$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: UBNqd0JCEBRZJ1NNd+NSE7Zx/s71M34TW/9DZxPrAvA= Subject key identifier: F2:36:C3:45:46:F2:8B:E5:7F:F3:A0:16:A5:13:B9:D0:74:D7:54:3E Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0CB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0C9A Signing time: Sun 26 Apr 2026 18:28:54 +0000 Manifest this update: Sun 26 Apr 2026 18:28:53 +0000 Manifest next update: Sun 03 May 2026 18:28:53 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: wJYNz7fqJ41SsM71Y0rfE+sCzsihbdLfhup8A5HKO1Q=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: 2ZECssZFKej2Bnmujg65SvPR+m2K68FZcUfUc+ikvVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 18:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Apr 26 18:28:53 2026 GMT Not After : May 3 18:28:53 2026 GMT Subject: CN=69ee5966-d6eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:74:8d:47:a6:82:69:32:c9:f7:90:9d:dd:eb: da:04:01:88:85:07:b6:94:27:1c:b1:6b:ec:91:5b: ce:8c:6b:d8:81:fc:6b:fd:d2:e5:b1:53:83:5f:85: 77:89:a4:32:b9:4e:f0:ae:f4:d5:dd:bc:b5:fa:46: 21:89:aa:a8:b2:1f:41:2d:81:4b:b5:32:73:3d:f9: 25:9f:e2:05:c8:b5:dc:32:10:ed:8a:21:9f:82:2a: bb:28:0c:23:d7:99:49:40:10:b5:b2:1c:40:8b:92: ea:13:44:e6:16:ad:ce:56:6e:7c:c3:65:ca:02:a5: 57:18:13:72:0f:43:bd:41:41:2f:93:35:c6:ed:8f: 64:04:a4:74:d7:e7:b6:b1:3e:7a:50:db:96:d5:27: f4:4a:e3:95:3e:a0:a5:18:77:93:c4:3c:47:b3:6d: bb:10:4b:49:ec:18:6d:c3:02:98:98:08:e3:6d:7c: a4:6e:a8:bf:41:e4:a5:e3:c7:4a:53:b4:c7:b9:97: d2:16:12:9c:64:79:9d:a7:61:3d:c0:bb:f6:50:d1: f1:df:5a:3d:2f:54:b4:f4:82:7a:b3:68:92:db:a5: 70:b0:7d:eb:84:92:80:80:d6:6c:d8:f4:9b:1d:0d: a0:80:83:10:40:59:e8:fd:95:54:8e:a1:e7:08:d0: c9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:36:C3:45:46:F2:8B:E5:7F:F3:A0:16:A5:13:B9:D0:74:D7:54:3E X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:56:62:7d:ba:7b:5f:eb:2f:b6:b1:cb:23:98:4f:44:35:17: 6d:e4:40:e1:b3:d3:e4:12:61:39:a2:d6:68:4e:4f:5f:c4:77: f8:70:e3:39:cf:b4:ce:6c:2b:dd:cd:5c:96:71:d5:77:e8:c7: 0f:a7:7f:3c:35:d1:39:08:fc:da:d6:cd:04:b6:b2:57:ab:c0: 3e:02:39:7b:79:ad:60:67:21:4c:13:9e:8a:3e:6e:7c:7e:e0: 32:98:ac:1a:2e:c7:1b:0d:31:86:f8:97:58:0d:20:f3:eb:5b: 0a:01:a2:0f:4f:e7:d5:1e:3a:49:85:3e:79:cb:ba:cb:18:22: 43:09:9f:ba:68:14:99:38:03:58:32:9a:b3:9d:bd:7a:ab:b0: e2:ce:64:01:87:28:d1:42:1a:f6:ea:2b:46:a6:f4:6e:a2:ea: 94:8e:0a:9e:30:30:56:6d:11:a2:d2:71:c4:85:c4:83:73:b1: 3a:f5:9e:f6:70:aa:65:34:fa:91:3a:c8:cd:59:43:ac:06:a1: 87:c7:ca:6f:b1:0a:44:b9:20:8f:b7:8f:32:d0:36:21:cf:a0: d4:96:3d:9a:24:bd:96:4d:f6:f7:d4:3d:a4:31:76:78:c3:33: 3f:73:84:34:c8:25:91:9b:e4:f5:b3:bf:7c:28:47:1a:61:e8: c3:36:41:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjYwNDI2MTgyODUzWhcNMjYwNTAzMTgyODUzWjAYMRYwFAYD VQQDEw02OWVlNTk2Ni1kNmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHSNR6aCaTLJ95Cd3evaBAGIhQe2lCccsWvskVvOjGvYgfxr/dLlsVODX4V3 iaQyuU7wrvTV3by1+kYhiaqosh9BLYFLtTJzPfkln+IFyLXcMhDtiiGfgiq7KAwj 15lJQBC1shxAi5LqE0TmFq3OVm58w2XKAqVXGBNyD0O9QUEvkzXG7Y9kBKR01+e2 sT56UNuW1Sf0SuOVPqClGHeTxDxHs227EEtJ7BhtwwKYmAjjbXykbqi/QeSl48dK U7THuZfSFhKcZHmdp2E9wLv2UNHx31o9L1S09IJ6s2iS26VwsH3rhJKAgNZs2PSb HQ2ggIMQQFno/ZVUjqHnCNDJPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPI2w0VG 8ovlf/OgFqUTudB011Q+MB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUFZifbp7X+svtrHLI5hPRDUXbeRA4bPT5BJhOaLWaE5PX8R3+HDjOc+0zmwr 3c1clnHVd+jHD6d/PDXROQj82tbNBLayV6vAPgI5e3mtYGchTBOeij5ufH7gMpis Gi7HGw0xhviXWA0g8+tbCgGiD0/n1R46SYU+ecu6yxgiQwmfumgUmTgDWDKas529 equw4s5kAYco0UIa9uorRqb0bqLqlI4KnjAwVm0RotJxxIXEg3OxOvWe9nCqZTT6 kTrIzVlDrAahh8fKb7EKRLkgj7ePMtA2Ic+g1JY9miS9lk3299Q9pDF2eMMzP3OE NMglkZvk9bO/fChHGmHowzZBVg== -----END CERTIFICATE-----Generated at Mon Apr 27 16:05:48 2026 by rpki-client