$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: Rl8IxvayCzwAqIbgYfnXZF8plFUFFiWjLAYalGOuM5Y= Subject key identifier: 3A:42:54:5C:8D:EE:5C:27:CA:D9:E4:FB:75:15:3C:68:FB:A2:FE:79 Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 3522 Signing time: Sat 04 Apr 2026 15:05:42 +0000 Manifest this update: Sat 04 Apr 2026 15:05:41 +0000 Manifest next update: Sat 11 Apr 2026 15:05:41 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: SwOSCb5Smp7ep7oweKqLk8hv6Kp+DHORpZMyZTbqRT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13605 (0x3525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47, serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Apr 4 15:05:41 2026 GMT Not After : Apr 11 15:05:41 2026 GMT Subject: CN=69d128c6-4a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:13:7c:d3:86:63:eb:54:39:24:12:11:ad:7e: e0:a6:6a:ce:b0:77:e3:b4:b6:94:9b:30:a6:14:40: 11:c0:88:81:82:52:35:05:e8:21:36:99:49:3a:c8: 97:19:72:f1:aa:f8:68:1c:85:0a:57:f7:40:ba:39: 6c:da:c0:04:a7:b9:30:61:1d:de:d3:f0:98:98:e4: 8e:ca:3a:22:03:8b:49:10:45:52:66:0b:df:eb:75: 63:bf:10:c0:51:98:6c:c6:e2:2e:6e:09:55:f0:f0: dd:49:49:2b:00:37:10:b5:cd:59:b7:36:ea:16:00: 62:5b:3e:1b:29:bb:99:19:09:4c:6f:0c:39:19:a6: bf:8e:00:6b:37:85:33:b9:68:89:53:b3:39:15:13: 58:9e:89:27:55:28:e4:d2:c1:2b:94:74:36:6c:39: ef:40:49:a6:f8:2d:e6:4f:b3:e8:ee:e6:3f:17:6c: a9:0e:b1:b8:be:43:72:bb:7d:21:68:41:ce:32:45: 0f:a6:80:d5:23:7c:31:5f:ea:df:97:1b:ad:ab:e6: aa:ca:30:30:f3:ac:21:af:49:3b:90:dc:a0:ed:c4: 3d:ff:0f:b1:4e:5d:8b:e5:5d:a6:23:5e:a6:06:4d: 0d:e9:1e:02:e5:42:ba:b1:4e:fb:74:7a:91:8d:67: 8d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:42:54:5C:8D:EE:5C:27:CA:D9:E4:FB:75:15:3C:68:FB:A2:FE:79 X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:30:53:b5:49:65:88:ed:07:ec:84:3c:61:67:9b:40:d3:f2: 6d:71:cd:34:d3:64:53:5e:5e:d1:fe:f7:3c:45:7d:56:28:70: 9d:66:08:2a:47:77:dc:b7:50:45:f9:1d:0a:fb:3e:aa:b0:b1: e1:29:d9:57:22:11:e0:f9:9b:0c:6f:2e:e0:c9:d2:90:9e:44: 37:42:15:f7:13:54:26:e1:82:96:ba:96:a2:49:4f:41:c3:e1: 15:7b:f5:0a:a8:75:f1:88:5a:61:83:cf:e1:4c:f4:21:2a:0f: d0:27:02:5a:e6:a4:0a:cc:c1:0f:ae:51:05:ef:bf:ca:a2:75: 0e:58:82:2b:38:e6:0d:e2:06:5d:24:64:d3:bb:30:3e:20:f3: ec:db:64:a4:8b:a9:88:44:4b:74:8e:57:66:9c:69:74:c4:38: 06:2e:c4:b4:58:56:68:1b:c9:9d:82:5d:8d:ca:ad:3e:26:3c: 9e:a7:a9:bb:61:c2:c2:43:4e:9a:b5:51:b1:4d:c5:26:fd:32: 07:3f:6c:ff:fb:3c:eb:2e:7b:3c:a9:c2:e5:a2:06:b6:c0:58: b8:d5:a6:e7:8d:3a:ca:21:da:16:80:42:10:82:3f:74:e5:e8: b2:72:73:86:15:92:a2:52:e6:ca:12:61:9f:e9:aa:8f:9c:47: 48:85:f5:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjYwNDA0MTUwNTQxWhcNMjYwNDExMTUwNTQxWjAYMRYwFAYD VQQDEw02OWQxMjhjNi00YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBN804Zj61Q5JBIRrX7gpmrOsHfjtLaUmzCmFEARwIiBglI1BeghNplJOsiX GXLxqvhoHIUKV/dAujls2sAEp7kwYR3e0/CYmOSOyjoiA4tJEEVSZgvf63VjvxDA UZhsxuIubglV8PDdSUkrADcQtc1ZtzbqFgBiWz4bKbuZGQlMbww5Gaa/jgBrN4Uz uWiJU7M5FRNYnoknVSjk0sErlHQ2bDnvQEmm+C3mT7Po7uY/F2ypDrG4vkNyu30h aEHOMkUPpoDVI3wxX+rflxutq+aqyjAw86whr0k7kNyg7cQ9/w+xTl2L5V2mI16m Bk0N6R4C5UK6sU77dHqRjWeNbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDpCVFyN 7lwnytnk+3UVPGj7ov55MB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVDBTtUlliO0H7IQ8YWebQNPybXHNNNNkU15e0f73PEV9VihwnWYIKkd33LdQ RfkdCvs+qrCx4SnZVyIR4PmbDG8u4MnSkJ5EN0IV9xNUJuGClrqWoklPQcPhFXv1 Cqh18YhaYYPP4Uz0ISoP0CcCWuakCszBD65RBe+/yqJ1DliCKzjmDeIGXSRk07sw PiDz7NtkpIupiERLdI5XZpxpdMQ4Bi7EtFhWaBvJnYJdjcqtPiY8nqepu2HCwkNO mrVRsU3FJv0yBz9s//s86y57PKnC5aIGtsBYuNWm5406yiHaFoBCEII/dOXosnJz hhWSolLmyhJhn+mqj5xHSIX19A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:57 2026 by rpki-client