$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: 1wTAItIoin8F+Zcq9c46LK2MDOnDFssBAKu7+DTwusY= Subject key identifier: D0:2F:AB:50:C5:19:09:83:AF:47:B1:FB:19:8E:79:00:82:CA:99:94 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 09FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 09F5 Signing time: Sat 04 Apr 2026 19:39:22 +0000 Manifest this update: Sat 04 Apr 2026 19:39:21 +0000 Manifest next update: Sat 11 Apr 2026 19:39:21 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: opIDv4NG5vxn8glycX85fjPvlKMiRRxvejRgCgviXpA=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: TtvgX0HunQnxwePu7sD+x5FU7eZoqly/IQVqoa8h86s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2557 (0x9fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2, serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: Apr 4 19:39:21 2026 GMT Not After : Apr 11 19:39:21 2026 GMT Subject: CN=69d168e9-669a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:37:c1:1c:2e:e2:97:ea:85:ed:08:a2:b9:7a: 12:8d:7d:d6:bd:2a:21:39:6b:d5:5c:27:f9:4f:0c: c0:76:4f:7d:9b:d2:7b:4b:f7:5e:77:9a:36:3b:25: 31:f8:23:53:b1:b3:f2:71:63:b6:36:99:09:17:63: 9f:4a:a5:a5:10:3a:e7:93:a6:f9:1b:a2:3f:8c:c0: b0:af:14:5b:22:90:fb:30:af:09:ff:8d:a9:ee:b2: be:e5:d0:d6:5b:de:f6:ba:f1:b3:dc:31:2e:76:1e: 8d:bd:98:1c:4e:bc:ad:22:ed:f6:fc:76:c9:d3:bd: d5:0d:b3:b3:4a:d1:7c:09:b5:46:61:b8:4f:d8:31: da:ab:f0:87:c6:95:ce:4d:dd:01:68:03:22:4b:f5: 3e:3b:9b:fd:01:06:ca:a8:6d:1f:da:50:a5:86:59: 62:c4:2b:39:db:87:36:ff:29:da:21:24:91:3d:01: c2:94:a8:22:0b:78:e2:23:42:ed:ad:8c:e4:65:0b: 80:91:17:fc:d8:c7:24:3c:d8:92:ed:66:5e:14:af: d2:28:79:44:40:69:5e:5e:c2:05:96:0a:ac:1d:57: a3:6e:f2:a5:71:63:60:29:f7:cf:9b:b8:90:ac:a8: 5c:aa:26:5f:f8:9b:80:35:38:9b:27:d8:17:e7:69: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2F:AB:50:C5:19:09:83:AF:47:B1:FB:19:8E:79:00:82:CA:99:94 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:30:65:a8:6c:79:ea:b2:e7:c0:85:c5:c8:52:6b:90:51:7d: a6:a8:41:bd:85:61:51:9a:50:cb:de:7e:b3:a0:97:53:d0:85: 33:49:e2:e1:e4:3d:39:5d:91:3a:a5:71:60:07:75:d5:94:47: 86:e7:c0:8c:08:92:2d:54:80:4b:ab:aa:84:ff:d5:2a:9f:eb: 7f:31:5d:2a:2a:87:d9:59:43:d9:e2:f7:e4:22:8c:34:68:07: 65:be:b6:0b:67:e1:1d:04:4b:95:5d:04:2f:da:3b:24:7d:8a: d5:62:a1:67:36:29:47:f7:60:ad:74:a0:2a:2d:96:09:60:30: 69:18:06:1a:3a:b5:dd:30:df:80:94:0d:92:41:5b:35:25:d7: 5c:76:b5:53:fd:0c:72:e5:d9:68:fe:87:40:93:45:1f:8c:78: 06:71:00:47:f4:e0:32:82:74:64:34:0f:b6:94:d5:c7:27:48: 90:e8:e9:8d:f9:98:75:23:ba:83:35:77:02:c7:bf:79:57:bf: ec:6f:b5:5c:3b:a3:92:8c:93:d9:00:63:a0:50:72:5e:29:17: 4d:88:3f:90:de:b7:42:b5:d5:20:40:61:7c:84:a7:2b:fb:3a: a2:8b:b3:fb:0d:bd:a0:83:c8:3a:6f:26:e2:f0:10:21:8b:8d: 9f:c9:fa:8f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjYwNDA0MTkzOTIxWhcNMjYwNDExMTkzOTIxWjAYMRYwFAYD VQQDEw02OWQxNjhlOS02NjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TfBHC7il+qF7QiiuXoSjX3WvSohOWvVXCf5TwzAdk99m9J7S/ded5o2OyUx +CNTsbPycWO2NpkJF2OfSqWlEDrnk6b5G6I/jMCwrxRbIpD7MK8J/42p7rK+5dDW W972uvGz3DEudh6NvZgcTrytIu32/HbJ073VDbOzStF8CbVGYbhP2DHaq/CHxpXO Td0BaAMiS/U+O5v9AQbKqG0f2lClhllixCs524c2/ynaISSRPQHClKgiC3jiI0Lt rYzkZQuAkRf82MckPNiS7WZeFK/SKHlEQGleXsIFlgqsHVejbvKlcWNgKffPm7iQ rKhcqiZf+JuANTibJ9gX52mWhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNAvq1DF GQmDr0ex+xmOeQCCypmUMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHzBlqGx56rLnwIXFyFJrkFF9pqhBvYVhUZpQy95+s6CXU9CFM0ni4eQ9OV2R OqVxYAd11ZRHhufAjAiSLVSAS6uqhP/VKp/rfzFdKiqH2VlD2eL35CKMNGgHZb62 C2fhHQRLlV0EL9o7JH2K1WKhZzYpR/dgrXSgKi2WCWAwaRgGGjq13TDfgJQNkkFb NSXXXHa1U/0McuXZaP6HQJNFH4x4BnEAR/TgMoJ0ZDQPtpTVxydIkOjpjfmYdSO6 gzV3Ase/eVe/7G+1XDujkoyT2QBjoFByXikXTYg/kN63QrXVIEBhfISnK/s6oouz +w29oIPIOm8m4vAQIYuNn8n6jw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:52:53 2026 by rpki-client