$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft File: r_h3chh1NYXDiOm4HDkGa9ONtZI.mft (raw, json) Hash identifier: zzOrQb2A/v7eY+/wM8n3isYzTkewik6DeitFQVm6u70= Subject key identifier: B0:3A:5B:67:66:A4:C9:1E:D2:EE:E9:E9:61:E3:E0:99:84:E0:2E:FE Authority key identifier: AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 Certificate issuer: /CN=A91CB3FE/serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft Manifest number: A7 Signing time: Sun 05 Apr 2026 06:37:58 +0000 Manifest this update: Sun 05 Apr 2026 06:37:57 +0000 Manifest next update: Sun 12 Apr 2026 06:37:57 +0000 Files and hashes: 1: r_h3chh1NYXDiOm4HDkGa9ONtZI.crl (hash: 7+i+GnZrbjPivHaB+4s2tTAUAX1WaJx7JHPGIc5qcWA=) 2: AFD61B9C36A311F08A82A258C4F9AE02.roa (hash: pJSESHzyh46NJYdnq5GWolfK6jlgGJK8T3PBPiUJbVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3FE, serialNumber=AFF8777218753585C388E9B81C39066BD38DB592 Validity Not Before: Apr 5 06:37:57 2026 GMT Not After : Apr 12 06:37:57 2026 GMT Subject: CN=69d20345-cbdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:42:3c:f5:65:3a:c3:32:22:66:78:06:1d: 33:19:98:bf:1e:19:95:05:aa:36:c5:f4:05:2d:42: 3d:9d:92:9a:90:10:f8:af:31:33:0c:d2:28:2c:87: 99:ed:97:ff:70:97:7c:f1:cf:11:66:0b:70:ee:6f: 69:7a:0d:36:48:e3:c8:e6:76:d7:42:6c:2f:7a:3c: 54:7e:f4:7d:3b:6d:c5:ce:e5:8d:2e:7d:a0:2a:51: ff:c1:62:d4:85:a3:a9:87:ce:c6:8b:78:00:f3:1f: 9f:6c:41:84:12:13:17:9d:5f:9f:f4:c2:90:54:dc: ba:99:7d:ae:20:a2:4f:f4:d7:3d:b3:cd:22:81:6f: b9:ee:cd:0d:fd:17:48:75:4b:e1:0b:01:a0:d5:7e: 2f:63:5d:13:f8:21:81:ef:54:2c:71:4a:d1:7b:25: 63:d2:38:1c:c1:14:4b:e9:4c:9e:96:ad:3f:71:f1: 0c:3b:4f:4e:d1:ab:dd:8b:69:d2:63:da:68:fa:b2: 44:96:82:67:b8:0c:38:42:a7:9b:6b:13:73:6c:b1: 2d:19:8d:80:1f:b8:06:c9:88:3e:b6:d4:8c:4c:80: 8f:ab:64:34:f2:b7:f4:33:e5:07:2a:4b:35:16:84: 34:af:76:36:f4:9f:23:94:cb:e7:f8:27:c7:5b:2c: 44:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3A:5B:67:66:A4:C9:1E:D2:EE:E9:E9:61:E3:E0:99:84:E0:2E:FE X509v3 Authority Key Identifier: keyid:AF:F8:77:72:18:75:35:85:C3:88:E9:B8:1C:39:06:6B:D3:8D:B5:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_h3chh1NYXDiOm4HDkGa9ONtZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3FE/2A56878236A211F0897B4B3CC4F9AE02/r_h3chh1NYXDiOm4HDkGa9ONtZI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:1e:35:38:a6:b9:f0:83:f9:85:34:02:36:53:6a:24:89:7c: 