$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: 8N53xnrCSx8Ci2cE3T2ZcXwRHKqFvxqtkzp1c8KvByo= Subject key identifier: 7F:74:03:3A:81:8C:7A:FE:C5:BB:8A:B1:8B:D2:F0:3D:A3:A6:22:CD Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 035E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 0358 Signing time: Sun 05 Apr 2026 00:41:10 +0000 Manifest this update: Sun 05 Apr 2026 00:41:09 +0000 Manifest next update: Sun 12 Apr 2026 00:41:09 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: gN8D/T6uIBbtFiIdFBmsjaEYWgszSaMZemA12Rw3jV4=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: /az6S07hruj2MI8zT0Jdx+G9dMfedswkpkDUNrwlWX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 862 (0x35e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C, serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Apr 5 00:41:09 2026 GMT Not After : Apr 12 00:41:09 2026 GMT Subject: CN=69d1afa6-a2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:06:26:4f:5b:bd:9f:4d:6e:2f:4e:2a:4f:81: 4a:1f:b3:76:b7:55:3e:d8:ef:1e:2f:18:5a:e2:ea: 1f:24:29:84:1a:f4:ba:97:0d:4d:d5:1b:45:0f:a8: 68:fb:82:7a:dc:4e:98:52:1c:f5:f2:63:72:e3:72: f0:0c:96:5d:66:4e:22:d8:7f:0a:9f:6d:65:fd:b7: 27:ff:dd:8a:e7:38:02:df:82:78:e3:13:7f:fb:3e: 03:23:aa:43:b6:aa:44:30:97:0f:22:c6:04:62:b4: 6e:c2:4f:a1:35:e4:b2:be:26:ef:ab:c8:c2:a6:34: 75:6a:1d:7d:49:8e:e4:f7:77:63:9d:84:df:7c:00: 70:e6:c5:f8:7b:d2:36:11:35:ec:00:b0:c3:42:66: a8:25:dd:b1:25:b9:cb:97:44:4b:ad:de:2b:92:94: e4:68:3c:ac:ad:c3:87:e5:4f:5a:fc:28:81:50:6c: 5d:51:09:f3:a0:1a:3a:64:29:81:ec:2d:05:0d:1b: 29:7f:39:a2:d1:0b:e2:84:6b:15:f5:13:e0:52:41: 9c:a4:6f:a5:d6:24:6c:98:98:34:60:e9:e1:80:91: cd:ea:e2:9e:33:85:d7:9d:44:9e:12:5b:b2:ea:b7: 6a:d1:30:f5:65:e3:f3:f8:30:b4:64:c5:65:20:21: 84:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:74:03:3A:81:8C:7A:FE:C5:BB:8A:B1:8B:D2:F0:3D:A3:A6:22:CD X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:15:bc:f7:52:d6:e1:cd:77:d0:b9:c0:67:2e:fa:4d:9e:58: 75:d7:a0:c9:3c:17:48:90:ab:f6:e7:68:7d:ce:11:9c:29:97: ff:f4:54:31:dc:bb:c0:a7:1d:b0:06:02:51:82:a2:ac:0c:ca: 49:1b:06:40:a5:cc:f5:31:22:e5:cf:6f:93:b4:4c:93:44:36: c5:cf:ba:c9:13:c2:7e:73:c3:a5:d8:e6:8d:23:c2:cb:84:d2: c7:47:19:1f:de:d3:97:76:cf:e9:f7:d2:58:a2:6b:ca:b3:55: 5d:2a:63:25:66:e4:52:5b:ca:b0:25:8f:60:83:ad:05:39:27: bf:58:b7:1b:69:78:b7:6e:7e:4a:ce:6c:88:d1:59:ec:96:a7: ad:a2:fd:cf:e5:92:7d:00:ac:4d:33:03:15:9f:cc:ed:07:08: 59:2e:05:ee:cb:d6:26:96:ca:6c:a5:45:c3:5b:37:a7:51:e5: 05:e4:18:23:57:e0:8c:e7:97:a3:fe:e6:5f:3f:dd:4a:73:ee: 7e:52:a3:e7:3e:3a:68:00:35:d5:6f:0f:4f:03:85:a0:b7:20: b2:b6:8d:c8:22:96:0c:81:21:97:c7:ce:16:94:03:91:9f:c3: 7e:ca:f3:b1:ed:e7:98:e8:e0:e1:cf:b1:16:97:01:76:be:6a: 1b:4b:df:05 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjYwNDA1MDA0MTA5WhcNMjYwNDEyMDA0MTA5WjAYMRYwFAYD VQQDEw02OWQxYWZhNi1hMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QYmT1u9n01uL04qT4FKH7N2t1U+2O8eLxha4uofJCmEGvS6lw1N1RtFD6ho +4J63E6YUhz18mNy43LwDJZdZk4i2H8Kn21l/bcn/92K5zgC34J44xN/+z4DI6pD tqpEMJcPIsYEYrRuwk+hNeSyvibvq8jCpjR1ah19SY7k93djnYTffABw5sX4e9I2 ETXsALDDQmaoJd2xJbnLl0RLrd4rkpTkaDysrcOH5U9a/CiBUGxdUQnzoBo6ZCmB 7C0FDRspfzmi0QvihGsV9RPgUkGcpG+l1iRsmJg0YOnhgJHN6uKeM4XXnUSeEluy 6rdq0TD1ZePz+DC0ZMVlICGEOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH90AzqB jHr+xbuKsYvS8D2jpiLNMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQhW891LW4c130LnAZy76TZ5YddegyTwXSJCr9udofc4RnCmX//RUMdy7wKcd sAYCUYKirAzKSRsGQKXM9TEi5c9vk7RMk0Q2xc+6yRPCfnPDpdjmjSPCy4TSx0cZ H97Tl3bP6ffSWKJryrNVXSpjJWbkUlvKsCWPYIOtBTknv1i3G2l4t25+Ss5siNFZ 7JanraL9z+WSfQCsTTMDFZ/M7QcIWS4F7svWJpbKbKVFw1s3p1HlBeQYI1fgjOeX o/7mXz/dSnPuflKj5z46aAA11W8PTwOFoLcgsraNyCKWDIEhl8fOFpQDkZ/Dfsrz se3nmOjg4c+xFpcBdr5qG0vfBQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:30 2026 by rpki-client