$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: 3sORZtsJ3vnwdbbG+SZm/55bVB2Ugkgt8K2QeqruGiw= Subject key identifier: 28:2A:7B:20:0B:6E:32:A1:45:DC:EF:5C:0B:8A:37:52:48:15:77:52 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0CFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0CEB Signing time: Sat 04 Apr 2026 18:09:34 +0000 Manifest this update: Sat 04 Apr 2026 18:09:34 +0000 Manifest next update: Sat 11 Apr 2026 18:09:34 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: nNJTlxmqMeHovazekVGlYfws0F4HOtKJDWK6UkSWVJI=) 2: CD3E621E12F511F180FA8278113D8C67.roa (hash: kXxD2EMvx6LCGBFTx93ZGtgwkhNjqsacd4c8/3EVFYc=) 3: 96AE931812F511F1BA310F6D113D8C67.roa (hash: jP+hpdy04kY0o4MqB2uI3RyQMFd46KIJgsKGChbWqFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3324 (0xcfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B, serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Apr 4 18:09:34 2026 GMT Not After : Apr 11 18:09:34 2026 GMT Subject: CN=69d153de-95fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cf:07:28:28:a9:93:f3:6b:f4:e3:02:14:62: 0b:71:4b:7d:bc:3a:81:b5:49:27:6d:b8:a2:ad:d9: b1:ea:a5:4c:2e:01:a8:4e:52:30:6c:95:2b:72:66: a3:c9:e5:77:b7:6b:fd:ca:92:89:2e:e2:d6:7f:43: eb:a0:df:f1:f6:42:a1:1f:7d:c4:44:1f:99:19:0b: 0d:bf:4b:27:92:d7:64:a9:71:2f:2a:8d:9d:1c:fc: 43:66:6c:b5:c5:b3:35:ca:8c:7e:a4:cc:c3:1a:40: c7:07:32:70:1a:56:14:e4:fe:6b:80:a1:65:50:e3: f9:82:d5:98:d7:67:8c:68:12:46:12:69:03:ea:5a: 19:df:7b:8e:3e:76:37:75:ff:4f:e7:b2:93:a7:be: 1c:cd:2e:55:87:cb:1b:20:b2:ac:98:38:fa:db:40: 8c:65:b8:16:ef:e7:f7:04:cd:b0:66:d1:49:76:61: ac:6d:e6:23:c8:69:47:24:05:21:25:bf:da:54:8b: f9:de:0e:3b:fd:e8:62:2b:e6:6d:e6:d8:e0:82:bf: 34:99:ae:bf:f3:44:1d:c0:af:26:f8:af:0a:2f:e7: 77:9b:79:39:23:b1:0c:96:64:2b:57:61:28:33:e7: 0d:ab:e3:fb:1d:75:fe:40:cf:1a:a8:88:cc:28:40: b3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:2A:7B:20:0B:6E:32:A1:45:DC:EF:5C:0B:8A:37:52:48:15:77:52 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ec:59:f5:66:ea:71:a8:3d:37:eb:eb:44:42:63:e6:cd:0d: e4:23:42:3d:ad:1c:dc:a8:94:87:4d:b2:32:46:fa:27:7d:71: 6e:3d:15:6d:80:30:40:5f:21:31:17:3e:1d:7f:d3:ab:f8:36: 45:55:30:a9:3f:89:c6:fc:f7:a7:93:43:78:03:99:88:31:4a: fe:d7:69:9c:6a:5d:0b:bc:e2:58:da:a9:83:e9:f7:f3:cc:a4: af:fa:d7:12:75:a1:cc:57:ad:0a:a8:d7:09:f1:4a:4f:51:8e: b6:82:2d:0f:33:d2:e8:1c:80:fe:f6:68:e7:a3:b5:5d:79:aa: 7a:ab:8c:fb:4e:39:d9:7a:84:58:f4:27:28:65:99:6b:7b:ce: fc:a8:a6:5c:80:26:e6:5d:b0:6c:05:e6:30:40:b8:7c:a9:4c: b6:c9:a0:d3:b2:a9:6f:21:96:b3:4c:2a:92:8b:c8:3a:52:73: e7:67:11:b9:ab:f9:ef:d5:9a:1f:a1:30:ae:87:de:3d:94:f7: 1d:64:b8:ae:ed:af:7d:e3:91:9a:d7:7a:8b:1d:e2:b6:6e:55: 50:84:a5:5a:52:61:2c:41:19:77:d0:43:88:b3:c4:27:34:0d: e4:21:64:18:1c:49:51:16:e7:24:77:d3:6d:3f:3a:39:aa:f5: de:14:6a:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjYwNDA0MTgwOTM0WhcNMjYwNDExMTgwOTM0WjAYMRYwFAYD VQQDEw02OWQxNTNkZS05NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs88HKCipk/Nr9OMCFGILcUt9vDqBtUknbbiirdmx6qVMLgGoTlIwbJUrcmaj yeV3t2v9ypKJLuLWf0ProN/x9kKhH33ERB+ZGQsNv0snktdkqXEvKo2dHPxDZmy1 xbM1yox+pMzDGkDHBzJwGlYU5P5rgKFlUOP5gtWY12eMaBJGEmkD6loZ33uOPnY3 df9P57KTp74czS5Vh8sbILKsmDj620CMZbgW7+f3BM2wZtFJdmGsbeYjyGlHJAUh Jb/aVIv53g47/ehiK+Zt5tjggr80ma6/80QdwK8m+K8KL+d3m3k5I7EMlmQrV2Eo M+cNq+P7HXX+QM8aqIjMKECzkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCgqeyAL bjKhRdzvXAuKN1JIFXdSMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASOxZ9Wbqcag9N+vrREJj5s0N5CNCPa0c3KiUh02yMkb6J31xbj0VbYAwQF8h MRc+HX/Tq/g2RVUwqT+Jxvz3p5NDeAOZiDFK/tdpnGpdC7ziWNqpg+n388ykr/rX EnWhzFetCqjXCfFKT1GOtoItDzPS6ByA/vZo56O1XXmqequM+0452XqEWPQnKGWZ a3vO/KimXIAm5l2wbAXmMEC4fKlMtsmg07KpbyGWs0wqkovIOlJz52cRuav579Wa H6EwrofePZT3HWS4ru2vfeORmtd6ix3itm5VUISlWlJhLEEZd9BDiLPEJzQN5CFk GBxJURbnJHfTbT86Oar13hRqFQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:17 2026 by rpki-client