$ rpki-client -vvf rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft File: -3sFh4NlHpP6MN2W1iZebi81JVQ.mft (raw, json) Hash identifier: EPayEYUo0O7Umb+MmcCtRqpr495lXeI3OVsa3fN7T5w= Subject key identifier: 9E:87:0E:C4:8D:C1:95:D9:3B:BB:E3:C2:89:8F:6C:C4:07:26:8B:5A Authority key identifier: FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 Certificate issuer: /CN=A916C473/serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft Manifest number: 8B Signing time: Sun 05 Apr 2026 06:55:00 +0000 Manifest this update: Sun 05 Apr 2026 06:55:00 +0000 Manifest next update: Sun 12 Apr 2026 06:55:00 +0000 Files and hashes: 1: -3sFh4NlHpP6MN2W1iZebi81JVQ.crl (hash: tj0PIFKKBM9+e9oEEdoqrblqU5DncDG0dmfPKnoHnUo=) 2: 2BB9711E5DE111F09B775D76C4F9AE02.roa (hash: U9tyCvMDlceVXMLQfDjCprercZZxtbmQBQkbmthwKe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C473, serialNumber=FB7B058783651E93FA30DD96D6265E6E2F352554 Validity Not Before: Apr 5 06:55:00 2026 GMT Not After : Apr 12 06:55:00 2026 GMT Subject: CN=69d20744-bcd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8c:e8:58:77:44:23:51:e3:8b:ad:ca:41:da: de:5a:2f:37:33:da:35:11:f1:fc:b3:cf:af:84:7e: e5:66:89:86:fe:8b:03:c8:41:02:fe:dc:a7:de:0e: a2:95:1f:ef:c0:d1:10:6b:c4:1e:a8:58:de:a1:70: f9:15:4b:cf:df:ed:14:41:2d:28:27:df:08:83:c0: ad:93:46:62:3a:23:dc:8e:c8:09:78:4b:f5:36:bc: fd:19:ca:75:7a:fc:96:e2:81:4c:d5:83:a8:59:45: ee:b0:db:bf:72:a6:93:32:12:6c:81:52:13:df:b5: 89:a5:07:dc:13:59:44:9e:84:5d:bb:67:05:1a:d7: 15:18:a3:0f:16:a5:d0:94:b9:d8:09:fe:1f:ad:b1: 96:33:7a:b6:57:d9:c5:21:1f:5b:54:88:e7:05:e1: e6:c5:04:61:8f:e4:a2:3e:6e:2d:92:95:aa:7d:38: a3:37:de:72:46:7a:f7:00:a6:e2:10:92:6a:ba:30: f9:90:81:fd:02:ae:81:94:7e:94:1d:08:79:ab:d2: 39:29:59:22:0c:5a:6e:8f:61:f4:af:69:4e:92:2d: 14:17:de:2a:80:1f:52:11:4b:ee:c1:46:bb:73:3c: a5:e3:dd:a6:a3:c4:10:f1:d5:ba:ff:8d:3c:81:bb: 22:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:87:0E:C4:8D:C1:95:D9:3B:BB:E3:C2:89:8F:6C:C4:07:26:8B:5A X509v3 Authority Key Identifier: keyid:FB:7B:05:87:83:65:1E:93:FA:30:DD:96:D6:26:5E:6E:2F:35:25:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-3sFh4NlHpP6MN2W1iZebi81JVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C473/FEAE12A25DDF11F0A5BFD66FC4F9AE02/-3sFh4NlHpP6MN2W1iZebi81JVQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:82:ac:76:cd:a7:5b:ad:79:0f:58:79:a2:62:15:5b:4e:b2: 