23:e6:a9:35:c1:6e:9f:e2:fa:de:10:01:38:6f:ee:91:77:5f: b2:54:12:31:ef:e8:4c:50:81:ed:9a:6a:f7:33:c8:5a:33:e8: 3e:3a:f7:51:72:98:46:90:61:d2:c3:e7:4a:6e:d4:f0:d2:1f: 3c:d5:55:7e:84:3e:ff:1d:1f:0d:ef:94:44:36:14:7b:77:0a: f6:a6:31:93:c0:ed:f3:87:0c:0c:00:17:ef:ce:c1:d2:d3:b1: db:51:55:db:2d:50:d8:f1:df:34:c7:38:f1:4b:47:d8:17:ce: b6:95:b5:ee:2d:58:77:92:ee:04:c4:ad:21:72:bf:aa:1d:c4: ac:2c:c2:70:2c:6a:ec:db:4f:53:81:27:dc:40:11:71:63:31: 72:61:6b:9b:c0:9e:85:dd:26:4e:e4:81:59:d1:f8:75:20:ce: ee:6b:d3:2e:4c:a5:ab:3c:74:30:62:37:dc:d5:2d:a8:7d:ce: 98:b4:7e:ec:1b:fb:f1:61:1a:e3:b2:82:5f:df:fb:7a:92:d9: 99:f1:9a:f3:43:6e:47:0f:16:3c:93:8a:06:c4:c5:6c:52:e8: d3:9e:15:53:02:79:05:58:72:32:0c:48:cf:ca:8c:19:1e:99: 72:eb:1d:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzRkUxMTAvBgNVBAUTKEFGRjg3NzcyMTg3NTM1ODVDMzg4RTlCODFDMzkwNjZC RDM4REI1OTIwHhcNMjYwNDA1MDYzNzU3WhcNMjYwNDEyMDYzNzU3WjAYMRYwFAYD VQQDEw02OWQyMDM0NS1jYmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuENCPPVlOsMyImZ4Bh0zGZi/HhmVBao2xfQFLUI9nZKakBD4rzEzDNIoLIeZ 7Zf/cJd88c8RZgtw7m9peg02SOPI5nbXQmwvejxUfvR9O23FzuWNLn2gKlH/wWLU haOph87Gi3gA8x+fbEGEEhMXnV+f9MKQVNy6mX2uIKJP9Nc9s80igW+57s0N/RdI dUvhCwGg1X4vY10T+CGB71QscUrReyVj0jgcwRRL6Uyelq0/cfEMO09O0avdi2nS Y9po+rJEloJnuAw4QqebaxNzbLEtGY2AH7gGyYg+ttSMTICPq2Q08rf0M+UHKks1 FoQ0r3Y29J8jlMvn+CfHWyxEZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLA6W2dm pMke0u7p6WHj4JmE4C7+MB8GA1UdIwQYMBaAFK/4d3IYdTWFw4jpuBw5BmvTjbWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNGRS8yQTU2ODc4MjM2 QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5ZWERpT200SERrR2E5T050 WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaDNjaGgxTllYRGlPbTRIRGtHYTlPTnRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjNGRS8yQTU2ODc4MjM2QTIxMUYwODk3QjRCM0NDNEY5QUUwMi9yX2gzY2hoMU5Z WERpT200SERrR2E5T050WkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuR41OKa58IP5hTQCNlNqJIl8I+apNcFun+L63hABOG/ukXdfslQSMe/oTFCB 7Zpq9zPIWjPoPjr3UXKYRpBh0sPnSm7U8NIfPNVVfoQ+/x0fDe+URDYUe3cK9qYx k8Dt84cMDAAX787B0tOx21FV2y1Q2PHfNMc48UtH2BfOtpW17i1Yd5LuBMStIXK/ qh3ErCzCcCxq7NtPU4En3EARcWMxcmFrm8Cehd0mTuSBWdH4dSDO7mvTLkylqzx0 MGI33NUtqH3OmLR+7Bv78WEa47KCX9/7epLZmfGa80NuRw8WPJOKBsTFbFLo054V UwJ5BVhyMgxIz8qMGR6ZcusdLA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:04:07 2026 by rpki-client