$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: +mPzuyQCgqDu7JCey4P1P8qCCR1pkxQvlbqjrJiYi4g= Subject key identifier: 7A:44:64:B3:E2:C2:8E:F3:B2:8B:59:AC:6C:12:A9:9D:D3:CA:23:8B Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 034B Signing time: Sun 05 Apr 2026 00:42:59 +0000 Manifest this update: Sun 05 Apr 2026 00:42:58 +0000 Manifest next update: Sun 12 Apr 2026 00:42:58 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: Q3caeNlcXrczLGz/5iCQ4xDXLw0gAMukZkIKwjBocZQ=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: ogTzdNf1gHD/xTlxA8D6h7pqJeFDXQYw5yT4vowpzqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA, serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Apr 5 00:42:58 2026 GMT Not After : Apr 12 00:42:58 2026 GMT Subject: CN=69d1b012-7b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b4:0e:b1:a7:ac:cc:b9:97:a9:49:bb:c9:72: c2:3e:ed:c4:bd:13:a2:83:f6:b6:a8:28:c4:a5:b3: 2f:55:50:ef:f2:c0:e0:0e:28:bc:14:72:26:c6:55: 1f:f6:01:be:20:ad:c4:36:1c:88:4d:d5:96:09:b0: 4f:93:70:37:79:e1:8b:31:b6:0b:c4:70:4c:bb:51: dc:19:a4:b5:25:5a:6f:3c:df:d4:df:2a:f5:59:61: f3:25:e7:3f:70:71:72:69:e6:9e:1e:35:97:59:ee: 3f:15:c7:51:9d:62:90:fc:d5:75:75:ff:f3:75:48: ed:ff:55:97:e3:3e:94:20:ec:bd:61:12:41:c3:71: b9:87:81:fa:27:4f:fd:da:d9:4e:af:4e:22:5a:3c: 09:8c:60:d4:1f:d5:90:c6:e3:6e:db:9d:c1:43:33: 66:6b:e6:86:a2:e5:ce:0d:3c:d0:df:a2:60:bc:eb: 31:40:54:ef:4a:cc:a3:7c:0a:f0:c8:a1:71:68:ad: e2:cc:cf:83:50:d8:23:6c:36:1b:95:a0:5d:09:2e: fd:b7:54:6f:0e:7c:ea:23:ef:5d:20:88:14:b9:e9: 6b:d1:fb:42:2b:1b:17:fc:4b:37:bc:22:68:bb:45: 6c:26:f0:4f:0c:db:eb:0f:aa:24:36:b4:b5:da:5d: b2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:44:64:B3:E2:C2:8E:F3:B2:8B:59:AC:6C:12:A9:9D:D3:CA:23:8B X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:73:6e:f7:05:1d:60:36:3e:15:d9:84:20:66:cf:ae:00:7a: 87:f1:be:98:8a:72:57:bd:9c:04:a5:57:ce:46:d8:98:ab:10: e8:7b:84:14:6e:95:ed:cf:be:c3:03:60:2e:a3:88:84:34:d5: 4c:af:29:6b:35:1e:e0:ec:11:97:a9:52:bd:34:2a:6e:c6:44: 10:8a:5b:3f:6d:8c:cb:c3:38:cb:90:cb:45:7f:6a:74:3a:6d: 70:8b:b3:44:7c:70:b8:ad:1f:4f:16:f4:9d:fa:c8:57:1a:20: d0:65:4e:a1:e2:ba:e2:ea:5a:f0:28:70:81:d1:d1:5c:11:6e: 47:4f:28:51:1c:84:52:7e:eb:0d:15:ae:da:9e:9c:f1:0c:cd: 50:94:c6:3c:b6:0a:37:64:82:36:2b:ce:65:d3:e7:bd:9d:59: 46:52:b4:42:4a:5f:ca:e6:1a:e9:a8:83:97:8a:46:10:33:1c: 8e:c9:61:ef:e6:59:93:15:0a:5b:2e:29:25:c2:e8:4e:a7:46: a5:85:5e:04:75:2e:12:a5:2e:a0:27:73:f4:74:10:73:5f:07: 2f:36:88:ca:d2:1e:1d:d0:3e:f7:2d:6d:09:7c:ac:4f:bb:2a: 5f:fe:0c:75:1e:c1:93:81:99:28:fb:ed:13:3b:e3:32:2c:eb: 8d:8d:89:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjYwNDA1MDA0MjU4WhcNMjYwNDEyMDA0MjU4WjAYMRYwFAYD VQQDEw02OWQxYjAxMi03YjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLQOsaeszLmXqUm7yXLCPu3EvROig/a2qCjEpbMvVVDv8sDgDii8FHImxlUf 9gG+IK3ENhyITdWWCbBPk3A3eeGLMbYLxHBMu1HcGaS1JVpvPN/U3yr1WWHzJec/ cHFyaeaeHjWXWe4/FcdRnWKQ/NV1df/zdUjt/1WX4z6UIOy9YRJBw3G5h4H6J0/9 2tlOr04iWjwJjGDUH9WQxuNu253BQzNma+aGouXODTzQ36JgvOsxQFTvSsyjfArw yKFxaK3izM+DUNgjbDYblaBdCS79t1RvDnzqI+9dIIgUuelr0ftCKxsX/Es3vCJo u0VsJvBPDNvrD6okNrS12l2y/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHpEZLPi wo7zsotZrGwSqZ3TyiOLMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeHNu9wUdYDY+FdmEIGbPrgB6h/G+mIpyV72cBKVXzkbYmKsQ6HuEFG6V7c++ wwNgLqOIhDTVTK8pazUe4OwRl6lSvTQqbsZEEIpbP22My8M4y5DLRX9qdDptcIuz RHxwuK0fTxb0nfrIVxog0GVOoeK64upa8ChwgdHRXBFuR08oURyEUn7rDRWu2p6c 8QzNUJTGPLYKN2SCNivOZdPnvZ1ZRlK0QkpfyuYa6aiDl4pGEDMcjslh7+ZZkxUK Wy4pJcLoTqdGpYVeBHUuEqUuoCdz9HQQc18HLzaIytIeHdA+9y1tCXysT7sqX/4M dR7Bk4GZKPvtEzvjMizrjY2Juw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:17 2026 by rpki-client