$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: 3QwFsktZ+f7l4TvXobdhhb7Nm2EnCTDkrKB4S19S3Po= Subject key identifier: 38:04:CB:88:16:28:30:E9:36:B6:60:E8:D8:CE:89:04:FC:CE:61:0C Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0AA2 Signing time: Wed 20 May 2026 19:33:29 +0000 Manifest this update: Wed 20 May 2026 19:33:28 +0000 Manifest next update: Wed 27 May 2026 19:33:28 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: PR8QDK9ei1LZ1nykXcw/IdkEk2rR4Fq5rHKXYwQM+Ew=) 2: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: pjTWlhBU9uLdZ8Pokz/j8Myvf4pRfYFG3vHjcrWT10w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A, serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: May 20 19:33:28 2026 GMT Not After : May 27 19:33:28 2026 GMT Subject: CN=6a0e0c88-56ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:66:25:bc:18:dd:04:62:d7:0c:68:bb:91:e4: 21:4f:8f:56:b0:68:be:54:ea:3c:0b:b4:5d:21:99: f1:52:83:06:43:47:00:bb:3a:94:e5:d5:c3:bc:f6: 7a:76:35:f5:dc:68:df:4b:f2:ac:e3:ab:28:14:c1: e1:1e:e8:21:27:3e:7b:55:1a:20:75:8f:3c:c0:c1: b1:af:76:1a:59:2b:ed:14:28:29:b4:36:15:00:4e: 5f:f0:20:1d:45:22:7c:8a:7d:6c:a3:fd:3f:52:24: 7c:96:1a:51:24:d4:8d:0e:d8:ed:9a:83:02:65:1f: 0f:c7:4c:ff:5b:7e:ce:84:7a:0e:4e:23:d7:3f:56: 38:a2:1f:5d:b6:05:89:0d:9e:fe:50:0f:10:3d:c4: 61:ba:bd:32:c0:02:59:a6:43:86:20:45:5e:e4:cc: ae:bb:db:63:43:76:d9:fc:96:2d:f4:52:dd:4b:a4: c7:eb:70:8c:76:a7:24:0c:6b:36:94:2a:9c:64:a2: db:8c:14:46:3f:13:ae:f7:ba:20:c4:26:bf:34:20: 03:90:10:68:23:74:4b:c0:17:e2:bf:09:a7:04:7f: 9d:5b:58:7b:52:18:12:8b:4c:47:8f:55:e9:ad:4f: ba:89:9f:3f:14:90:22:ca:f0:94:b2:13:57:7a:67: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:04:CB:88:16:28:30:E9:36:B6:60:E8:D8:CE:89:04:FC:CE:61:0C X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:73:0c:d9:3a:f7:0b:01:8d:95:0d:51:11:38:43:d9:9c:a0: 53:2c:0f:cf:d2:07:3e:06:57:8c:5c:7c:a6:38:3d:20:46:e9: c4:c0:74:7f:49:ae:96:bc:36:db:4d:c5:08:87:49:ac:03:5f: ca:b5:84:ab:d7:d4:d7:0c:21:d3:ec:a5:87:4c:54:6e:5a:7a: 87:f4:4c:ef:f9:17:67:c6:5a:9a:24:95:fe:87:11:eb:4f:e3: b8:c2:49:f9:b1:6e:f2:38:98:62:ef:a2:1e:ca:d2:e3:c8:e3: 01:d2:de:45:aa:b1:bc:30:3a:83:b3:d2:94:74:88:31:73:b1: 9e:69:a5:f4:bf:bd:8e:62:71:2b:d4:11:89:91:e4:be:a4:9c: d5:51:26:e3:14:20:38:55:96:e0:c4:b0:58:1d:5c:ac:46:be: 11:25:2d:80:57:85:a3:4a:5b:c5:38:2d:c6:15:ec:a3:97:0c: 88:44:34:79:ef:da:67:6b:4f:12:a4:7f:1e:13:62:4b:b4:35: 37:0e:7d:b8:8d:9e:e8:96:ac:90:21:7b:f4:54:6a:10:6c:0a: 54:67:a9:b0:32:70:85:34:8e:3b:c2:df:5c:b9:c0:bf:61:8a: 31:3c:2b:23:20:98:42:f4:1b:3f:32:23:03:7a:7b:4d:b2:4e: 7d:ea:e1:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjYwNTIwMTkzMzI4WhcNMjYwNTI3MTkzMzI4WjAYMRYwFAYD VQQDEw02YTBlMGM4OC01NmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGYlvBjdBGLXDGi7keQhT49WsGi+VOo8C7RdIZnxUoMGQ0cAuzqU5dXDvPZ6 djX13GjfS/Ks46soFMHhHughJz57VRogdY88wMGxr3YaWSvtFCgptDYVAE5f8CAd RSJ8in1so/0/UiR8lhpRJNSNDtjtmoMCZR8Px0z/W37OhHoOTiPXP1Y4oh9dtgWJ DZ7+UA8QPcRhur0ywAJZpkOGIEVe5Myuu9tjQ3bZ/JYt9FLdS6TH63CMdqckDGs2 lCqcZKLbjBRGPxOu97ogxCa/NCADkBBoI3RLwBfivwmnBH+dW1h7UhgSi0xHj1Xp rU+6iZ8/FJAiyvCUshNXemekgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDgEy4gW KDDpNrZg6NjOiQT8zmEMMB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdnMM2Tr3CwGNlQ1REThD2ZygUywPz9IHPgZXjFx8pjg9IEbpxMB0f0mulrw2 203FCIdJrANfyrWEq9fU1wwh0+ylh0xUblp6h/RM7/kXZ8ZamiSV/ocR60/juMJJ +bFu8jiYYu+iHsrS48jjAdLeRaqxvDA6g7PSlHSIMXOxnmml9L+9jmJxK9QRiZHk vqSc1VEm4xQgOFWW4MSwWB1crEa+ESUtgFeFo0pbxTgtxhXso5cMiEQ0ee/aZ2tP EqR/HhNiS7Q1Nw59uI2e6JaskCF79FRqEGwKVGepsDJwhTSOO8LfXLnAv2GKMTwr IyCYQvQbPzIjA3p7TbJOferhsw== -----END CERTIFICATE-----Generated at Thu May 21 12:26:30 2026 by rpki-client