$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: Dg0+dO8tDF9Zmf288iYTs/VXOvFE1nr3LYc1EMoIvtc= Subject key identifier: 7B:61:BB:68:4A:86:31:3C:95:F4:15:70:B4:A4:27:4C:00:07:AA:C3 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 021D Signing time: Sat 18 Apr 2026 15:14:05 +0000 Manifest this update: Sat 18 Apr 2026 15:14:05 +0000 Manifest next update: Sat 25 Apr 2026 15:14:05 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: wDovODAz2RkCsqtct5stbtho5vJZqLrw5Vsk68zRbcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13, serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Apr 18 15:14:05 2026 GMT Not After : Apr 25 15:14:05 2026 GMT Subject: CN=69e39fbd-d2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:c0:14:01:70:cb:73:af:05:53:89:58:b9: 69:c3:f0:84:99:88:51:0e:fc:ba:e3:fa:ee:ce:8d: 18:1c:19:7e:e2:e1:c5:dd:96:95:a7:94:8a:b9:d9: f9:7b:a7:54:61:05:61:61:f9:0c:fb:5c:48:2d:31: c9:9a:16:a9:e3:42:45:23:f2:9a:95:f2:f5:2d:5e: b2:39:40:18:8a:3f:4a:2f:a2:6b:3b:81:df:5d:4d: 2f:29:8f:90:1f:f6:7f:51:7d:fb:aa:15:a0:2a:dc: 96:4a:dd:4e:6f:84:4b:e8:4e:b2:21:64:72:ee:00: 33:15:64:5e:5b:13:25:bc:63:f9:06:4b:28:3c:69: 52:f9:da:1a:3b:cb:04:12:97:00:66:a4:4d:78:50: 12:6c:a9:9d:fa:89:21:09:24:61:2c:57:63:11:14: 92:69:d5:2b:f7:bc:21:a1:2a:4c:cb:de:0b:98:32: dd:93:86:29:c0:a6:6a:43:4a:9e:be:35:53:33:ef: fe:81:76:14:a4:cf:e4:7c:9e:66:9e:d8:d5:a9:6d: 38:5d:1e:42:fa:9b:f3:7f:1d:99:78:dd:a7:2d:45: d9:e8:22:fa:de:9f:37:e1:a2:81:8b:b7:36:24:09: 01:dd:2d:e1:9e:8b:ce:06:ad:89:a2:d0:95:24:e9: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:61:BB:68:4A:86:31:3C:95:F4:15:70:B4:A4:27:4C:00:07:AA:C3 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:b9:0f:fc:7e:99:26:c4:39:72:6f:28:28:7a:ab:f2:e0:24: 25:49:5a:07:40:bd:78:c5:cc:53:91:45:73:a8:08:bb:23:28: 7f:17:cb:0f:62:16:a7:bd:92:5a:27:6a:87:26:13:87:5d:fe: 9c:84:e2:a1:69:19:5f:b9:9f:f7:97:e6:09:59:14:ee:60:fb: ed:e6:5c:02:8c:2d:20:d4:2a:0a:e3:9d:cb:47:30:c6:06:89: a3:50:00:68:9b:a7:f9:80:82:a3:64:28:9e:c2:31:10:a5:ca: 13:af:27:79:1d:28:11:be:64:e5:cc:4b:d6:54:59:36:af:c5: a7:aa:fb:17:0b:c6:0f:f0:9e:8f:12:d0:bb:df:bc:7d:a7:12: 8b:9e:2c:a2:b9:4c:c0:aa:85:de:f6:04:15:50:b0:b5:d8:10: d6:49:70:f1:5e:0b:a7:30:57:14:ee:0a:64:94:a0:19:a4:9c: 35:d1:4d:b3:2b:f5:74:6d:ae:a8:dd:41:31:8b:2b:a2:8a:19: a9:f0:6f:85:f5:af:31:a6:fc:ad:87:fe:67:83:0a:57:05:49: 5e:04:29:0e:f6:44:37:86:3a:43:34:cb:8b:aa:5e:fc:7c:c3: d1:6f:04:ca:53:69:2c:4a:89:bb:f4:f7:d6:1f:4c:ef:65:32: 0e:bd:53:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjYwNDE4MTUxNDA1WhcNMjYwNDI1MTUxNDA1WjAYMRYwFAYD VQQDEw02OWUzOWZiZC1kMmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RfAFAFwy3OvBVOJWLlpw/CEmYhRDvy64/ruzo0YHBl+4uHF3ZaVp5SKudn5 e6dUYQVhYfkM+1xILTHJmhap40JFI/KalfL1LV6yOUAYij9KL6JrO4HfXU0vKY+Q H/Z/UX37qhWgKtyWSt1Ob4RL6E6yIWRy7gAzFWReWxMlvGP5BksoPGlS+doaO8sE EpcAZqRNeFASbKmd+okhCSRhLFdjERSSadUr97whoSpMy94LmDLdk4YpwKZqQ0qe vjVTM+/+gXYUpM/kfJ5mntjVqW04XR5C+pvzfx2ZeN2nLUXZ6CL63p834aKBi7c2 JAkB3S3hnovOBq2JotCVJOk7mwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHthu2hK hjE8lfQVcLSkJ0wAB6rDMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsrkP/H6ZJsQ5cm8oKHqr8uAkJUlaB0C9eMXMU5FFc6gIuyMofxfLD2IWp72S WidqhyYTh13+nITioWkZX7mf95fmCVkU7mD77eZcAowtINQqCuOdy0cwxgaJo1AA aJun+YCCo2QonsIxEKXKE68neR0oEb5k5cxL1lRZNq/Fp6r7FwvGD/CejxLQu9+8 facSi54sorlMwKqF3vYEFVCwtdgQ1klw8V4LpzBXFO4KZJSgGaScNdFNsyv1dG2u qN1BMYsroooZqfBvhfWvMab8rYf+Z4MKVwVJXgQpDvZEN4Y6QzTLi6pe/HzD0W8E ylNpLEqJu/T31h9M72UyDr1Tnw== -----END CERTIFICATE-----Generated at Sat Apr 18 22:24:03 2026 by rpki-client