$ rpki-client -vvf rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft File: 3fikyb7AEE4WzOMhqWWpLGYURTA.mft (raw, json) Hash identifier: brLG4pDPjc4NzdQI91CvmKEa7oBQ3Cz2aR5j6zlRsmE= Subject key identifier: 60:3A:52:1B:AB:89:3E:78:B8:C0:63:21:F0:AE:B5:10:FD:B9:07:56 Authority key identifier: DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 Certificate issuer: /CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Certificate serial: 0EAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft Manifest number: 0EA0 Signing time: Sat 04 Apr 2026 17:35:16 +0000 Manifest this update: Sat 04 Apr 2026 17:35:15 +0000 Manifest next update: Sat 11 Apr 2026 17:35:15 +0000 Files and hashes: 1: 3fikyb7AEE4WzOMhqWWpLGYURTA.crl (hash: u3xi1zzl4mOhUab+dzSiGskwcv0m7Bk9efM7maR/PH4=) 2: 215FAD42B98611E9A053044FC4F9AE02.roa (hash: o9Abyi/MKdfpzHukIV0+6UFoiozAzGZP2RU3WmijfSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3757 (0xead) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915518E, serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Validity Not Before: Apr 4 17:35:15 2026 GMT Not After : Apr 11 17:35:15 2026 GMT Subject: CN=69d14bd4-be09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d6:bd:a4:99:0f:9d:06:9e:84:f0:88:2a:4c: 59:7f:fe:77:6c:75:f1:40:82:e0:1b:3c:1b:12:9c: 06:9f:77:a5:71:b2:c2:98:01:56:77:4f:dc:c2:c1: aa:1a:19:b0:14:2d:21:50:c0:68:9a:ce:f6:22:f7: c8:2b:8b:9d:69:53:c3:a3:c0:45:66:82:5b:1c:0c: 8b:0e:4b:5c:77:91:57:4d:a8:08:07:9f:2f:85:f8: ae:dd:a9:ec:7b:c7:ca:0a:05:d2:b0:19:50:aa:45: cf:47:88:a5:9d:a9:e7:51:4a:e0:e6:dc:3c:f6:33: fb:aa:70:73:c2:04:d9:98:5c:48:e4:ba:ac:7e:39: 8a:41:6b:47:30:8b:6d:0b:49:87:ae:87:69:a4:76: 7c:82:74:87:5d:9a:df:73:6c:d8:88:df:e5:71:09: 4d:c0:30:d0:eb:0d:ff:bf:99:5f:8f:6d:8a:a7:ad: d5:6c:3e:ad:08:34:b9:63:b7:c9:cb:d0:58:d2:0b: 4f:a8:7a:66:fc:ee:1d:2a:0d:ff:0c:c3:8e:11:f0: 0b:cb:02:92:76:dd:e8:c9:9f:7e:f9:5f:3c:18:06: d9:e6:7e:47:08:95:8c:87:a1:08:b7:ec:ae:48:18: 84:55:9c:03:1e:62:44:78:59:bf:1f:4e:c0:69:34: 02:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3A:52:1B:AB:89:3E:78:B8:C0:63:21:F0:AE:B5:10:FD:B9:07:56 X509v3 Authority Key Identifier: keyid:DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:3e:1a:a8:34:a6:5c:e2:9c:f9:2b:ff:4b:3d:0b:6b:55:f4: cd:15:26:66:c6:98:44:b1:52:1e:38:9d:0b:c4:fe:be:0b:d2: cb:31:e5:dd:9f:95:84:41:6d:8e:18:9e:12:f9:d1:59:aa:fc: bc:ec:64:06:fb:a5:46:44:30:f7:5c:2d:47:b1:a3:0d:c3:3f: a1:89:50:d5:89:ce:44:06:fe:d0:19:2f:f9:68:03:ff:72:bb: a5:a7:1b:d2:7f:54:d0:ef:92:2c:16:fa:8f:da:e6:d1:0b:8c: 31:63:a2:0b:3b:1e:db:76:27:e9:85:d1:76:8b:28:78:bd:14: 4a:29:1e:98:c5:21:11:d0:d4:dd:35:b3:5a:d9:0e:fd:85:4e: 5a:d2:6d:c9:d6:0d:be:68:f7:48:9f:bb:43:ea:32:84:bf:58: 14:87:20:53:f0:e7:ae:b7:60:05:61:cf:e2:ea:4a:dd:53:eb: 95:0d:b2:d8:6c:9c:c6:fc:9b:2c:7f:97:2d:d6:da:20:d5:13: da:0f:16:37:3d:98:a7:da:2b:5f:ff:3b:3a:4e:54:bf:cd:4f: f9:c5:34:ed:70:38:d7:ee:09:23:1d:8c:57:8c:01:16:2b:71: 50:cf:8d:47:42:2d:ca:94:90:d1:2f:af:bf:70:ce:d2:68:c5: 2d:f5:b4:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxOEUxMTAvBgNVBAUTKERERjhBNEM5QkVDMDEwNEUxNkNDRTMyMUE5NjVBOTJD NjYxNDQ1MzAwHhcNMjYwNDA0MTczNTE1WhcNMjYwNDExMTczNTE1WjAYMRYwFAYD VQQDEw02OWQxNGJkNC1iZTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29a9pJkPnQaehPCIKkxZf/53bHXxQILgGzwbEpwGn3elcbLCmAFWd0/cwsGq GhmwFC0hUMBoms72IvfIK4udaVPDo8BFZoJbHAyLDktcd5FXTagIB58vhfiu3ans e8fKCgXSsBlQqkXPR4ilnannUUrg5tw89jP7qnBzwgTZmFxI5LqsfjmKQWtHMItt C0mHrodppHZ8gnSHXZrfc2zYiN/lcQlNwDDQ6w3/v5lfj22Kp63VbD6tCDS5Y7fJ y9BY0gtPqHpm/O4dKg3/DMOOEfALywKSdt3oyZ9++V88GAbZ5n5HCJWMh6EIt+yu SBiEVZwDHmJEeFm/H07AaTQCAwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGA6Uhur iT54uMBjIfCutRD9uQdWMB8GA1UdIwQYMBaAFN34pMm+wBBOFszjIallqSxmFEUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE4RS9BNzk2RTkwQUFF MDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVFNFd6T01ocVdXcExHWVVS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaWt5YjdBRUU0V3pPTWhxV1dwTEdZVVJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE4RS9BNzk2RTkwQUFFMDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVF NFd6T01ocVdXcExHWVVSVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIT4aqDSmXOKc+Sv/Sz0La1X0zRUmZsaYRLFSHjidC8T+vgvSyzHl3Z+VhEFt jhieEvnRWar8vOxkBvulRkQw91wtR7GjDcM/oYlQ1YnORAb+0Bkv+WgD/3K7pacb 0n9U0O+SLBb6j9rm0QuMMWOiCzse23Yn6YXRdosoeL0USikemMUhEdDU3TWzWtkO /YVOWtJtydYNvmj3SJ+7Q+oyhL9YFIcgU/DnrrdgBWHP4upK3VPrlQ2y2Gycxvyb LH+XLdbaINUT2g8WNz2Yp9orX/87Ok5Uv81P+cU07XA41+4JIx2MV4wBFitxUM+N R0ItypSQ0S+vv3DO0mjFLfW0NQ== -----END CERTIFICATE-----Generated at Sun Apr 5 22:25:23 2026 by rpki-client