$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: uoLaBpLd+0oV3wposshljsnY43X8xwtLTCvenVujoCs= Subject key identifier: 70:3A:1E:B1:AA:EB:D9:9B:24:C1:B6:44:90:A6:31:E9:F4:16:98:E8 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0BE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0BDC Signing time: Sat 04 Apr 2026 18:43:37 +0000 Manifest this update: Sat 04 Apr 2026 18:43:37 +0000 Manifest next update: Sat 11 Apr 2026 18:43:37 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: Cq3D7w35SeSt9gKNoOz1dkk5U834TOTflhXn5tbzipk=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: miF3Bd+XSLHucz0FC/5HkJ/vce5TslwDpsNS9Q4tZB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3045 (0xbe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD, serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Apr 4 18:43:37 2026 GMT Not After : Apr 11 18:43:37 2026 GMT Subject: CN=69d15bd9-612f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:54:ab:fb:b2:5f:8b:ee:9a:d7:5f:8c:9b: a6:93:07:19:ba:dd:f2:dd:80:0e:d2:61:ae:47:8a: d1:03:12:a7:28:a0:5b:fe:df:c4:f6:74:39:6a:51: 0f:99:93:05:e3:80:29:ed:fe:90:fd:cf:24:60:1f: a7:23:f0:db:7a:c4:92:8b:97:54:e6:0e:5e:48:fb: 0c:81:f2:d2:43:fc:d6:ea:3d:73:01:e8:93:c8:fe: a9:38:73:57:4a:44:78:67:0c:29:5f:fd:3c:48:02: 13:c3:79:c7:55:97:5b:8e:62:e5:1c:f7:31:40:7c: d4:e9:8b:d1:cd:ab:38:66:99:01:23:b4:24:94:46: 7d:ef:c1:f3:20:38:34:f6:2d:0b:c8:f2:f3:fe:ab: 39:38:21:ed:a2:a2:3d:e8:1a:36:94:ce:96:ad:cb: f1:e3:6c:99:97:71:76:b0:3b:66:bc:e0:f2:2b:a2: 57:71:0f:78:80:3e:88:c8:df:4e:04:3a:b2:a4:07: d5:fb:02:cf:05:04:4d:6a:74:50:bc:8a:a8:cd:b1: a9:59:25:09:df:fc:ec:37:91:85:b9:74:f9:e3:e0: 8b:08:92:28:53:89:a6:89:ab:f5:da:73:d7:5c:af: b3:71:a0:1f:db:bb:c3:b4:a9:26:14:97:9e:2b:7d: a6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3A:1E:B1:AA:EB:D9:9B:24:C1:B6:44:90:A6:31:E9:F4:16:98:E8 X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0c:14:23:ee:08:c0:48:fa:48:7a:1e:d6:d8:55:d9:5c:27: f2:2d:45:63:67:09:3d:35:06:fe:96:7a:db:ec:62:52:5d:c6: e9:e8:72:a9:bb:d3:7c:44:f0:5e:8f:e3:f1:bd:5f:93:cc:e1: c5:0c:b0:bc:06:19:28:50:b0:31:ea:52:bb:8c:cb:ed:03:1d: 00:78:ba:73:fa:2c:0a:a5:5f:4c:ab:1a:5c:f9:cd:fe:b7:aa: 3f:16:05:f8:e1:a0:b0:32:bf:1b:df:83:32:34:fb:97:c8:37: e0:23:99:bc:80:ab:56:c7:62:5c:91:be:9e:49:e7:4f:3f:b8: 89:9e:24:f8:55:0b:ef:8e:39:42:da:9d:f5:8b:04:66:94:ca: 00:25:65:eb:9e:41:a2:d3:b3:e2:d8:bc:29:63:50:13:89:1d: 94:57:4e:5e:fa:f1:74:64:6b:b0:8c:17:9c:b0:94:07:46:a6: 41:03:a5:d0:7c:e1:37:87:b6:74:71:99:b5:5f:af:b3:14:9b: 4e:1e:e5:00:0f:c5:d6:38:8d:56:48:ab:c1:43:41:d2:37:3b: fb:23:94:3c:b1:08:2e:92:b6:2c:7a:a2:d9:46:d5:56:49:dd: 5e:8d:b0:6d:98:7f:b2:c3:c4:d5:f7:7c:d7:68:7e:85:9a:d3: bc:c4:08:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjYwNDA0MTg0MzM3WhcNMjYwNDExMTg0MzM3WjAYMRYwFAYD VQQDEw02OWQxNWJkOS02MTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn9Uq/uyX4vumtdfjJumkwcZut3y3YAO0mGuR4rRAxKnKKBb/t/E9nQ5alEP mZMF44Ap7f6Q/c8kYB+nI/DbesSSi5dU5g5eSPsMgfLSQ/zW6j1zAeiTyP6pOHNX SkR4ZwwpX/08SAITw3nHVZdbjmLlHPcxQHzU6YvRzas4ZpkBI7QklEZ978HzIDg0 9i0LyPLz/qs5OCHtoqI96Bo2lM6Wrcvx42yZl3F2sDtmvODyK6JXcQ94gD6IyN9O BDqypAfV+wLPBQRNanRQvIqozbGpWSUJ3/zsN5GFuXT54+CLCJIoU4mmiav12nPX XK+zcaAf27vDtKkmFJeeK32mWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHA6HrGq 69mbJMG2RJCmMen0FpjoMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAwwUI+4IwEj6SHoe1thV2Vwn8i1FY2cJPTUG/pZ62+xiUl3G6ehyqbvTfETw Xo/j8b1fk8zhxQywvAYZKFCwMepSu4zL7QMdAHi6c/osCqVfTKsaXPnN/reqPxYF +OGgsDK/G9+DMjT7l8g34COZvICrVsdiXJG+nknnTz+4iZ4k+FUL7445Qtqd9YsE ZpTKACVl655BotOz4ti8KWNQE4kdlFdOXvrxdGRrsIwXnLCUB0amQQOl0HzhN4e2 dHGZtV+vsxSbTh7lAA/F1jiNVkirwUNB0jc7+yOUPLEILpK2LHqi2UbVVkndXo2w bZh/ssPE1fd812h+hZrTvMQI1A== -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:55 2026 by rpki-client