$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft File: r3YSV94snaXzPnHGQZ4meoYt-2I.mft (raw, json) Hash identifier: zDR4Hfjw840MclY9f8R3akluQ8wWnu+kSmXVhe9OaYc= Subject key identifier: 86:40:FE:29:DE:18:D9:F0:9A:6E:03:94:14:33:AB:CB:43:F9:3F:4E Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft Manifest number: DF Signing time: Fri 17 Apr 2026 06:17:25 +0000 Manifest this update: Fri 17 Apr 2026 06:17:25 +0000 Manifest next update: Fri 24 Apr 2026 06:17:25 +0000 Files and hashes: 1: r3YSV94snaXzPnHGQZ4meoYt-2I.crl (hash: JcHRTCjED30G8TnD2bOu1E88vmdXEWS3W6tHTtSbAXc=) 2: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (hash: TBjFZLoAcX8XTz4OXPD8ohPadAtZD+uq/tBStT0J3HQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Apr 17 06:17:25 2026 GMT Not After : Apr 24 06:17:25 2026 GMT Subject: CN=69e1d075-c365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3a:55:bc:86:29:07:e5:0f:c4:a3:54:a7:5b: 27:fc:17:34:be:a2:61:f8:ef:7b:5b:1e:b3:b7:9e: d4:54:83:a5:6e:07:46:d2:fa:3b:fa:65:06:da:e7: 9b:ff:c1:0e:9a:a9:ae:36:7b:58:63:81:e6:74:93: a9:3a:bd:c5:1b:fd:0e:85:f9:32:ad:c5:10:9e:b0: 4a:47:16:c5:2e:b9:09:81:e6:9a:04:ec:87:2b:c6: 03:2c:4f:54:07:5e:99:87:57:f0:e7:d1:25:3c:80: 90:72:ee:6c:38:dd:d8:b6:b9:8b:4d:ba:d1:56:44: 90:8f:8f:c3:7c:83:d8:0b:94:b9:69:4b:ac:05:31: 32:cb:5f:df:65:74:c2:be:b3:14:a1:82:cf:e9:01: 57:e4:bc:62:56:e9:54:89:24:82:97:d8:85:59:e7: 9e:1e:d7:2e:57:66:a7:74:02:c0:d6:aa:4b:56:dc: 2c:0f:5c:bb:bb:e1:af:7c:6e:47:a5:43:1e:18:11: 4d:7e:15:e3:a2:56:a3:1f:f3:b3:4d:9a:a9:94:1c: 4c:10:b1:f1:8d:10:b7:d3:ff:f2:ce:18:4a:fc:b3: e2:0a:09:b8:86:37:43:75:f3:2b:63:e1:cf:21:98: ec:fb:21:17:52:f6:55:43:26:54:30:d5:b9:38:76: 2b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:40:FE:29:DE:18:D9:F0:9A:6E:03:94:14:33:AB:CB:43:F9:3F:4E X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ee:b7:f1:e2:9f:94:f6:4f:17:c9:05:4f:b1:88:27:30:c2: 30:2a:a3:32:83:62:b0:59:1b:59:2c:23:12:da:c0:67:92:a8: 2d:9e:99:ab:10:f1:88:58:6c:cf:e3:13:e7:be:17:17:ad:3b: 78:33:20:46:06:ad:3f:7b:b7:55:c9:7e:c7:96:ae:2e:91:a6: 98:9a:1f:da:99:6a:cf:90:5f:5b:ef:42:30:1a:69:83:f8:46: d1:53:e3:bb:85:ea:03:bc:2b:68:c1:14:2a:fe:8c:30:b4:d6: 38:d6:af:df:85:67:d9:5f:96:c0:fd:a3:32:e2:d2:79:67:8a: 26:8b:72:b7:c1:b2:47:eb:34:d7:a7:ff:0f:9b:80:6b:83:8e: de:e5:e0:a6:9e:13:1f:f9:0d:78:b3:ce:0f:03:f7:d2:ad:fc: d1:68:d8:ca:bb:86:19:99:bd:f0:87:a9:77:73:82:4e:31:d7: bd:48:ad:27:fd:90:1b:7b:51:2f:1e:88:8f:20:91:78:1f:8e: bc:ca:a4:55:6a:2a:dc:43:e3:1a:07:b1:44:23:de:2d:6c:61: ef:11:3c:5d:62:4e:23:e0:fa:df:9c:ab:de:86:7b:47:b1:f6: 19:4f:4d:46:01:64:1c:80:77:82:74:cd:f1:9d:57:54:ca:6b: b7:f8:bf:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRENTQxMTAvBgNVBAUTKEFGNzYxMjU3REUyQzlEQTVGMzNFNzFDNjQxOUUyNjdB ODYyREZCNjIwHhcNMjYwNDE3MDYxNzI1WhcNMjYwNDI0MDYxNzI1WjAYMRYwFAYD VQQDEw02OWUxZDA3NS1jMzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTpVvIYpB+UPxKNUp1sn/Bc0vqJh+O97Wx6zt57UVIOlbgdG0vo7+mUG2ueb /8EOmqmuNntYY4HmdJOpOr3FG/0OhfkyrcUQnrBKRxbFLrkJgeaaBOyHK8YDLE9U B16Zh1fw59ElPICQcu5sON3YtrmLTbrRVkSQj4/DfIPYC5S5aUusBTEyy1/fZXTC vrMUoYLP6QFX5LxiVulUiSSCl9iFWeeeHtcuV2andALA1qpLVtwsD1y7u+GvfG5H pUMeGBFNfhXjolajH/OzTZqplBxMELHxjRC30//yzhhK/LPiCgm4hjdDdfMrY+HP IZjs+yEXUvZVQyZUMNW5OHYr7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZA/ine GNnwmm4DlBQzq8tD+T9OMB8GA1UdIwQYMBaAFK92ElfeLJ2l8z5xxkGeJnqGLfti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEQ1NC9EMjg3N0RCNkU5 RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25hWHpQbkhHUVo0bWVvWXQt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEQ1NC9EMjg3N0RCNkU5RUIxMUVGQTQ1NDJCMThDNEY5QUUwMi9yM1lTVjk0c25h WHpQbkhHUVo0bWVvWXQtMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT+638eKflPZPF8kFT7GIJzDCMCqjMoNisFkbWSwjEtrAZ5KoLZ6ZqxDxiFhs z+MT574XF607eDMgRgatP3u3Vcl+x5auLpGmmJof2plqz5BfW+9CMBppg/hG0VPj u4XqA7wraMEUKv6MMLTWONav34Vn2V+WwP2jMuLSeWeKJotyt8GyR+s016f/D5uA a4OO3uXgpp4TH/kNeLPODwP30q380WjYyruGGZm98Iepd3OCTjHXvUitJ/2QG3tR Lx6IjyCReB+OvMqkVWoq3EPjGgexRCPeLWxh7xE8XWJOI+D635yr3oZ7R7H2GU9N RgFkHIB3gnTN8Z1XVMprt/i/JA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:40:22 2026 by rpki-client