$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.mft File: 3QrS3kp0TRozsRu2q9fm6s79wIU.mft (raw, json) Hash identifier: gBW5+b/UHAjU3go7RNnll2sfc9W7wkBH6EQ/1ITZ1RI= Subject key identifier: 56:A0:34:08:09:D4:82:CE:4A:D4:0D:F3:E2:AF:D2:C6:86:6B:89:6A Authority key identifier: DD:0A:D2:DE:4A:74:4D:1A:33:B1:1B:B6:AB:D7:E6:EA:CE:FD:C0:85 Certificate issuer: /CN=A91DC897/serialNumber=DD0AD2DE4A744D1A33B11BB6ABD7E6EACEFDC085 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QrS3kp0TRozsRu2q9fm6s79wIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.mft Manifest number: 23 Signing time: Sun 05 Apr 2026 08:11:10 +0000 Manifest this update: Sun 05 Apr 2026 08:11:10 +0000 Manifest next update: Sun 12 Apr 2026 08:11:10 +0000 Files and hashes: 1: 3QrS3kp0TRozsRu2q9fm6s79wIU.crl (hash: bXkY4rK0FBDXe9l88w6q8QZ7DLYysqFHynBJ1zW6IfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.crl rsync://rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QrS3kp0TRozsRu2q9fm6s79wIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 08:11:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC897, serialNumber=DD0AD2DE4A744D1A33B11BB6ABD7E6EACEFDC085 Validity Not Before: Apr 5 08:11:10 2026 GMT Not After : Apr 12 08:11:10 2026 GMT Subject: CN=69d2191e-65f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:25:a7:44:5a:f1:5e:fa:ce:37:42:8a:b3: 13:44:b9:26:54:9d:79:fc:8e:6b:9b:3f:20:d4:12: 73:7c:87:7a:6c:e7:11:e3:6f:c4:10:13:f2:c7:57: 07:7d:35:c8:79:68:2f:c9:32:47:4d:a5:1d:24:0f: 37:e8:f2:53:a6:8e:8c:b1:d0:7f:c7:77:ee:16:55: 0f:e8:ac:d7:f6:10:cb:d7:fc:f5:a5:c6:51:47:c3: 27:2f:c7:bf:de:c6:22:0a:19:8f:07:66:11:38:96: 98:5a:50:cd:2e:7d:12:bd:44:54:88:47:1b:23:cb: b3:60:58:a9:75:dc:80:e9:a6:c8:7d:f7:00:4f:67: c5:0e:04:f7:6d:4a:4b:be:60:88:5a:b2:f4:75:e3: 54:24:50:68:5d:5f:2c:6e:2e:34:dd:f0:ee:69:40: 9d:d4:81:2d:ff:dd:23:24:93:e7:dd:a3:a1:c0:a1: 02:15:60:16:2d:23:59:3c:8e:07:77:53:f8:40:18: ea:db:4a:8c:07:ff:a0:82:34:b6:05:d5:66:5c:44: 0f:9e:f2:32:51:a0:34:1a:3c:20:4f:16:8e:36:b8: 2f:5e:8e:2a:94:2b:e6:33:d2:fb:ff:9c:f1:5d:ad: 68:41:f4:50:3e:15:ec:be:64:c1:73:df:8b:60:32: fa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A0:34:08:09:D4:82:CE:4A:D4:0D:F3:E2:AF:D2:C6:86:6B:89:6A X509v3 Authority Key Identifier: keyid:DD:0A:D2:DE:4A:74:4D:1A:33:B1:1B:B6:AB:D7:E6:EA:CE:FD:C0:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3QrS3kp0TRozsRu2q9fm6s79wIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC897/650D00F6003011F194A257AB476F56BC/3QrS3kp0TRozsRu2q9fm6s79wIU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:29:8c:ca:50:a0:da:6c:8a:88:9f:ad:00:3c:2e:6a:2f:1f: 