$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: 3WHctLQj67eSPukoVqea59EBUdGTGMxmE/OJswNR1gQ= Subject key identifier: 2F:F2:CA:5A:37:5A:F2:99:06:33:29:72:76:A4:15:5E:EC:84:24:D8 Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 1129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 1A5E Signing time: Sat 04 Apr 2026 17:09:07 +0000 Manifest this update: Sat 04 Apr 2026 17:09:06 +0000 Manifest next update: Sat 11 Apr 2026 17:09:06 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: i/UIucQykNBBNadKYSx7U0Sc5v+0ONQn/J551FxAJYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4393 (0x1129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Apr 4 17:09:06 2026 GMT Not After : Apr 11 17:09:06 2026 GMT Subject: CN=69d145b2-b43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:97:fc:1b:94:3a:2b:a6:c7:98:50:34:47:5d: a3:81:e7:83:8c:ca:43:d8:db:dd:a4:ff:54:ed:ca: 2d:79:c9:00:0a:d3:7d:0e:2e:88:be:e7:5f:26:f2: 94:e5:ba:0d:50:65:58:2f:93:49:1c:27:33:53:82: e9:e4:e8:a9:7d:ee:98:af:95:65:b4:52:1f:75:8c: 66:f6:ab:3e:6d:48:e0:76:4d:50:49:de:40:17:6b: 43:5a:74:59:b8:d9:01:74:6b:ca:fe:3a:08:cb:c3: dc:6d:41:76:da:c5:16:70:ac:79:95:a9:8e:a8:fa: 38:42:73:be:74:2e:e4:61:c1:80:6b:f8:5e:96:6c: b4:d2:9c:75:05:db:35:34:04:92:e6:20:0e:f7:aa: 80:0c:22:93:4d:84:60:9f:35:7a:53:ae:e6:13:45: e8:78:17:47:92:12:c3:8a:70:f3:14:14:ee:f1:f6: 07:43:1d:67:80:22:38:8d:44:15:9d:8b:b9:ec:cd: c0:d4:42:5d:7c:14:67:b0:15:5d:99:37:23:7b:f0: 0b:94:2c:48:e4:9c:8f:f6:75:61:6e:22:3e:17:ad: 4f:8d:95:80:ce:1f:80:ab:7b:3c:db:54:7d:47:85: 29:7e:1e:81:5b:2c:85:a4:5c:79:d4:55:e2:6e:76: 85:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F2:CA:5A:37:5A:F2:99:06:33:29:72:76:A4:15:5E:EC:84:24:D8 X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:fe:4a:59:91:99:18:d0:51:4e:91:37:81:f7:93:8c:9f:50: 8f:ea:c1:45:9f:83:85:7b:c8:2c:41:1c:6e:59:23:cf:7a:5f: d7:a2:32:31:d8:92:8f:4e:7e:e1:45:2b:6b:e7:ca:27:73:3d: ae:45:cf:77:b9:d6:27:6c:88:7b:dc:80:50:75:c2:78:72:58: d9:b6:f8:8a:b5:ce:8f:39:e7:d3:2a:a2:68:65:82:c4:9f:a7: 74:58:19:6b:8f:fe:3b:50:f1:e6:05:7f:75:89:84:19:fa:93: b4:c5:c1:81:a2:50:d7:5b:80:62:59:69:08:19:49:77:3a:ae: 94:f8:a8:0f:14:cb:13:ac:15:2b:91:00:98:0a:57:f4:3f:06: 1b:f8:8b:f4:e0:5b:f4:40:63:9d:b3:d4:bd:61:4f:b4:dd:db: 58:b8:e4:2e:ce:94:17:95:cc:c1:ed:95:48:a7:b9:ef:70:5c: 55:73:21:91:ae:a2:55:1c:aa:ec:59:2a:09:a5:22:d7:a7:9a: 6c:a0:37:63:86:9f:72:00:8c:9b:54:ab:b0:5b:e7:12:1d:b2: b1:ff:16:5d:ef:9c:96:ae:71:59:7f:39:27:19:c7:51:e5:60: 74:b5:d5:3f:5c:49:e7:cc:55:b4:f4:17:b0:8e:72:91:2c:9e: 79:d6:33:12 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICESkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjYwNDA0MTcwOTA2WhcNMjYwNDExMTcwOTA2WjAYMRYwFAYD VQQDEw02OWQxNDViMi1iNDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJf8G5Q6K6bHmFA0R12jgeeDjMpD2NvdpP9U7coteckACtN9Di6IvudfJvKU 5boNUGVYL5NJHCczU4Lp5Oipfe6Yr5VltFIfdYxm9qs+bUjgdk1QSd5AF2tDWnRZ uNkBdGvK/joIy8PcbUF22sUWcKx5lamOqPo4QnO+dC7kYcGAa/helmy00px1Bds1 NASS5iAO96qADCKTTYRgnzV6U67mE0XoeBdHkhLDinDzFBTu8fYHQx1ngCI4jUQV nYu57M3A1EJdfBRnsBVdmTcje/ALlCxI5JyP9nVhbiI+F61PjZWAzh+Aq3s821R9 R4Upfh6BWyyFpFx51FXibnaFewIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC/yylo3 WvKZBjMpcnakFV7shCTYMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALv5KWZGZGNBRTpE3gfeTjJ9Qj+rBRZ+DhXvILEEcblkjz3pf16IyMdiSj05+ 4UUra+fKJ3M9rkXPd7nWJ2yIe9yAUHXCeHJY2bb4irXOjznn0yqiaGWCxJ+ndFgZ a4/+O1Dx5gV/dYmEGfqTtMXBgaJQ11uAYllpCBlJdzqulPioDxTLE6wVK5EAmApX 9D8GG/iL9OBb9EBjnbPUvWFPtN3bWLjkLs6UF5XMwe2VSKe573BcVXMhka6iVRyq 7FkqCaUi16eabKA3Y4afcgCMm1SrsFvnEh2ysf8WXe+clq5xWX85JxnHUeVgdLXV P1xJ58xVtPQXsI5ykSyeedYzEg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:42 2026 by rpki-client