$ rpki-client -vvf rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft File: 3UhfmiMRbUEQwHvThx70phTsTSw.mft (raw, json) Hash identifier: 3fRylklE8Lq9IyxXuV06fa4QkmK93y3nvne/Kxi0Rh0= Subject key identifier: 64:53:06:7D:13:24:6B:34:89:C7:54:6F:1C:A0:16:6F:1E:4E:EA:BF Authority key identifier: DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C Certificate issuer: /CN=A91331AA/serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft Manifest number: 52 Signing time: Mon 27 Apr 2026 08:05:19 +0000 Manifest this update: Mon 27 Apr 2026 08:05:18 +0000 Manifest next update: Mon 04 May 2026 08:05:18 +0000 Files and hashes: 1: 3UhfmiMRbUEQwHvThx70phTsTSw.crl (hash: 0ir+czg5hN/g+XbIMPdyzXspL8A+a5JfSnvWhRgDO24=) 2: DAC133B0C8EC11F08ED15548C4F9AE02.roa (hash: 1ew7qVLpB8TWdqlXh+YAjZXQOnaoMm4IqX92zh5/ghU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 08:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91331AA, serialNumber=DD485F9A23116D4110C07BD3871EF4A614EC4D2C Validity Not Before: Apr 27 08:05:18 2026 GMT Not After : May 4 08:05:18 2026 GMT Subject: CN=69ef18be-894a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:6a:5b:a4:62:8d:df:0f:6b:29:7d:10:f6: 34:30:86:79:95:b7:8c:5c:30:4c:33:19:6e:78:0d: ff:5a:eb:a5:34:09:fd:95:49:51:20:a2:5d:82:93: 5e:0e:14:83:8b:70:76:35:0f:6a:6a:51:2c:da:ba: 2a:6f:1a:04:d6:0f:1e:b6:33:51:73:c1:21:84:38: 02:f9:8f:9a:af:57:d3:c9:72:06:eb:c8:41:bb:21: b8:a9:21:74:62:8a:84:d1:13:98:83:f5:16:2b:f6: 2c:0f:a7:61:ef:a9:7e:4d:ca:a0:75:96:42:9c:60: 7b:c2:03:31:a4:ba:ae:61:e7:92:8a:a9:98:f0:e2: b3:9e:ad:01:d8:00:e0:57:5e:73:e1:cb:70:88:4a: 2b:e4:7c:bd:19:a3:96:0a:11:41:0f:f6:62:64:57: bf:aa:45:30:5a:4c:f1:4a:3d:9b:bb:06:38:70:c1: 17:4d:89:d4:6d:23:15:14:cd:10:a6:b7:9d:4b:3d: b5:3d:81:d3:5c:88:3d:80:b8:f9:94:8b:4a:f7:e0: 9d:e8:ca:49:32:ce:9b:81:77:fe:d7:42:be:57:54: 40:b6:94:4d:da:ae:9a:0c:bd:5b:7e:25:b3:b3:f2: 9a:22:0c:d7:ed:c6:c1:f9:72:f1:00:46:d6:45:27: f1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:53:06:7D:13:24:6B:34:89:C7:54:6F:1C:A0:16:6F:1E:4E:EA:BF X509v3 Authority Key Identifier: keyid:DD:48:5F:9A:23:11:6D:41:10:C0:7B:D3:87:1E:F4:A6:14:EC:4D:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3UhfmiMRbUEQwHvThx70phTsTSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91331AA/8AFBDB60C8EB11F086187B80C4F9AE02/3UhfmiMRbUEQwHvThx70phTsTSw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:91:ca:b8:cf:f8:86:5a:f5:0f:ac:78:e6:77:1d:e8:48:be: 