$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json) Hash identifier: 6abIdmDty7t0r32Q/Vi55UsgpnYjkyLJznAxsKQ8Is8= Subject key identifier: EC:8B:FA:2D:60:BA:B7:3D:A5:1E:10:F8:A3:DD:CE:C2:FD:92:B5:12 Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft Manifest number: 2D78 Signing time: Sat 04 Apr 2026 16:39:19 +0000 Manifest this update: Sat 04 Apr 2026 16:39:18 +0000 Manifest next update: Sat 11 Apr 2026 16:39:18 +0000 Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: 3wu6ESfRrGUmS8A5fEHhrg7n7mAXsGoqatdXVUb7AbA=) 2: 10C418C4D40011F083CDC127C4F9AE02.roa (hash: jQxx1yI+CpI0X1UpNWUR0n40hlw676l3oq7X91ZFhYQ=) 3: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (hash: 93Osb1eypGCd4nMOCDRXqOsvy4YV3kmgH3g+EnS+R9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Apr 4 16:39:18 2026 GMT Not After : Apr 11 16:39:18 2026 GMT Subject: CN=69d13eb7-066c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f9:67:32:5a:da:11:3c:5c:df:76:ad:97:3a: 7c:03:22:4e:6c:c8:a3:33:89:8f:ba:b6:aa:5b:64: ba:f2:9e:f1:b6:44:cc:63:3c:91:d2:74:3f:1a:d3: 20:4e:27:6d:82:26:7a:38:12:fc:12:90:2b:37:97: 5e:07:4b:ea:cc:52:5f:8c:a4:22:3e:01:3d:d1:39: 00:50:4e:d6:7e:e5:89:8e:91:04:cf:f0:df:07:ed: 8b:cf:4f:d6:a0:3a:a1:d5:c9:91:5e:84:8c:61:3a: fe:e5:63:63:c0:a0:b3:e1:0c:ef:1d:a3:cc:66:2c: 7d:43:61:93:13:dd:6b:b1:8d:fc:28:1b:6d:b9:1c: 4c:1d:07:6e:3c:24:51:6d:45:a1:fe:a1:92:70:65: 2d:2c:bc:d5:85:de:b2:d1:ec:1d:11:de:4c:6a:7f: 32:d2:f7:23:46:00:e9:25:3e:b0:19:3c:aa:5f:47: c9:15:71:0d:ad:c0:20:f7:ce:0b:1f:98:a0:34:09: 50:f8:76:8d:2f:d8:1a:1a:8c:60:92:91:d0:85:c8: 13:0a:ff:f7:52:84:40:b2:80:87:a4:3f:90:46:7e: 09:ad:ad:c1:03:ec:ad:5e:62:e8:74:88:75:9d:b9: da:f2:cd:d6:21:36:39:ef:13:6b:3d:1f:a4:2e:7e: a7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8B:FA:2D:60:BA:B7:3D:A5:1E:10:F8:A3:DD:CE:C2:FD:92:B5:12 X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:08:9f:bc:86:4e:af:1f:c7:9c:b4:35:d3:70:02:b6:59:f4: aa:e5:85:a5:47:7e:a1:37:84:62:01:cb:1b:fd:52:6a:b7:d5: 1d:2b:50:a6:36:70:27:f1:fe:1b:f0:3a:f5:8d:cb:7f:a5:98: d9:90:ca:dc:65:a9:08:aa:2f:e7:94:2e:8b:4d:fa:ac:fa:8c: f2:d2:5a:d6:d6:b6:95:fc:3b:a9:12:b7:36:d7:e5:2f:ea:a4: 70:76:ca:98:c3:29:1c:91:35:83:0d:20:39:45:4c:68:ff:fb: 51:93:d8:05:9b:52:40:ac:a5:e4:56:ce:3a:70:e1:a3:61:08: af:f7:e4:01:d8:72:3a:0d:5d:d5:da:32:b8:b3:3f:08:bd:ae: 96:ed:a0:a7:45:7e:4b:a9:00:aa:cd:a1:4d:b0:f0:d7:23:26: 7d:02:94:ca:6b:54:f5:8e:a0:99:d3:bf:21:85:7e:e7:46:95: 89:6f:f3:18:44:4d:cc:c4:8a:c9:30:34:fc:a3:d1:42:5c:f2: c6:49:7b:d2:76:ae:41:e4:5d:43:b6:68:36:29:6c:bd:f0:d0: 9f:dc:e3:2e:4c:39:a8:6f:62:28:99:1b:0f:a4:a5:cd:7b:60: 43:35:6a:19:5e:64:12:10:d3:d4:1f:3f:92:d8:97:58:c0:54: e1:6e:52:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjYwNDA0MTYzOTE4WhcNMjYwNDExMTYzOTE4WjAYMRYwFAYD VQQDEw02OWQxM2ViNy0wNjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvlnMlraETxc33atlzp8AyJObMijM4mPuraqW2S68p7xtkTMYzyR0nQ/GtMg TidtgiZ6OBL8EpArN5deB0vqzFJfjKQiPgE90TkAUE7WfuWJjpEEz/DfB+2Lz0/W oDqh1cmRXoSMYTr+5WNjwKCz4QzvHaPMZix9Q2GTE91rsY38KBttuRxMHQduPCRR bUWh/qGScGUtLLzVhd6y0ewdEd5Man8y0vcjRgDpJT6wGTyqX0fJFXENrcAg984L H5igNAlQ+HaNL9gaGoxgkpHQhcgTCv/3UoRAsoCHpD+QRn4Jra3BA+ytXmLodIh1 nbna8s3WITY57xNrPR+kLn6ndwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOyL+i1g urc9pR4Q+KPdzsL9krUSMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0 Mm8wSjU2clpnc2dMYk9yYWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIgifvIZOrx/HnLQ103ACtln0quWFpUd+oTeEYgHLG/1SarfVHStQpjZwJ/H+ G/A69Y3Lf6WY2ZDK3GWpCKov55Qui036rPqM8tJa1ta2lfw7qRK3NtflL+qkcHbK mMMpHJE1gw0gOUVMaP/7UZPYBZtSQKyl5FbOOnDho2EIr/fkAdhyOg1d1doyuLM/ CL2ulu2gp0V+S6kAqs2hTbDw1yMmfQKUymtU9Y6gmdO/IYV+50aViW/zGERNzMSK yTA0/KPRQlzyxkl70nauQeRdQ7ZoNilsvfDQn9zjLkw5qG9iKJkbD6SlzXtgQzVq GV5kEhDT1B8/ktiXWMBU4W5SXA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:13:59 2026 by rpki-client