79:e0:50:0b:42:bf:2e:ae:b8:1d:0a:6d:25:af:39:1b:e8:76: 2a:90:ee:8e:5a:49:9f:52:b5:1b:e1:a5:77:51:e5:cc:f1:79: 08:c5:17:81:5b:24:d7:e9:0e:e9:8f:1b:c6:a4:d2:9d:cb:78: 73:30:d3:ff:6d:d3:7a:b7:ff:8e:4f:2d:af:72:e2:3d:38:52: 6a:b1:12:ff:05:77:1f:9d:3f:68:b2:18:79:d9:f4:d2:62:f4: ec:b3:26:e4:64:67:f2:7a:45:99:9b:e7:f7:98:52:b2:23:4a: 34:d4:b5:d0:e5:60:6e:86:81:ef:22:22:67:65:ac:52:0e:e8: 12:d2:9c:73:0b:95:7a:86:00:81:49:f9:48:b8:38:71:ed:ec: b2:94:7e:4d:a2:4e:07:b6:90:49:85:a5:97:05:80:56:d0:b1: 3d:fb:b2:fa:db:5a:15:d3:9f:24:b6:7c:85:8f:cd:4c:e4:a8: d7:51:b6:5f:54:3e:c4:3d:0b:45:96:f9:2b:74:10:6b:fb:c1: 9c:b5:a0:a7:ed:08:2b:62:38:60:9b:9b:f1:41:4a:77:be:28: 5d:2d:cc:1c:c2:4c:21:56:19:d0:ec:de:9c:d6:76:72:eb:e9: ad:a4:2b:ac -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzg5NzExMC8GA1UEBRMoREQwQUQyREU0QTc0NEQxQTMzQjExQkI2QUJEN0U2RUFD RUZEQzA4NTAeFw0yNjA0MDUwODExMTBaFw0yNjA0MTIwODExMTBaMBgxFjAUBgNV BAMTDTY5ZDIxOTFlLTY1ZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7niWnRFrxXvrON0KKsxNEuSZUnXn8jmubPyDUEnN8h3ps5xHjb8QQE/LHVwd9 Nch5aC/JMkdNpR0kDzfo8lOmjoyx0H/Hd+4WVQ/orNf2EMvX/PWlxlFHwycvx7/e xiIKGY8HZhE4lphaUM0ufRK9RFSIRxsjy7NgWKl13IDppsh99wBPZ8UOBPdtSku+ YIhasvR141QkUGhdXyxuLjTd8O5pQJ3UgS3/3SMkk+fdo6HAoQIVYBYtI1k8jgd3 U/hAGOrbSowH/6CCNLYF1WZcRA+e8jJRoDQaPCBPFo42uC9ejiqUK+Yz0vv/nPFd rWhB9FA+Fey+ZMFz34tgMvp/AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUVqA0CAnU gs5K1A3z4q/SxoZriWowHwYDVR0jBBgwFoAU3QrS3kp0TRozsRu2q9fm6s79wIUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDODk3LzY1MEQwMEY2MDAz MDExRjE5NEEyNTdBQjQ3NkY1NkJDLzNRclMza3AwVFJvenNSdTJxOWZtNnM3OXdJ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1FyUzNrcDBUUm96c1J1MnE5Zm02czc5d0lVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD ODk3LzY1MEQwMEY2MDAzMDExRjE5NEEyNTdBQjQ3NkY1NkJDLzNRclMza3AwVFJv enNSdTJxOWZtNnM3OXdJVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQApKYzKUKDabIqIn60APC5qLx954FALQr8urrgdCm0lrzkb6HYqkO6OWkmfUrUb 4aV3UeXM8XkIxReBWyTX6Q7pjxvGpNKdy3hzMNP/bdN6t/+OTy2vcuI9OFJqsRL/ BXcfnT9oshh52fTSYvTssybkZGfyekWZm+f3mFKyI0o01LXQ5WBuhoHvIiJnZaxS DugS0pxzC5V6hgCBSflIuDhx7eyylH5Nok4HtpBJhaWXBYBW0LE9+7L621oV058k tnyFj81M5KjXUbZfVD7EPQtFlvkrdBBr+8GctaCn7QgrYjhgm5vxQUp3vihdLcwc wkwhVhnQ7N6c1nZy6+mtpCus -----END CERTIFICATE-----Generated at Sun Apr 5 21:10:16 2026 by rpki-client