$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft File: 3zHPGFCQ4VSWXv_7xmS91yHYB18.mft (raw, json) Hash identifier: 0WTO48VmFwmOSac4Q9fzlG7/sjL5HWUzcxul5Tcnbv0= Subject key identifier: 60:B8:D0:DC:8F:EE:56:6E:9B:95:89:23:F3:29:C9:BE:F1:70:5C:72 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft Manifest number: BC Signing time: Sun 05 Apr 2026 06:30:47 +0000 Manifest this update: Sun 05 Apr 2026 06:30:47 +0000 Manifest next update: Sun 12 Apr 2026 06:30:47 +0000 Files and hashes: 1: 3zHPGFCQ4VSWXv_7xmS91yHYB18.crl (hash: 6YmlneC4fBJ7qINEoYCPMz2gF7nDqzbzkI84Itofe84=) 2: F04F38FE301011F18102B6AEAD833773.roa (hash: RWHhNkGDjuTODyyfxHEdTol0hSXHwexIrOkgDCgZlwY=) 3: 7434E1F4967011F0A5651266C4F9AE02.roa (hash: yz2U9PDGW5yj6K3epzpiZUOJr61JO2DFHRCaKrcoOK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Apr 5 06:30:47 2026 GMT Not After : Apr 12 06:30:47 2026 GMT Subject: CN=69d20197-357f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:72:2c:38:80:f0:20:e1:9f:36:6b:56:1f: 9e:fe:9c:29:15:ea:b2:71:26:18:e3:07:7e:c1:51: 8b:ca:ac:ce:40:08:09:5a:f4:27:bc:94:b7:6b:a7: 89:9d:90:b8:c9:1f:a5:26:87:fe:1c:87:1c:c0:3d: 95:6e:e5:9e:cd:7c:da:1d:e3:df:dc:7b:66:7b:19: b9:21:ad:14:4c:09:dd:6b:55:54:72:bf:3d:6c:63: 6e:8d:41:77:61:35:cf:0e:1c:b3:e1:4b:89:c1:83: c6:22:1b:4f:66:aa:e5:d8:52:bf:54:c7:58:97:2b: 9c:24:52:a4:18:23:37:08:f2:3b:8a:3b:5e:f2:2e: a6:19:44:91:14:24:cf:d6:af:41:6c:1d:61:27:5b: 82:8a:66:28:64:0b:a5:fc:5a:39:1a:71:d7:bb:b8: 70:cb:ca:bb:ac:05:10:f2:0a:90:7a:e2:1a:20:18: 0a:45:a1:f1:ef:a2:a2:09:35:d5:34:ed:b1:e8:d2: 1a:2a:09:a4:22:d4:c3:a8:b4:2e:ae:11:ea:df:18: 45:e6:ee:cb:cf:3a:a9:ee:18:e0:fb:bb:ba:3e:0d: 25:30:8c:7d:bc:cd:38:2c:59:7a:08:b1:67:2b:4e: 70:7b:1b:45:f8:7a:b5:d5:a7:24:12:0f:42:de:11: 8e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B8:D0:DC:8F:EE:56:6E:9B:95:89:23:F3:29:C9:BE:F1:70:5C:72 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:28:9e:1c:6d:77:c0:90:33:04:62:36:c9:e5:a9:5f:47:09: 6b:ac:72:18:09:0a:ad:44:ae:af:27:32:f8:dc:ea:d8:48:64: 3c:d3:e9:8d:22:30:b9:31:40:af:4b:2d:47:e6:12:3c:fb:b0: da:18:95:a8:23:53:aa:5a:d2:ab:80:48:f5:81:1b:66:ee:64: bd:56:47:15:24:bd:ac:b4:5c:69:69:98:c3:fd:76:6b:0f:f6: 17:5f:49:67:79:1f:24:4d:ec:2f:73:cc:5d:5b:d1:00:61:c7: c4:24:89:b1:3b:a3:6c:9f:df:01:31:f6:25:6e:18:a2:98:be: 3c:64:3f:37:79:4b:71:e7:5b:45:9f:30:0f:f2:f7:27:e6:65: 36:db:96:58:61:de:a5:c4:f3:6a:1f:bc:33:b8:95:3b:fa:48: 18:70:ec:64:84:d9:ec:bb:a8:9a:ab:fb:40:59:8e:f7:97:23: 78:2b:9c:4d:79:c0:3c:64:98:65:42:ee:ca:28:f1:91:69:64: c1:98:46:17:57:1a:12:5e:03:c7:ff:04:4c:f0:64:0a:23:0f: 79:ce:6e:a1:8e:24:b4:65:f3:7a:57:f6:3f:f6:4a:29:02:2f: d5:e5:01:01:b9:56:79:37:de:68:79:ce:01:ed:3f:ab:32:f9: a1:a7:c9:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVFQ0YxMTAvBgNVBAUTKERGMzFDRjE4NTA5MEUxNTQ5NjVFRkZGQkM2NjRCREQ3 MjFEODA3NUYwHhcNMjYwNDA1MDYzMDQ3WhcNMjYwNDEyMDYzMDQ3WjAYMRYwFAYD VQQDEw02OWQyMDE5Ny0zNTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupByLDiA8CDhnzZrVh+e/pwpFeqycSYY4wd+wVGLyqzOQAgJWvQnvJS3a6eJ nZC4yR+lJof+HIccwD2VbuWezXzaHePf3Htmexm5Ia0UTAnda1VUcr89bGNujUF3 YTXPDhyz4UuJwYPGIhtPZqrl2FK/VMdYlyucJFKkGCM3CPI7ijte8i6mGUSRFCTP 1q9BbB1hJ1uCimYoZAul/Fo5GnHXu7hwy8q7rAUQ8gqQeuIaIBgKRaHx76KiCTXV NO2x6NIaKgmkItTDqLQurhHq3xhF5u7Lzzqp7hjg+7u6Pg0lMIx9vM04LFl6CLFn K05wextF+Hq11ackEg9C3hGOdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGC40NyP 7lZum5WJI/Mpyb7xcFxyMB8GA1UdIwQYMBaAFN8xzxhQkOFUll7/+8Zkvdch2Adf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUVDRi9FRjZCOTA1QzI1 RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRWU1dYdl83eG1TOTF5SFlC MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi8zekhQR0ZDUTRW U1dYdl83eG1TOTF5SFlCMTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlSieHG13wJAzBGI2yeWpX0cJa6xyGAkKrUSurycy+Nzq2EhkPNPpjSIwuTFA r0stR+YSPPuw2hiVqCNTqlrSq4BI9YEbZu5kvVZHFSS9rLRcaWmYw/12aw/2F19J Z3kfJE3sL3PMXVvRAGHHxCSJsTujbJ/fATH2JW4Yopi+PGQ/N3lLcedbRZ8wD/L3 J+ZlNtuWWGHepcTzah+8M7iVO/pIGHDsZITZ7Luomqv7QFmO95cjeCucTXnAPGSY ZULuyijxkWlkwZhGF1caEl4Dx/8ETPBkCiMPec5uoY4ktGXzelf2P/ZKKQIv1eUB AblWeTfeaHnOAe0/qzL5oafJLQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:36:28 2026 by rpki-client