$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: tUnk/+deiFXIwb/0bfOzXt/A3r9rFCEJShe5hMzH4cM= Subject key identifier: CA:0E:46:25:51:87:8E:E3:7C:C9:3B:88:EF:BC:AD:62:E3:A0:9A:33 Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: E3 Signing time: Fri 17 Apr 2026 06:15:47 +0000 Manifest this update: Fri 17 Apr 2026 06:15:46 +0000 Manifest next update: Fri 24 Apr 2026 06:15:46 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: 5XJ6x/PIbWOL+yT93TUoJXE6keNvZ+T6hBoU67zXGA4=) 2: 3958EEC642BB11F0B449BB81C4F9AE02.roa (hash: xBMqZvhUayr3U1URgwrl8EIqJ+zMDOpes797KaEjYwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Apr 17 06:15:46 2026 GMT Not After : Apr 24 06:15:46 2026 GMT Subject: CN=69e1d013-b0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:b1:8d:e1:f0:31:2e:60:78:bc:f1:9c:ef: f3:85:5f:fd:71:17:d1:f7:58:af:02:13:5d:d3:6b: c8:f7:3e:9f:f3:77:5f:64:f1:b5:0c:6f:14:52:a3: 9f:d2:47:93:57:12:25:fd:02:a3:0f:92:14:7a:6f: 18:9b:0a:b1:d0:9f:3f:98:0e:27:44:92:f1:01:f8: 43:d7:a3:d0:5a:1c:1f:64:35:51:0b:65:d4:f7:43: 00:37:ce:66:f5:c0:1f:96:90:c8:e3:12:7a:cb:05: f9:a3:e9:8f:31:22:02:b3:75:7e:08:17:0b:bc:3d: 7c:cf:53:e6:29:77:b0:58:9e:0c:e4:a0:2c:86:f4: fc:8c:bc:f8:c7:ab:6a:36:ce:61:d3:64:56:45:99: f0:e8:94:65:21:58:9a:94:0e:1d:fb:a6:65:0e:85: 08:22:1e:0a:fd:3f:34:73:d1:47:f7:3b:58:ae:85: 9f:fa:1d:9e:fd:f0:5d:a7:c6:02:1f:a6:67:90:b7: 33:29:b9:a8:56:a0:52:c0:6e:98:43:64:9f:2c:cb: df:cc:49:77:97:1f:da:28:d7:52:ae:bb:2a:23:da: cc:2b:d1:16:00:33:79:4d:bb:e7:bb:6a:58:ae:95: 0f:ff:80:69:a4:2f:36:b7:47:d9:07:5d:2b:fa:3e: b4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0E:46:25:51:87:8E:E3:7C:C9:3B:88:EF:BC:AD:62:E3:A0:9A:33 X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:9b:72:cb:c3:9c:5e:25:52:e5:ad:0a:ec:45:c9:37:c0:3d: 5b:eb:df:e5:fc:40:d9:51:f1:ff:00:b3:ed:0d:85:c7:c6:b5: 41:9b:33:45:d0:28:74:8a:ff:4a:23:7c:0d:87:ab:aa:40:27: b2:1f:12:db:04:38:57:58:59:80:00:be:30:84:a2:f2:a5:be: e9:88:11:34:e9:cc:a3:fb:a4:46:eb:d9:9d:b9:03:c1:0d:de: db:60:3d:1b:f1:20:6a:86:85:b6:bd:3f:8b:c1:9a:75:3e:83: 8a:99:f1:a5:60:1b:66:84:4a:7c:79:7f:b4:69:60:5c:35:19: 0b:cc:09:f6:93:a6:88:39:49:91:5d:7e:4c:a9:17:3f:f5:b6: c9:e9:9d:f8:6f:48:95:92:ec:16:31:66:03:13:14:25:13:88: 3c:7d:2f:8e:ca:f7:d5:3e:4a:56:28:d7:19:1b:1f:93:53:01: 57:f8:5a:9c:d0:82:7b:bc:33:9b:40:59:eb:a5:ab:0d:08:8c: 84:d0:8e:00:7f:53:4e:7e:5f:6e:1a:af:7e:af:ce:ca:1a:7e: ff:54:56:87:c8:8c:97:1d:7a:5f:80:54:d1:a4:c9:3f:ae:4f: 26:26:43:6b:32:05:d3:20:97:5e:d4:28:02:3b:cf:71:56:36: 42:bc:4b:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjYwNDE3MDYxNTQ2WhcNMjYwNDI0MDYxNTQ2WjAYMRYwFAYD VQQDEw02OWUxZDAxMy1iMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5CxjeHwMS5geLzxnO/zhV/9cRfR91ivAhNd02vI9z6f83dfZPG1DG8UUqOf 0keTVxIl/QKjD5IUem8Ymwqx0J8/mA4nRJLxAfhD16PQWhwfZDVRC2XU90MAN85m 9cAflpDI4xJ6ywX5o+mPMSICs3V+CBcLvD18z1PmKXewWJ4M5KAshvT8jLz4x6tq Ns5h02RWRZnw6JRlIVialA4d+6ZlDoUIIh4K/T80c9FH9ztYroWf+h2e/fBdp8YC H6ZnkLczKbmoVqBSwG6YQ2SfLMvfzEl3lx/aKNdSrrsqI9rMK9EWADN5Tbvnu2pY rpUP/4BppC82t0fZB10r+j60/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMoORiVR h47jfMk7iO+8rWLjoJozMB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzI3My9GQzUwNTAwRUU3NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBW LWNwOF9GVzY2bnRoYlpWMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtZtyy8OcXiVS5a0K7EXJN8A9W+vf5fxA2VHx/wCz7Q2Fx8a1QZszRdAodIr/ SiN8DYerqkAnsh8S2wQ4V1hZgAC+MISi8qW+6YgRNOnMo/ukRuvZnbkDwQ3e22A9 G/EgaoaFtr0/i8GadT6DipnxpWAbZoRKfHl/tGlgXDUZC8wJ9pOmiDlJkV1+TKkX P/W2yemd+G9IlZLsFjFmAxMUJROIPH0vjsr31T5KVijXGRsfk1MBV/hanNCCe7wz m0BZ66WrDQiMhNCOAH9TTn5fbhqvfq/Oyhp+/1RWh8iMlx16X4BU0aTJP65PJiZD azIF0yCXXtQoAjvPcVY2QrxLQg== -----END CERTIFICATE-----Generated at Sun Apr 19 02:22:39 2026 by rpki-client