$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: 3wNx+wTL4b8/UMYMw0exaFRYAWdrBtaIQ5qefj67ylg= Subject key identifier: D9:C7:95:C5:65:24:A3:DF:23:1A:56:E3:03:FA:8D:3C:42:21:52:3F Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 03A2 Signing time: Sun 05 Apr 2026 00:30:40 +0000 Manifest this update: Sun 05 Apr 2026 00:30:39 +0000 Manifest next update: Sun 12 Apr 2026 00:30:39 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: cNVRy3n5TkpOzakCVg+uGxkTAFAEHEF6TPbyxuzzmgQ=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: RJPc40XFK5jtMh57bQpC2ukr/5ePr0qsfi6VvsDutiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB, serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Apr 5 00:30:39 2026 GMT Not After : Apr 12 00:30:39 2026 GMT Subject: CN=69d1ad30-efe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a7:ea:a0:12:5f:22:cb:fb:10:65:84:b8:8f: 7e:14:57:53:f6:06:25:33:5a:24:de:c7:25:b1:ac: af:71:97:96:6e:28:b8:f2:2c:81:ce:28:8c:3b:f4: db:a0:4e:41:21:94:36:dd:12:03:e9:13:fe:d8:70: 59:6e:45:1a:49:74:f7:99:38:26:cb:c4:db:72:1e: 92:1e:75:fb:44:90:55:90:d8:2a:70:ee:5b:81:13: db:cf:72:ed:35:fe:94:0f:27:eb:9a:b2:e4:9c:27: cc:1a:09:83:9c:e8:26:57:b2:64:14:c1:93:7e:5b: 88:58:4c:5c:73:ab:cb:9d:5a:22:5f:7a:f7:e9:b4: 16:a7:36:3e:a0:b6:e8:84:2d:20:ab:0d:2b:62:bf: 3b:60:4b:ca:44:5d:f1:2f:10:60:62:a5:bc:c4:be: 47:64:8f:f0:a4:46:af:bc:88:f6:cf:14:d0:53:63: 84:d7:9a:02:47:62:5c:d9:2f:ae:01:30:45:57:db: 7b:39:2a:b0:bb:22:57:66:27:87:36:e7:96:4b:11: 09:ec:d8:13:9c:a9:a4:ab:32:b7:49:f5:32:22:32: e9:c5:4d:10:c9:e2:0e:f3:48:40:ef:0d:5f:be:2b: b5:05:74:5a:be:44:e6:f6:82:91:dd:41:de:0c:19: 9c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C7:95:C5:65:24:A3:DF:23:1A:56:E3:03:FA:8D:3C:42:21:52:3F X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:79:c8:ba:a9:97:4d:27:18:61:83:f9:e6:25:b2:ee:4f:77: 7c:17:74:d5:89:24:42:2f:ed:36:ff:ce:d1:08:e9:6d:39:01: 75:f0:bb:c8:16:09:af:04:5d:fb:e0:55:36:c5:6f:76:e7:b3: 64:a4:ff:f2:1e:c7:62:77:e9:94:48:f7:86:67:a2:dd:a0:5a: 5b:f5:b4:e2:1c:34:2b:f0:85:ec:20:4e:ae:72:c1:83:09:35: 8a:6c:94:8c:df:3b:0f:4a:89:50:9a:b9:e0:20:1b:4d:c2:d3: 28:6f:6b:a3:a9:93:c5:b5:e4:f6:08:0f:98:6a:52:c4:95:05: df:75:e1:2d:42:db:2d:07:c0:c5:a9:25:d5:4e:30:77:1f:1a: 0d:25:df:8b:a1:f8:a7:1f:e7:77:85:9c:07:f0:86:92:b0:51: 95:1b:75:1b:5a:65:7c:60:58:83:f9:79:75:34:c3:af:f3:41: c7:ff:58:48:3e:b1:c9:b2:c8:b2:bd:b3:bc:9a:61:2c:0d:cf: 07:11:c1:bc:33:74:40:54:ba:bd:3a:2e:67:41:82:27:6d:f0: 7f:df:3a:70:dc:f9:bd:34:98:96:22:16:0f:0e:1c:d0:29:1f: cd:5c:47:79:a5:f0:36:ed:2d:a0:00:cf:b5:42:92:ec:b6:13: ae:2b:28:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjYwNDA1MDAzMDM5WhcNMjYwNDEyMDAzMDM5WjAYMRYwFAYD VQQDEw02OWQxYWQzMC1lZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKfqoBJfIsv7EGWEuI9+FFdT9gYlM1ok3sclsayvcZeWbii48iyBziiMO/Tb oE5BIZQ23RID6RP+2HBZbkUaSXT3mTgmy8Tbch6SHnX7RJBVkNgqcO5bgRPbz3Lt Nf6UDyfrmrLknCfMGgmDnOgmV7JkFMGTfluIWExcc6vLnVoiX3r36bQWpzY+oLbo hC0gqw0rYr87YEvKRF3xLxBgYqW8xL5HZI/wpEavvIj2zxTQU2OE15oCR2Jc2S+u ATBFV9t7OSqwuyJXZieHNueWSxEJ7NgTnKmkqzK3SfUyIjLpxU0QyeIO80hA7w1f viu1BXRavkTm9oKR3UHeDBmcbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNnHlcVl JKPfIxpW4wP6jTxCIVI/MB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFnnIuqmXTScYYYP55iWy7k93fBd01YkkQi/tNv/O0QjpbTkBdfC7yBYJrwRd ++BVNsVvduezZKT/8h7HYnfplEj3hmei3aBaW/W04hw0K/CF7CBOrnLBgwk1imyU jN87D0qJUJq54CAbTcLTKG9ro6mTxbXk9ggPmGpSxJUF33XhLULbLQfAxakl1U4w dx8aDSXfi6H4px/nd4WcB/CGkrBRlRt1G1plfGBYg/l5dTTDr/NBx/9YSD6xybLI sr2zvJphLA3PBxHBvDN0QFS6vTouZ0GCJ23wf986cNz5vTSYliIWDw4c0CkfzVxH eaXwNu0toADPtUKS7LYTrisoIw== -----END CERTIFICATE-----Generated at Mon Apr 6 11:19:34 2026 by rpki-client