$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: LSVkxvvdZwGGzVnmD0la/AohboSj1F78LfeI/I6NHGM= Subject key identifier: F2:0D:33:8F:A4:AC:F6:BD:E7:90:71:6D:83:E6:0E:10:01:18:0D:A4 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01B7 Signing time: Sun 05 Apr 2026 03:24:51 +0000 Manifest this update: Sun 05 Apr 2026 03:24:51 +0000 Manifest next update: Sun 12 Apr 2026 03:24:51 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: zJNrh0wg7N3b6uf7pFLTOHUHk+oHd+x0qkDUq4UV/yA=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: AWpj07zDh15fklZ/07HH5rxQ/lecHbJoawDHB8JKXuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Apr 5 03:24:51 2026 GMT Not After : Apr 12 03:24:51 2026 GMT Subject: CN=69d1d603-2e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:70:d5:8f:f4:d3:14:a9:c8:2c:5b:a4:6e: a2:05:6b:b9:b7:ed:d3:3c:67:36:ca:a4:d6:8d:7c: 76:2d:cb:42:1e:0c:64:bd:3e:41:c8:16:bf:11:d9: 32:52:57:56:ee:93:20:f3:70:2c:8f:00:a9:60:91: 77:3a:44:bf:e1:07:21:a3:d2:02:e6:5f:85:f4:25: 2d:a9:63:aa:d5:75:04:da:f9:2a:0b:25:86:b5:67: 12:3f:67:67:11:a0:7e:0b:19:0d:c8:f4:73:c1:ba: 14:26:84:09:54:0a:1f:76:0e:12:3a:a1:52:d1:52: 6e:3c:1f:02:77:25:e7:64:7a:57:ff:d7:87:10:5a: 98:ba:c2:e1:c8:df:11:28:55:a2:c4:ce:34:73:92: d3:b9:ca:9a:b0:1d:69:99:e2:07:e6:65:b3:2d:62: 76:b2:f0:98:b3:aa:37:d4:31:5f:16:41:e5:05:dc: e2:10:0b:84:97:70:96:49:36:b3:5d:ae:9e:4d:2b: b8:40:3e:6d:2d:f3:13:92:c5:30:e3:58:50:f4:05: 22:cd:f1:e3:90:f5:ba:fd:bf:a8:c7:88:0b:a2:bf: 07:7a:73:7a:13:cd:31:99:9f:e3:b8:da:08:a1:19: ac:77:89:57:e0:51:98:88:2f:33:59:33:21:f7:59: 09:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0D:33:8F:A4:AC:F6:BD:E7:90:71:6D:83:E6:0E:10:01:18:0D:A4 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:dd:83:c9:c0:81:b3:c3:86:e6:3f:cd:87:cd:82:19:b0:31: 8c:69:38:d1:40:16:5e:e3:d3:08:03:cd:63:cf:a7:c9:e2:51: 75:ee:15:c8:1c:c6:7d:de:b3:d6:64:33:5b:36:dd:02:78:35: 4f:bc:78:ab:28:93:68:cf:c5:7d:dd:09:d8:4a:03:60:25:a0: a8:29:9e:49:3f:7f:91:8b:5e:54:6b:70:bc:87:80:d0:61:c5: 24:9f:54:a9:30:7c:d4:a1:88:39:93:2c:59:2b:98:6a:88:a7: 03:8a:b2:a6:50:a5:45:1c:66:34:cb:44:7b:77:9b:d0:63:cf: 18:cd:48:7b:5d:9d:de:7a:af:18:49:61:01:be:8b:06:b9:68: de:7a:9a:e2:e2:75:0f:5c:55:e4:19:38:cb:c5:e0:90:6e:41: 3d:a7:76:6e:5b:c2:cb:7e:5b:10:ba:42:b7:4b:dc:b5:06:d0: a7:27:35:ad:2d:b7:68:e0:4b:75:02:e5:54:64:48:55:51:75: a2:9d:e1:4b:af:69:ce:57:1a:1c:1a:b6:e8:67:4d:d3:cd:45: c5:4e:d4:f7:59:9a:a6:4f:b6:54:ad:95:f0:09:9d:88:75:7f: e1:16:1c:46:e9:d8:32:d8:2f:bd:1a:c5:c7:2f:14:2a:f3:09: 01:91:6e:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwNDA1MDMyNDUxWhcNMjYwNDEyMDMyNDUxWjAYMRYwFAYD VQQDEw02OWQxZDYwMy0yZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ctw1Y/00xSpyCxbpG6iBWu5t+3TPGc2yqTWjXx2LctCHgxkvT5ByBa/Edky UldW7pMg83AsjwCpYJF3OkS/4Qcho9IC5l+F9CUtqWOq1XUE2vkqCyWGtWcSP2dn EaB+CxkNyPRzwboUJoQJVAofdg4SOqFS0VJuPB8CdyXnZHpX/9eHEFqYusLhyN8R KFWixM40c5LTucqasB1pmeIH5mWzLWJ2svCYs6o31DFfFkHlBdziEAuEl3CWSTaz Xa6eTSu4QD5tLfMTksUw41hQ9AUizfHjkPW6/b+ox4gLor8HenN6E80xmZ/juNoI oRmsd4lX4FGYiC8zWTMh91kJ0wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPINM4+k rPa955BxbYPmDhABGA2kMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu92DycCBs8OG5j/Nh82CGbAxjGk40UAWXuPTCAPNY8+nyeJRde4VyBzGfd6z 1mQzWzbdAng1T7x4qyiTaM/Ffd0J2EoDYCWgqCmeST9/kYteVGtwvIeA0GHFJJ9U qTB81KGIOZMsWSuYaoinA4qyplClRRxmNMtEe3eb0GPPGM1Ie12d3nqvGElhAb6L Brlo3nqa4uJ1D1xV5Bk4y8XgkG5BPad2blvCy35bELpCt0vctQbQpyc1rS23aOBL dQLlVGRIVVF1op3hS69pzlcaHBq26GdN081FxU7U91mapk+2VK2V8AmdiHV/4RYc RunYMtgvvRrFxy8UKvMJAZFuLA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:54:11 2026 by rpki-client