf:7f:c4:a1: 2f:e0:d7:c7:04:aa:7a:8e:20:b2:f7:bb:01:b1:b5: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:05:67:AE:96:41:85:89:15:D0:D4:5B:91:BB:69:A6:94:79:DD:E7 X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:18:8f:a2:93:7e:df:e5:1e:56:6a:16:91:5f:d4:4e:b7:ad: f6:e5:8a:b0:75:17:75:71:37:a1:86:6a:8c:4b:01:54:af:46: c9:cf:a3:ad:73:12:6e:b7:4b:a2:c4:68:b6:f5:82:a1:81:2f: ce:9e:54:62:0f:d9:6e:c6:01:0b:78:82:a6:32:71:80:c9:74: fd:2d:4f:eb:9b:e3:d3:4b:5c:a5:d3:21:af:60:74:b9:ab:e9: 0e:41:31:78:ea:49:a5:b6:b8:70:5b:74:a1:e1:d4:7c:ac:a4: 6d:f6:56:cc:50:aa:21:7b:3d:eb:a3:a2:03:7a:14:ff:8a:ee: a0:6e:9e:20:3e:9e:00:d9:ee:64:3d:f5:d4:89:d5:32:3e:e7: 64:ce:d4:78:8d:b3:45:4c:63:06:ef:70:7e:9a:2b:6d:bb:0a: 09:2c:9f:69:af:c2:5a:5b:7a:de:5b:c1:e6:92:62:57:bb:d9: c6:a3:a0:b0:ef:81:e8:d0:ed:24:d7:19:bb:a3:53:97:63:8c: 3d:1c:30:9a:5f:da:78:8d:ff:71:f0:30:35:98:ee:d8:f2:52: 4d:3e:f4:6b:55:16:73:38:65:16:13:f2:17:10:19:cd:2c:2b: 4e:af:39:84:e0:f6:21:97:da:cf:49:79:a5:be:2f:4d:5c:55: fa:29:cb:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjYwNDE2MTczNzU1WhcNMjYwNDIzMTczNzU1WjAYMRYwFAYD VQQDEw02OWUxMWU3My0yN2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY4VpmpfcMSlJCs42fBn1EAnvjGKbhxtfn8Ar7Fzcd3qoPQ588UXN0srObbR Vx4W9B77BfBa7egNpRnarisSdNX2lUzC0CzrFTeXFweFd1fUNzWbqeufesFpptF4 fFKAw0T+WQGvOL551Y1npBQR29yQPy0cwztKOqtz/2TVsqlRSLEIl9uc6E8SfmWn WmdGobfCFrvjArH/vd2pmZP/ujkeAboeTxAmIjGKQ0WoPaq8Mh5DZleuWHkS0l/t GeC4ppNo6QULyXQsrJSH50ahwOxfiLhwK0cw8L0yMdqGMArjxVIzZ6RDIIjop79/ xKEv4NfHBKp6jiCy97sBsbUPmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGcFZ66W QYWJFdDUW5G7aaaUed3nMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjhiPopN+3+UeVmoWkV/UTret9uWKsHUXdXE3oYZqjEsBVK9Gyc+jrXMSbrdL osRotvWCoYEvzp5UYg/ZbsYBC3iCpjJxgMl0/S1P65vj00tcpdMhr2B0uavpDkEx eOpJpba4cFt0oeHUfKykbfZWzFCqIXs966OiA3oU/4ruoG6eID6eANnuZD311InV Mj7nZM7UeI2zRUxjBu9wfporbbsKCSyfaa/CWlt63lvB5pJiV7vZxqOgsO+B6NDt JNcZu6NTl2OMPRwwml/aeI3/cfAwNZju2PJSTT70a1UWczhlFhPyFxAZzSwrTq85 hOD2IZfaz0l5pb4vTVxV+inLGA== -----END CERTIFICATE-----Generated at Fri Apr 17 10:41:14 2026 by rpki-client