$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft File: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft (raw, json) Hash identifier: yr5Fd3Tj1jx5yutrVQOSrJgWZKwMl/uQl0trniboP/I= Subject key identifier: 7D:22:18:C5:F8:FD:92:AF:AF:06:72:3B:2F:C7:5E:80:8C:8E:6B:BE Authority key identifier: DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD Certificate issuer: /CN=A9147CA8/serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft Manifest number: 86 Signing time: Sun 05 Apr 2026 07:03:56 +0000 Manifest this update: Sun 05 Apr 2026 07:03:56 +0000 Manifest next update: Sun 12 Apr 2026 07:03:56 +0000 Files and hashes: 1: 3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl (hash: i/ANDvgfShe3gabTHc9/A5V4Q2JpTp3D+pFTKlFo+Cs=) 2: 18DC6A2602A311F188F4114D3A3D8C67.roa (hash: t3GNpUerhP0cJPbY48i/kbcLRCBSWRa0pQ+pR8/EBR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CA8, serialNumber=DD280828FF0996A8CBEF29BF0D914DF252DF1CBD Validity Not Before: Apr 5 07:03:56 2026 GMT Not After : Apr 12 07:03:56 2026 GMT Subject: CN=69d2095c-adaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6a:ad:58:f0:a7:63:e4:59:e0:4e:c4:b5:c3: e6:be:7c:77:e6:00:60:8f:a7:72:0c:9f:25:ef:07: e7:d8:bb:f4:a1:da:c0:d6:5b:c8:3e:60:7d:1a:16: d8:a2:76:95:60:a4:40:6b:8e:3b:68:a5:1e:89:50: 74:a5:e1:81:ba:3c:46:71:cd:42:df:cf:d8:b5:de: fe:ae:15:84:1c:c4:ef:3f:a6:40:7c:b3:2d:50:6b: 49:b9:74:1f:a7:37:3a:35:17:77:ba:c7:55:99:fe: 2d:d3:47:e1:ac:17:cb:01:de:0d:18:b7:63:d7:77: fb:44:31:49:9b:32:ed:87:86:8f:15:1d:ab:ad:cf: fd:5a:d6:fc:1a:34:c6:06:c0:94:a6:33:4c:7b:d0: 7f:0a:22:ba:30:d5:1a:f3:3c:57:4b:08:d5:d5:e9: 47:0d:1b:ba:1f:b3:8f:44:10:60:bf:7d:a3:a4:f9: 55:46:eb:6a:d9:1a:29:35:7c:3e:33:7d:8c:f3:21: 79:c8:22:08:70:62:44:c7:1e:3b:1c:4a:67:04:5a: 4d:47:1e:bf:9a:77:0e:4f:7d:f0:2f:7d:35:48:13: 48:60:cc:05:f8:ae:bc:be:34:0d:7c:90:c2:1b:60: aa:41:61:9f:bd:55:42:69:a6:5e:d3:89:b7:2f:01: 6e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:22:18:C5:F8:FD:92:AF:AF:06:72:3B:2F:C7:5E:80:8C:8E:6B:BE X509v3 Authority Key Identifier: keyid:DD:28:08:28:FF:09:96:A8:CB:EF:29:BF:0D:91:4D:F2:52:DF:1C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3SgIKP8JlqjL7ym_DZFN8lLfHL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CA8/6A9E915C6EE911F0B301F667C4F9AE02/3SgIKP8JlqjL7ym_DZFN8lLfHL0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:fe:81:6d:10:0a:a7:22:b9:d7:0f:92:8a:27:55:45:31:72: 75:54:65:0a:4e:c5:df:b4:83:0c:52:64:72:2f:76:e0:fe:0c: 36:d7:aa:80:a5:77:9e:4c:3f:8e:cc:5c:c2:1a:e6:07:a6:9a: 9b:15:a7:e8:fd:8c:95:5f:fa:ea:ff:0f:c2:95:16:ce:5c:1c: 4e:46:79:01:2e:6e:cd:53:92:a2:8b:ff:f7:24:67:90:82:e8: 49:89:b2:d8:e3:4e:71:e7:71:b9:11:4f:a6:f6:1b:71:af:ad: 4d:6d:1b:af:c2:20:ca:99:a5:1a:ea:81:40:26:a4:cc:8a:fc: 2f:6f:01:b9:c9:72:b9:d8:3c:e3:1f:29:9e:47:4a:2d:6b:bc: 97:70:39:28:d1:96:8f:48:ec:c7:6b:c6:86:09:5d:45:e1:3b: 44:be:08:a9:02:5c:68:f4:43:0a:42:c6:18:8d:ea:0b:40:57: 93:37:4e:fe:99:75:88:d6:c0:f4:4d:66:63:ec:03:f6:3b:82: 7f:44:aa:4a:dc:46:14:6a:b7:76:f3:33:a5:6f:7d:14:7d:65: 69:76:81:f1:1a:21:29:16:66:51:96:5f:cb:f2:96:64:8a:6b: a0:cc:83:da:fd:c0:30:4a:b4:90:ce:67:7e:68:f3:4c:52:3a: 7d:99:75:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDQTgxMTAvBgNVBAUTKEREMjgwODI4RkYwOTk2QThDQkVGMjlCRjBEOTE0REYy NTJERjFDQkQwHhcNMjYwNDA1MDcwMzU2WhcNMjYwNDEyMDcwMzU2WjAYMRYwFAYD VQQDEw02OWQyMDk1Yy1hZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WqtWPCnY+RZ4E7EtcPmvnx35gBgj6dyDJ8l7wfn2Lv0odrA1lvIPmB9GhbY onaVYKRAa447aKUeiVB0peGBujxGcc1C38/Ytd7+rhWEHMTvP6ZAfLMtUGtJuXQf pzc6NRd3usdVmf4t00fhrBfLAd4NGLdj13f7RDFJmzLth4aPFR2rrc/9Wtb8GjTG BsCUpjNMe9B/CiK6MNUa8zxXSwjV1elHDRu6H7OPRBBgv32jpPlVRutq2RopNXw+ M32M8yF5yCIIcGJExx47HEpnBFpNRx6/mncOT33wL301SBNIYMwF+K68vjQNfJDC G2CqQWGfvVVCaaZe04m3LwFuFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH0iGMX4 /ZKvrwZyOy/HXoCMjmu+MB8GA1UdIwQYMBaAFN0oCCj/CZaoy+8pvw2RTfJS3xy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NBOC82QTlFOTE1QzZF RTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxxakw3eW1fRFpGTjhsTGZI TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNTZ0lLUDhKbHFqTDd5bV9EWkZOOGxMZkhMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NBOC82QTlFOTE1QzZFRTkxMUYwQjMwMUY2NjdDNEY5QUUwMi8zU2dJS1A4Smxx akw3eW1fRFpGTjhsTGZITDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjP6BbRAKpyK51w+SiidVRTFydVRlCk7F37SDDFJkci924P4MNteqgKV3nkw/ jsxcwhrmB6aamxWn6P2MlV/66v8PwpUWzlwcTkZ5AS5uzVOSoov/9yRnkILoSYmy 2ONOcedxuRFPpvYbca+tTW0br8IgypmlGuqBQCakzIr8L28Buclyudg84x8pnkdK LWu8l3A5KNGWj0jsx2vGhgldReE7RL4IqQJcaPRDCkLGGI3qC0BXkzdO/pl1iNbA 9E1mY+wD9juCf0SqStxGFGq3dvMzpW99FH1laXaB8RohKRZmUZZfy/KWZIproMyD 2v3AMEq0kM5nfmjzTFI6fZl19A== -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:03 2026 by rpki-client