$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: Xvxy9teZnWK8tXlX944I+rqT2viAlWMCqO4X+3496Zw= Subject key identifier: 1A:C9:2C:22:B3:0B:F8:3D:07:86:D0:EE:D1:6F:B3:B4:39:66:6F:4A Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0880 Signing time: Wed 20 May 2026 20:40:36 +0000 Manifest this update: Wed 20 May 2026 20:40:36 +0000 Manifest next update: Wed 27 May 2026 20:40:36 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: kOXfJ/7HHy7wflpbqMGxAR8Hp/tUz6dezmjimtPSYvY=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: gjXk5FJ28SiJiqatM16BZg/99HgL3HEPLn3XZb4vIWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2185 (0x889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: May 20 20:40:36 2026 GMT Not After : May 27 20:40:36 2026 GMT Subject: CN=6a0e1c44-be95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7f:e4:f8:fd:24:44:9e:98:ce:64:bf:2b:cf: 17:c6:3e:1b:14:1a:f2:21:cf:4e:e9:7e:4f:3c:42: 83:51:23:7a:15:bf:9d:30:07:ec:d3:e0:0c:35:36: 1d:4a:97:7b:45:06:c7:86:b9:49:37:b6:ee:ef:f7: b7:19:cc:ba:af:94:6e:59:d4:3a:88:f6:f1:3e:46: a8:d5:e9:68:f1:e6:fc:b2:1b:33:87:15:e9:4f:6c: 39:5f:53:00:76:d5:ff:ef:ba:9b:1c:0d:3b:d7:54: a1:17:63:ac:db:a7:9d:0d:ee:7f:99:72:ca:be:69: 8f:23:79:26:51:f4:b1:77:ac:c1:76:09:cd:64:71: 82:0c:43:05:8d:9a:37:7d:43:7e:0c:0a:3d:66:b0: 01:b6:dc:a5:af:3e:32:f1:a1:78:a3:ed:2e:5f:35: 7a:7a:59:f7:1e:40:62:7e:b6:59:a6:b1:8c:75:43: 1b:4f:ad:43:c1:88:70:50:ba:db:d3:71:8e:8d:cd: 5c:44:58:3e:46:4d:d9:71:46:66:c4:fc:0c:5c:e1: c4:66:24:20:b4:2f:55:2a:57:af:04:77:3a:08:d5: 3a:61:a0:a3:21:9e:5f:47:57:be:05:61:d1:0d:5a: 7b:30:f3:dc:4d:27:97:df:bd:2c:33:34:fc:3f:ac: 3b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C9:2C:22:B3:0B:F8:3D:07:86:D0:EE:D1:6F:B3:B4:39:66:6F:4A X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:91:41:22:74:31:92:5a:b0:2c:5e:7c:f2:24:75:26:61:98: 05:ec:c0:2e:0e:2e:67:9a:1f:b3:46:39:89:67:36:94:bd:bb: 67:41:bb:9d:6c:46:ff:ff:81:65:df:d2:f8:3f:a8:f6:99:20: cc:9a:27:af:1d:ae:6d:e0:90:83:ed:de:14:66:57:62:20:7c: 4d:7d:7b:3e:28:df:c9:23:3e:2d:3d:11:b2:23:39:6c:4e:3b: 5d:ed:ee:05:93:77:6b:1a:4b:7f:ef:c9:85:98:f5:50:6a:23: 9b:d9:9b:62:e4:04:b6:76:07:ae:6f:05:cf:0e:d6:b7:62:07: 21:61:ce:9f:27:2c:7f:54:f1:f9:0f:a0:7d:a7:cf:f7:39:3c: 70:a9:e3:8d:30:7e:30:7c:e5:36:67:af:1c:b4:48:84:9d:78: e2:6b:c5:59:2d:0c:c9:c1:13:8e:b9:c5:7c:77:6b:40:a8:ff: d6:39:bc:e4:38:df:52:f8:28:6f:f4:35:e8:c6:d0:21:10:50: f3:9b:52:5b:43:49:81:c8:4c:e2:5d:87:c7:6c:a9:2c:5f:8a: da:f7:22:de:0f:ad:1b:5f:cd:36:e3:48:70:36:1b:9c:25:4a: 6c:05:31:02:45:93:2d:17:cc:39:8f:0b:e3:cf:a9:ac:f3:f0: d5:cf:cc:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjYwNTIwMjA0MDM2WhcNMjYwNTI3MjA0MDM2WjAYMRYwFAYD VQQDEw02YTBlMWM0NC1iZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn/k+P0kRJ6YzmS/K88Xxj4bFBryIc9O6X5PPEKDUSN6Fb+dMAfs0+AMNTYd Spd7RQbHhrlJN7bu7/e3Gcy6r5RuWdQ6iPbxPkao1elo8eb8shszhxXpT2w5X1MA dtX/77qbHA0711ShF2Os26edDe5/mXLKvmmPI3kmUfSxd6zBdgnNZHGCDEMFjZo3 fUN+DAo9ZrABttylrz4y8aF4o+0uXzV6eln3HkBifrZZprGMdUMbT61DwYhwULrb 03GOjc1cRFg+Rk3ZcUZmxPwMXOHEZiQgtC9VKlevBHc6CNU6YaCjIZ5fR1e+BWHR DVp7MPPcTSeX370sMzT8P6w7TQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBrJLCKz C/g9B4bQ7tFvs7Q5Zm9KMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgZFBInQxklqwLF588iR1JmGYBezALg4uZ5ofs0Y5iWc2lL27Z0G7nWxG//+B Zd/S+D+o9pkgzJonrx2ubeCQg+3eFGZXYiB8TX17PijfySM+LT0RsiM5bE47Xe3u BZN3axpLf+/JhZj1UGojm9mbYuQEtnYHrm8Fzw7Wt2IHIWHOnycsf1Tx+Q+gfafP 9zk8cKnjjTB+MHzlNmevHLRIhJ144mvFWS0MycETjrnFfHdrQKj/1jm85DjfUvgo b/Q16MbQIRBQ85tSW0NJgchM4l2Hx2ypLF+K2vci3g+tG1/NNuNIcDYbnCVKbAUx AkWTLRfMOY8L48+prPPw1c/MMw== -----END CERTIFICATE-----Generated at Thu May 21 10:14:47 2026 by rpki-client