2e:30:89:25:63:54:e0:aa:d6:7f:fb:d4:f0:5f:80:00:30:42: 3d:bc:d6:be:b4:3d:e0:88:3f:e7:e9:d6:05:4a:c7:8c:90:44: 09:3e:f3:ab:dc:a7:cc:5e:47:2f:f2:e5:0e:79:ca:b5:86:10: 5f:d5:0d:5b:00:05:b1:b8:3b:72:73:f5:89:ca:96:d0:28:de: 63:31:bc:6c:a3:17:ae:36:9c:23:be:3b:44:98:1d:2f:66:bb: 17:c6:22:8a:84:98:8c:6e:55:a4:d9:c6:d2:c7:b1:f0:c1:7f: 23:c3:e2:4b:6f:c1:9a:f8:8e:66:96:d5:84:5f:2a:55:5a:52: 8f:38:21:23:c6:13:1c:bf:df:d6:c9:42:b1:94:7f:35:59:21: f1:c7:f3:32:55:fe:c1:72:ff:3c:74:7d:c3:aa:71:3a:4c:08: b5:f2:9d:e6:15:b3:8c:17:02:6f:e7:69:0a:a9:91:9a:e6:12: 16:01:6e:99:63:e7:d8:12:62:46:f1:ce:e3:db:a2:31:be:2d: 7f:4e:b0:e6:99:ad:0d:ee:72:dd:68:41:18:68:05:00:d8:f3: a9:92:44:cd:5f:ac:4f:cb:72:98:87:39:d4:fc:86:34:1f:9f: 51:4b:ff:73 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzFBQTExMC8GA1UEBRMoREQ0ODVGOUEyMzExNkQ0MTEwQzA3QkQzODcxRUY0QTYx NEVDNEQyQzAeFw0yNjA0MjcwODA1MThaFw0yNjA1MDQwODA1MThaMBgxFjAUBgNV BAMTDTY5ZWYxOGJlLTg5NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoFWpbpGKN3w9rKX0Q9jQwhnmVt4xcMEwzGW54Df9a66U0Cf2VSVEgol2Ck14O FIOLcHY1D2pqUSzauipvGgTWDx62M1FzwSGEOAL5j5qvV9PJcgbryEG7IbipIXRi ioTRE5iD9RYr9iwPp2HvqX5NyqB1lkKcYHvCAzGkuq5h55KKqZjw4rOerQHYAOBX XnPhy3CISivkfL0Zo5YKEUEP9mJkV7+qRTBaTPFKPZu7BjhwwRdNidRtIxUUzRCm t51LPbU9gdNciD2AuPmUi0r34J3oykkyzpuBd/7XQr5XVEC2lE3arpoMvVt+JbOz 8poiDNftxsH5cvEARtZFJ/FtAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUZFMGfRMk azSJx1RvHKAWbx5O6r8wHwYDVR0jBBgwFoAU3UhfmiMRbUEQwHvThx70phTsTSww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMUFBLzhBRkJEQjYwQzhF QjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVFUXdIdlRoeDcwcGhUc1RT dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM1VoZm1pTVJiVUVRd0h2VGh4NzBwaFRzVFN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz MUFBLzhBRkJEQjYwQzhFQjExRjA4NjE4N0I4MEM0RjlBRTAyLzNVaGZtaU1SYlVF UXdIdlRoeDcwcGhUc1RTdy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAIkcq4z/iGWvUPrHjmdx3oSL4uMIklY1TgqtZ/+9TwX4AAMEI9vNa+tD3giD/n 6dYFSseMkEQJPvOr3KfMXkcv8uUOecq1hhBf1Q1bAAWxuDtyc/WJypbQKN5jMbxs oxeuNpwjvjtEmB0vZrsXxiKKhJiMblWk2cbSx7HwwX8jw+JLb8Ga+I5mltWEXypV WlKPOCEjxhMcv9/WyUKxlH81WSHxx/MyVf7Bcv88dH3DqnE6TAi18p3mFbOMFwJv 52kKqZGa5hIWAW6ZY+fYEmJG8c7j26Ixvi1/TrDmma0N7nLdaEEYaAUA2POpkkTN X6xPy3KYhznU/IY0H59RS/9z -----END CERTIFICATE-----Generated at Mon Apr 27 23:50:05 2026 by rpki-client