$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: cLRcBoBQb5ifI8QeaI1UZERXqD5mWvD4mI6iUjAkSRc= Subject key identifier: CB:C0:10:44:E9:29:BA:26:78:26:4B:A8:D0:11:F8:EC:0F:D9:D6:19 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 034A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 033C Signing time: Mon 27 Apr 2026 01:02:10 +0000 Manifest this update: Mon 27 Apr 2026 01:02:10 +0000 Manifest next update: Mon 04 May 2026 01:02:10 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: 82qnGF93ECD8qUKVCOm4+vGK+hFWgwJZwbQSF7O1ZbM=) 2: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: 9w8S4OWRKiHn00WgTxK8sW6EL9lR2MtKh2D9FC7SrtA=) 3: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: eDkYP5k4VqPL3dwJbL2mqB+b8x4YcSaltVXpsNGVZfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 01:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Apr 27 01:02:10 2026 GMT Not After : May 4 01:02:10 2026 GMT Subject: CN=69eeb592-22d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1c:e6:4d:2f:da:9d:13:2e:bd:a4:11:14:92: da:48:f3:d1:94:5c:ee:e8:0c:40:1b:d2:16:fe:da: 41:70:fc:6f:47:74:06:66:db:62:b5:ae:65:d5:e9: 18:23:03:e0:2a:9a:4e:fb:72:11:e5:e3:ed:48:3c: 7f:00:21:fd:9d:d1:3e:8b:98:3d:44:33:44:51:18: ee:44:80:19:85:5d:c1:9c:f8:70:db:3f:b1:a8:da: 16:99:3a:7c:3c:79:48:76:2d:11:c3:92:b5:98:0c: da:b8:4e:e7:4a:fe:24:41:9d:a0:5c:1f:a5:aa:0b: 19:a8:d2:c5:fb:04:5d:96:75:f5:5c:8e:89:a6:49: 42:d1:87:4a:29:44:f4:c2:f6:96:0f:0d:f4:1f:64: 00:20:27:cb:c2:61:85:ce:56:3a:5a:0f:c7:b5:a3: ce:c8:2a:be:f5:66:a2:fd:1e:06:dd:78:e7:85:8d: a3:43:7b:2c:40:a3:8b:0e:dc:06:ee:60:e7:cf:9b: 53:94:79:fd:c4:89:55:c7:ff:52:74:d7:28:2b:01: d0:2a:57:a0:cf:c0:cf:f0:b6:a1:6f:88:14:95:25: 25:bb:f3:29:87:3b:e9:f1:e5:3b:16:3a:c2:91:3e: ff:eb:77:25:09:9e:83:cf:48:9d:12:4b:92:7a:8a: 3b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C0:10:44:E9:29:BA:26:78:26:4B:A8:D0:11:F8:EC:0F:D9:D6:19 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d8:d4:95:09:ef:e4:51:be:25:a3:eb:8b:f9:ad:75:46:08: 8e:ef:a6:8c:fa:28:48:1a:ef:cc:e6:7a:2f:88:c5:1a:71:e8: 13:27:76:07:f7:cf:1b:d0:c5:04:27:ac:d7:e1:ff:6d:53:5b: 56:86:1c:df:5e:a8:91:5e:94:bc:40:d7:22:db:05:e1:a0:31: 7f:37:21:01:e1:ae:b7:57:5b:9f:d3:0b:4e:3b:76:90:0c:b3: 39:83:df:98:e5:1f:59:44:1a:fc:cf:94:6c:72:cb:53:a5:30: a8:1c:4d:92:90:71:3e:76:36:59:8d:e8:72:59:ef:5e:d1:37: 6b:92:0b:39:d4:ae:8a:d2:01:f5:29:16:93:c3:37:bf:af:50: 28:c8:46:83:38:5c:e4:a2:64:78:48:b2:57:78:48:75:37:92: 26:02:e9:f8:3e:11:85:04:87:d7:83:d6:6d:a1:1e:70:26:b2: d0:13:a4:73:46:15:b1:4e:a8:32:b3:7a:89:c1:69:33:cb:85: cb:17:5f:09:53:d8:fd:64:ef:e3:bd:65:1f:d9:98:88:2e:fe: dd:f5:f3:79:d5:f6:47:fb:8c:c0:e9:9c:b4:1d:52:c3:5b:fb: ad:6b:a4:d2:ed:40:a9:4d:72:89:4a:49:6f:82:7e:45:f4:a5: 22:cf:08:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjYwNDI3MDEwMjEwWhcNMjYwNTA0MDEwMjEwWjAYMRYwFAYD VQQDEw02OWVlYjU5Mi0yMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphzmTS/anRMuvaQRFJLaSPPRlFzu6AxAG9IW/tpBcPxvR3QGZttita5l1ekY IwPgKppO+3IR5ePtSDx/ACH9ndE+i5g9RDNEURjuRIAZhV3BnPhw2z+xqNoWmTp8 PHlIdi0Rw5K1mAzauE7nSv4kQZ2gXB+lqgsZqNLF+wRdlnX1XI6JpklC0YdKKUT0 wvaWDw30H2QAICfLwmGFzlY6Wg/HtaPOyCq+9Wai/R4G3XjnhY2jQ3ssQKOLDtwG 7mDnz5tTlHn9xIlVx/9SdNcoKwHQKlegz8DP8Lahb4gUlSUlu/Mphzvp8eU7FjrC kT7/63clCZ6Dz0idEkuSeoo7wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMvAEETp KbomeCZLqNAR+OwP2dYZMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPdjUlQnv5FG+JaPri/mtdUYIju+mjPooSBrvzOZ6L4jFGnHoEyd2B/fPG9DF BCes1+H/bVNbVoYc316okV6UvEDXItsF4aAxfzchAeGut1dbn9MLTjt2kAyzOYPf mOUfWUQa/M+UbHLLU6UwqBxNkpBxPnY2WY3oclnvXtE3a5ILOdSuitIB9SkWk8M3 v69QKMhGgzhc5KJkeEiyV3hIdTeSJgLp+D4RhQSH14PWbaEecCay0BOkc0YVsU6o MrN6icFpM8uFyxdfCVPY/WTv471lH9mYiC7+3fXzedX2R/uMwOmctB1Sw1v7rWuk 0u1AqU1yiUpJb4J+RfSlIs8IGQ== -----END CERTIFICATE-----Generated at Mon Apr 27 23:26:23 2026 by rpki-client