9b:ce:4a:7f:cc:9a:96:1f:ff:9e:b7:4e:a4:05:76:c2:34:26: bd:35:27:d0:6e:44:52:45:48:a4:d0:a2:d5:39:22:a8:90:d7: 69:a6:1e:30:1e:cf:f0:90:3a:43:22:bf:ca:93:c3:a2:cb:b6: 3c:0f:ea:fc:ad:69:22:78:e5:72:b0:84:92:42:9d:cd:8b:40: 35:f4:63:b8:21:a5:47:86:1e:ce:92:f6:be:96:b4:00:46:1f: 90:e0:71:e8:12:27:9b:ff:e3:e2:03:31:34:95:c7:cd:d7:75: 60:db:ed:7c:e2:13:d4:e7:db:75:13:c0:e8:65:a0:83:b7:ed: b4:48:82:6f:cd:ea:7d:23:4d:a9:26:aa:18:40:43:d0:34:d9: a0:42:a1:a9:52:24:75:a8:5c:33:3f:a0:48:c9:96:36:64:17: fe:c0:dd:8d:44:a6:cf:6a:a6:04:bc:92:e8:9d:00:ed:6c:87: 7f:40:12:6c:9f:e8:0d:c8:13:ee:e8:c6:e3:46:6e:11:3a:db: 6c:11:d2:e5:52:ea:ed:f0:de:31:20:6f:39:5a:f3:97:d3:36: f5:d2:80:ac:b2:87:87:05:2c:c4:79:b8:b3:92:39:f7:e5:29: 69:23:9e:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0NzMxMTAvBgNVBAUTKEZCN0IwNTg3ODM2NTFFOTNGQTMwREQ5NkQ2MjY1RTZF MkYzNTI1NTQwHhcNMjYwNDA1MDY1NTAwWhcNMjYwNDEyMDY1NTAwWjAYMRYwFAYD VQQDEw02OWQyMDc0NC1iY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04zoWHdEI1Hji63KQdreWi83M9o1EfH8s8+vhH7lZomG/osDyEEC/tyn3g6i lR/vwNEQa8QeqFjeoXD5FUvP3+0UQS0oJ98Ig8Ctk0ZiOiPcjsgJeEv1Nrz9Gcp1 evyW4oFM1YOoWUXusNu/cqaTMhJsgVIT37WJpQfcE1lEnoRdu2cFGtcVGKMPFqXQ lLnYCf4frbGWM3q2V9nFIR9bVIjnBeHmxQRhj+SiPm4tkpWqfTijN95yRnr3AKbi EJJqujD5kIH9Aq6BlH6UHQh5q9I5KVkiDFpuj2H0r2lOki0UF94qgB9SEUvuwUa7 czyl492mo8QQ8dW6/408gbsiEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ6HDsSN wZXZO7vjwomPbMQHJotaMB8GA1UdIwQYMBaAFPt7BYeDZR6T+jDdltYmXm4vNSVU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzQ3My9GRUFFMTJBMjVE REYxMUYwQTVCRkQ2NkZDNEY5QUUwMi8tM3NGaDRObEhwUDZNTjJXMWlaZWJpODFK VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0zc0ZoNE5sSHBQNk1OMlcxaVplYmk4MUpWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzQ3My9GRUFFMTJBMjVEREYxMUYwQTVCRkQ2NkZDNEY5QUUwMi8tM3NGaDRObEhw UDZNTjJXMWlaZWJpODFKVlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqoKsds2nW615D1h5omIVW06ym85Kf8yalh//nrdOpAV2wjQmvTUn0G5EUkVI pNCi1TkiqJDXaaYeMB7P8JA6QyK/ypPDosu2PA/q/K1pInjlcrCEkkKdzYtANfRj uCGlR4YezpL2vpa0AEYfkOBx6BInm//j4gMxNJXHzdd1YNvtfOIT1OfbdRPA6GWg g7fttEiCb83qfSNNqSaqGEBD0DTZoEKhqVIkdahcMz+gSMmWNmQX/sDdjUSmz2qm BLyS6J0A7WyHf0ASbJ/oDcgT7ujG40ZuETrbbBHS5VLq7fDeMSBvOVrzl9M29dKA rLKHhwUsxHm4s5I59+UpaSOe1A== -----END CERTIFICATE-----Generated at Mon Apr 6 13:36:37 2026 by rpki-client