$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: Z9BBGRBMEpsXAriEbLJheRY1LpJ64mfF/LLY5OfG0BY= Subject key identifier: 90:D4:23:DB:A7:5F:15:53:3C:B3:50:6B:C2:27:D2:9E:FC:03:A9:DB Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 3544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 3532 Signing time: Sat 04 Apr 2026 14:26:06 +0000 Manifest this update: Sat 04 Apr 2026 14:26:05 +0000 Manifest next update: Sat 11 Apr 2026 14:26:05 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: AWpWQ3o+gmsnhGhzHwoCJpyCCEaX8TFROpPQxU/UjrQ=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: TYTool8z77Qm0uVA+1XtSBmD4W/ew0FLlQD2j6h3SPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Apr 4 14:26:05 2026 GMT Not After : Apr 11 14:26:05 2026 GMT Subject: CN=69d11f7e-c751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ac:86:aa:3f:03:d4:51:78:b9:14:ba:17:49: 4e:9f:99:3b:fd:8e:e8:7a:fa:2d:9d:4b:61:70:ec: 7e:dc:c5:25:ec:39:90:a1:f6:3f:7a:a1:84:f0:95: 91:d7:e9:fe:14:5b:8a:66:68:7f:20:d8:73:31:0f: 5e:27:f3:ce:6c:d9:e8:34:30:fc:7d:2f:fe:6c:be: 96:a9:13:54:4a:a9:f8:a5:4f:1d:9b:df:ec:ba:43: 9e:24:28:59:3c:bb:16:95:7c:64:2d:60:39:15:77: 32:9a:ee:37:e4:cb:5a:00:1f:be:97:b0:d5:12:d6: de:ca:ed:5f:7e:76:8b:c6:a4:c8:e6:eb:52:0a:7d: 87:0c:4e:b7:03:b8:18:52:ae:af:ca:ed:7a:14:de: d2:f7:8a:79:b1:16:52:da:e0:d8:20:78:3f:43:d6: 5f:66:0f:2f:53:3c:a3:fe:50:9c:dd:3b:e8:de:d7: b4:0e:12:aa:15:0d:ec:b3:62:1b:d7:2a:b2:93:94: 0d:a9:12:9b:2d:96:e7:e0:08:b7:84:6f:e2:b0:f2: 82:1d:d1:ac:d1:1c:28:c7:9d:a9:21:c5:54:e8:c3: 52:df:c4:1b:bf:39:0a:84:bf:09:f2:07:0f:71:d9: 8a:f8:55:4c:33:b4:ef:c3:d9:5f:08:31:af:36:b2: 75:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D4:23:DB:A7:5F:15:53:3C:B3:50:6B:C2:27:D2:9E:FC:03:A9:DB X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:38:14:a5:db:7d:cb:0e:02:b1:3f:16:28:23:b4:d1:20:e6: ee:c0:72:95:80:d4:a3:67:d9:06:bd:4a:29:d2:67:be:4d:c3: af:d9:4f:15:b7:63:a9:aa:7d:b2:ab:d8:37:2b:f5:89:5e:7e: aa:fb:0f:92:25:2c:a8:be:2e:02:1e:72:d0:57:70:f3:4c:c3: 61:27:dd:d2:a9:63:53:98:f7:1b:fb:d8:3c:49:7f:17:73:94: c9:6d:31:90:52:65:df:81:c7:32:e0:03:7d:39:22:dd:1d:71: 6b:02:26:5a:4d:40:e5:ed:76:a8:fe:2a:3f:f2:6a:8c:63:f8: 06:74:f5:1b:de:84:85:d0:c8:0d:7a:1c:51:31:a7:e2:87:a2: 08:21:f9:60:3e:35:89:d8:69:3a:64:87:50:0d:7a:32:06:80: cb:32:5e:0e:32:e6:c0:f7:4a:90:e8:82:4b:f9:3a:b8:7e:52: 93:5a:8d:d6:9b:bd:2f:ba:9b:aa:da:8c:59:64:87:78:c8:1c: 30:9a:0f:a2:62:af:4b:b4:85:ac:0b:bc:48:5e:f9:40:4f:3d: 31:5d:bc:90:dc:0d:34:bc:ee:8e:dd:c7:24:4b:ff:f0:ba:4e: b5:10:5e:5d:f4:cc:ba:1e:70:2f:47:a9:5d:57:5d:21:c5:72: 11:16:49:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjYwNDA0MTQyNjA1WhcNMjYwNDExMTQyNjA1WjAYMRYwFAYD VQQDEw02OWQxMWY3ZS1jNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyayGqj8D1FF4uRS6F0lOn5k7/Y7oevotnUthcOx+3MUl7DmQofY/eqGE8JWR 1+n+FFuKZmh/INhzMQ9eJ/PObNnoNDD8fS/+bL6WqRNUSqn4pU8dm9/sukOeJChZ PLsWlXxkLWA5FXcymu435MtaAB++l7DVEtbeyu1ffnaLxqTI5utSCn2HDE63A7gY Uq6vyu16FN7S94p5sRZS2uDYIHg/Q9ZfZg8vUzyj/lCc3Tvo3te0DhKqFQ3ss2Ib 1yqyk5QNqRKbLZbn4Ai3hG/isPKCHdGs0Rwox52pIcVU6MNS38QbvzkKhL8J8gcP cdmK+FVMM7Tvw9lfCDGvNrJ14QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJDUI9un XxVTPLNQa8In0p78A6nbMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABjgUpdt9yw4CsT8WKCO00SDm7sBylYDUo2fZBr1KKdJnvk3Dr9lPFbdjqap9 sqvYNyv1iV5+qvsPkiUsqL4uAh5y0Fdw80zDYSfd0qljU5j3G/vYPEl/F3OUyW0x kFJl34HHMuADfTki3R1xawImWk1A5e12qP4qP/JqjGP4BnT1G96EhdDIDXocUTGn 4oeiCCH5YD41idhpOmSHUA16MgaAyzJeDjLmwPdKkOiCS/k6uH5Sk1qN1pu9L7qb qtqMWWSHeMgcMJoPomKvS7SFrAu8SF75QE89MV28kNwNNLzujt3HJEv/8LpOtRBe XfTMuh5wL0epXVddIcVyERZJhA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:48:03 2026 by rpki-client