$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: z4iNhNmVtZvERvM0UN2nJEn9Fsrh0upexix/R9D/rs0= Subject key identifier: 67:39:D5:42:2F:5C:58:7D:B4:76:18:8D:8B:70:F9:EE:5A:1A:1F:FC Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0E36 Signing time: Thu 16 Apr 2026 17:43:19 +0000 Manifest this update: Thu 16 Apr 2026 17:43:18 +0000 Manifest next update: Thu 23 Apr 2026 17:43:18 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: VXWGCstyOQdvLaWBWQAzSFnpNOFVvwSULgju1N9cXH0=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: DD1ADaREQj4FZ7nnow63JObODw7KCChH9CO7F5RCGA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF, serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Apr 16 17:43:18 2026 GMT Not After : Apr 23 17:43:18 2026 GMT Subject: CN=69e11fb7-48e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:b6:56:86:db:57:0b:7f:d0:20:cc:0a:b6: 6a:1a:c1:83:b8:92:6e:64:9b:24:8c:0b:09:f7:f1: 26:d5:6c:73:07:48:3c:92:88:44:38:d3:50:e9:c1: 1e:77:f9:13:4d:79:fe:2f:f3:0d:2a:af:f5:77:57: e5:eb:cb:76:ab:f3:dc:5a:1d:f8:ad:1d:e2:b2:13: 3d:96:ad:82:c4:c9:82:da:a1:e9:73:76:9f:2b:e2: 72:db:dd:a2:ad:b2:b6:30:58:b8:f4:89:85:c9:b7: 36:d7:b0:21:29:7b:ca:6e:d2:64:7d:28:8d:11:f1: b6:37:00:3f:c8:8f:1a:a1:9d:40:67:da:fc:f2:4f: b2:80:1c:62:dd:19:bc:97:1a:f7:dd:3a:f1:64:5d: 2a:40:fa:f8:3c:37:fb:8b:99:b0:a2:4f:49:ba:fa: 3a:d0:2d:e4:28:51:25:b6:bb:0f:14:8a:2c:bf:32: 61:ea:9b:4f:6e:c1:98:ec:74:0c:b4:39:46:26:3d: 9f:66:c6:81:3d:fd:44:85:76:b2:19:05:fb:c2:36: 07:cc:85:ed:88:d3:2d:5f:9b:d8:bb:4c:cd:89:e3: 7f:0f:8a:f3:49:1c:99:1b:b1:c0:77:13:4a:86:90: 9a:e8:7a:ac:a3:1b:d2:51:55:4a:69:ab:45:b5:96: 29:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:39:D5:42:2F:5C:58:7D:B4:76:18:8D:8B:70:F9:EE:5A:1A:1F:FC X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:cc:ae:f0:82:bb:bf:dd:04:19:2c:9b:69:2c:95:b5:72:8a: 95:b5:a2:db:02:19:96:00:52:4e:95:24:db:da:55:b2:2d:4f: 04:0c:cc:e3:42:dc:7a:64:95:73:80:cf:1c:db:10:07:3f:a1: 81:8d:03:d0:12:00:5a:41:54:09:1a:fd:47:d3:3f:32:40:3c: 14:a2:df:c5:d7:30:cb:4a:52:cb:83:48:24:57:54:ce:4b:24: a5:39:12:82:d5:e2:76:27:44:d6:37:95:ac:cb:b1:9c:a7:c6: 9d:66:73:fb:0b:53:af:16:fa:95:0f:d3:47:eb:47:bc:a9:05: 8f:14:22:88:a9:7c:de:14:f7:31:47:19:5b:88:9c:43:a8:a0: ed:4f:c7:a2:eb:df:bb:bc:b5:62:00:9a:74:89:5d:c9:80:bc: 13:9c:aa:c6:38:65:24:69:60:99:33:2d:63:d8:04:a0:8e:56: eb:4f:76:ef:a7:92:6d:e6:92:8e:40:43:2e:04:e0:2a:78:6d: f7:35:df:b3:a6:1b:f1:eb:2a:43:e0:96:69:08:5f:1c:5f:93: da:62:20:a0:05:f2:86:52:24:b8:93:23:d6:90:c0:a9:9b:6a: 84:da:25:44:5b:03:cb:bd:7f:2c:cd:a9:ad:ee:09:e1:f2:c4: 20:d0:da:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjYwNDE2MTc0MzE4WhcNMjYwNDIzMTc0MzE4WjAYMRYwFAYD VQQDEw02OWUxMWZiNy00OGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0u2VobbVwt/0CDMCrZqGsGDuJJuZJskjAsJ9/Em1WxzB0g8kohEONNQ6cEe d/kTTXn+L/MNKq/1d1fl68t2q/PcWh34rR3ishM9lq2CxMmC2qHpc3afK+Jy292i rbK2MFi49ImFybc217AhKXvKbtJkfSiNEfG2NwA/yI8aoZ1AZ9r88k+ygBxi3Rm8 lxr33TrxZF0qQPr4PDf7i5mwok9Juvo60C3kKFEltrsPFIosvzJh6ptPbsGY7HQM tDlGJj2fZsaBPf1EhXayGQX7wjYHzIXtiNMtX5vYu0zNieN/D4rzSRyZG7HAdxNK hpCa6HqsoxvSUVVKaatFtZYpzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGc51UIv XFh9tHYYjYtw+e5aGh/8MB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAz8yu8IK7v90EGSybaSyVtXKKlbWi2wIZlgBSTpUk29pVsi1PBAzM40LcemSV c4DPHNsQBz+hgY0D0BIAWkFUCRr9R9M/MkA8FKLfxdcwy0pSy4NIJFdUzkskpTkS gtXididE1jeVrMuxnKfGnWZz+wtTrxb6lQ/TR+tHvKkFjxQiiKl83hT3MUcZW4ic Q6ig7U/Houvfu7y1YgCadIldyYC8E5yqxjhlJGlgmTMtY9gEoI5W609276eSbeaS jkBDLgTgKnht9zXfs6Yb8esqQ+CWaQhfHF+T2mIgoAXyhlIkuJMj1pDAqZtqhNol RFsDy71/LM2pre4J4fLEINDalA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:49:27 2026 by rpki-client