$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft File: N3hUTiRpVIvwm1Td2APX19kPfmI.mft (raw, json) Hash identifier: k3rTGmPURlWXjyhtjXzhZ4UzUS3wcQ8imrUFNtneVbg= Subject key identifier: FC:88:5E:40:51:6F:EA:9B:AE:6C:82:8A:68:61:1C:61:B1:7E:C8:44 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft Manifest number: 0187 Signing time: Wed 15 Apr 2026 04:06:03 +0000 Manifest this update: Wed 15 Apr 2026 04:06:03 +0000 Manifest next update: Wed 22 Apr 2026 04:06:03 +0000 Files and hashes: 1: N3hUTiRpVIvwm1Td2APX19kPfmI.crl (hash: 1ENjY1L7rIrTWrcLTougFYKvT308yCZXDoGMQXZS0Ao=) 2: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (hash: F81eopWit+WRjVvoNj/Syi/UxhKzo8TJfRsuymHvyyE=) 3: 1EC90968E1F211EEA360BE22C4F9AE02.roa (hash: iGZLHjG2VueAdzLMDEEY/wlps2bNluNoPm25aV0tYgg=) 4: 1DDBD99AE1F211EEA360BE22C4F9AE02.roa (hash: 3aW6iUfzl0/knCHDbhr8nHXiBRl438L8ymDj1Nh8POQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 04:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA, serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Apr 15 04:06:03 2026 GMT Not After : Apr 22 04:06:03 2026 GMT Subject: CN=69df0eab-9de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a8:fd:53:70:81:d2:40:d5:dd:9e:8c:7f:bc: 1a:87:90:bc:b7:e4:44:49:77:02:89:ec:12:ca:5c: 2a:19:97:e9:f2:ce:b3:78:84:2b:09:b0:19:7a:f8: 76:22:b5:98:a7:59:13:df:62:f0:ff:05:9b:e1:ba: 89:f6:65:76:a8:71:49:8e:f8:89:a6:84:62:e2:f5: 49:20:b1:d6:58:24:52:bc:cc:3e:86:ae:87:14:6d: 3e:74:b5:49:8b:11:5c:b8:50:20:8c:0f:09:80:e9: af:4c:fb:e3:00:a7:ac:9a:0c:5a:44:96:ae:db:8b: 26:fd:7d:20:69:2e:43:a6:81:b9:c8:3a:9f:d8:56: 4c:f9:27:a3:d7:aa:a9:aa:60:df:ee:0c:71:c1:3c: 13:51:ed:3e:1b:88:94:c5:c0:06:0b:4a:39:d6:3b: 67:81:e8:0b:93:40:0a:7f:0e:e2:81:86:1c:a5:ab: 80:fa:b6:1c:2a:3c:dd:09:f8:2e:ea:79:a3:91:e4: c0:9c:3a:94:56:d4:1c:87:ef:94:4f:f3:86:83:de: 0b:75:94:88:b3:5f:b8:85:5b:68:b8:4d:84:dc:38: ad:70:27:07:f3:52:51:47:ea:92:e1:b9:f5:df:5b: 9f:e6:99:5f:57:41:15:1e:93:4b:bb:64:ff:c6:6e: 30:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:88:5E:40:51:6F:EA:9B:AE:6C:82:8A:68:61:1C:61:B1:7E:C8:44 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:82:59:da:7b:1e:c5:ef:69:73:f3:dc:98:61:56:94:64:09: 50:e0:79:1d:57:37:95:49:14:7f:d5:f6:16:b0:e3:5f:d8:b6: c4:85:a8:ee:d5:69:74:d8:2b:63:66:b3:26:5b:aa:51:0c:3f: 33:00:aa:e2:55:b0:94:be:f8:dc:ae:79:aa:23:49:4f:f4:3b: 24:cd:b8:81:5d:ba:f5:ea:bb:90:99:9d:83:27:64:1c:01:e5: 2b:75:2f:a7:f3:9c:0a:17:5f:c6:73:5c:71:79:d9:34:f0:b4: 45:e9:39:15:bc:85:03:48:65:38:e0:97:1a:d7:a4:32:c5:66: db:6f:90:21:83:c5:22:a2:c1:06:89:43:09:f8:5b:a1:8e:45: cc:30:4b:20:35:08:77:e4:a9:57:23:f3:f6:8c:c8:8f:bd:f0: 74:8c:21:01:99:a8:13:5a:f8:27:de:5c:76:aa:9e:9f:ee:91: 4d:66:ee:be:75:29:36:0b:cb:80:b7:7b:ac:35:6a:9d:4e:f8: c1:6a:f6:2e:b6:83:6a:b4:4c:97:a7:ce:33:c7:86:00:7b:64: 04:d8:04:f7:7f:95:d0:57:0b:56:6a:a5:a1:00:30:0c:82:b3: 98:38:5f:7b:e1:3d:84:4e:f8:d3:53:ee:57:ed:30:c9:ab:a8: 12:e8:da:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjYwNDE1MDQwNjAzWhcNMjYwNDIyMDQwNjAzWjAYMRYwFAYD VQQDEw02OWRmMGVhYi05ZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qj9U3CB0kDV3Z6Mf7wah5C8t+RESXcCiewSylwqGZfp8s6zeIQrCbAZevh2 IrWYp1kT32Lw/wWb4bqJ9mV2qHFJjviJpoRi4vVJILHWWCRSvMw+hq6HFG0+dLVJ ixFcuFAgjA8JgOmvTPvjAKesmgxaRJau24sm/X0gaS5DpoG5yDqf2FZM+Sej16qp qmDf7gxxwTwTUe0+G4iUxcAGC0o51jtngegLk0AKfw7igYYcpauA+rYcKjzdCfgu 6nmjkeTAnDqUVtQch++UT/OGg94LdZSIs1+4hVtouE2E3DitcCcH81JRR+qS4bn1 31uf5plfV0EVHpNLu2T/xm4wBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPyIXkBR b+qbrmyCimhhHGGxfshEMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJ dndtMVRkMkFQWDE5a1BmbUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeIJZ2nsexe9pc/PcmGFWlGQJUOB5HVc3lUkUf9X2FrDjX9i2xIWo7tVpdNgr Y2azJluqUQw/MwCq4lWwlL743K55qiNJT/Q7JM24gV269eq7kJmdgydkHAHlK3Uv p/OcChdfxnNccXnZNPC0Rek5FbyFA0hlOOCXGtekMsVm22+QIYPFIqLBBolDCfhb oY5FzDBLIDUId+SpVyPz9ozIj73wdIwhAZmoE1r4J95cdqqen+6RTWbuvnUpNgvL gLd7rDVqnU74wWr2LraDarRMl6fOM8eGAHtkBNgE93+V0FcLVmqloQAwDIKzmDhf e+E9hE7401PuV+0wyauoEujayQ== -----END CERTIFICATE-----Generated at Fri Apr 17 05:27:49 2026 by rpki-client