$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: 22wk+x2/TnUgwnDuoOm1ykDv8eHwpyUUp1EuZwnxdmY= Subject key identifier: 36:5D:07:52:C5:A8:57:B4:02:18:5B:06:90:7A:CB:96:0F:99:2C:40 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 0872 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0869 Signing time: Sat 04 Apr 2026 20:29:17 +0000 Manifest this update: Sat 04 Apr 2026 20:29:17 +0000 Manifest next update: Sat 11 Apr 2026 20:29:17 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: Ng6SgLwDWsjiWYuioDDXjt1qS+JeCDrisHQ+2iEiMV4=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: gjXk5FJ28SiJiqatM16BZg/99HgL3HEPLn3XZb4vIWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Apr 4 20:29:17 2026 GMT Not After : Apr 11 20:29:17 2026 GMT Subject: CN=69d1749d-532d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2f:9e:75:6a:6c:51:12:b2:9e:20:f8:84:8f: db:4f:e7:eb:ad:aa:d9:31:6d:56:22:9f:e8:ef:4b: 43:59:28:79:eb:08:ac:0d:d4:c3:0c:8c:0c:2e:69: 29:4e:00:c3:ff:6f:f3:fa:8c:67:78:9c:92:af:a0: e3:7d:53:03:fb:de:9d:b1:86:08:51:97:d3:f3:b2: ff:dc:d4:d1:e1:19:68:ca:39:b5:a2:8b:d9:99:01: ff:94:6b:71:75:35:88:1c:03:7f:81:36:f9:12:52: 3d:72:2f:56:56:df:b6:c8:fe:30:ea:69:b1:a8:a8: 7c:9e:7c:dd:4b:ea:24:53:2a:50:0d:54:c3:86:2b: 7b:b8:42:cd:69:0c:39:dd:15:eb:85:8c:ae:9a:be: 44:05:c8:00:a4:d1:2b:2e:ed:c1:0d:5b:e5:83:6f: 7e:7a:f6:1f:02:0a:db:39:82:6a:b9:79:00:05:34: 4b:1f:90:88:13:15:b9:37:6f:90:dd:5f:39:82:ec: 76:3e:30:66:e8:b8:94:de:46:b1:10:65:b2:20:77: 91:36:ad:a4:08:14:bc:77:3e:79:81:ec:b7:74:74: 99:71:09:c4:41:72:6a:74:5e:46:05:1d:8a:08:07: 51:e0:10:b7:d6:21:14:33:37:d1:59:21:ab:40:26: 7a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5D:07:52:C5:A8:57:B4:02:18:5B:06:90:7A:CB:96:0F:99:2C:40 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:67:01:f6:d0:c2:eb:bf:21:cd:7b:03:a6:67:76:36:ea:8c: 3c:b8:7b:8e:01:f7:d7:99:5d:96:95:e0:d9:9a:4e:11:e3:b0: 44:8f:c1:83:65:05:37:da:3f:ba:7f:da:35:a7:c2:2a:91:1e: 7b:05:e8:a9:2a:48:37:2e:13:dc:73:d3:aa:b5:6c:67:a7:c1: 02:c7:6d:89:d1:ea:e5:54:17:e8:49:59:c8:0f:60:a5:f3:61: 7f:b7:b3:2d:14:5e:ea:42:fb:9e:7a:07:59:40:25:40:1c:a5: a4:5a:5d:8a:33:0a:11:96:46:2e:f4:c3:14:81:19:19:79:e4: 03:75:d0:b1:61:cb:c1:48:f3:2d:12:6f:a7:83:bf:4a:8b:7c: bd:71:db:df:2b:f3:71:91:be:ac:05:84:df:26:5b:4b:33:37: e7:f6:2a:17:d7:ef:b2:07:00:11:a4:3b:a2:05:41:9a:1e:fe: 93:fd:a2:30:ac:2f:75:25:e7:8e:e4:87:18:04:ff:1f:b7:06: f6:d4:56:e3:a7:16:bd:29:99:ae:ce:90:81:33:01:63:63:b7: 38:af:a0:b5:12:3f:25:c2:00:0a:fa:8a:8c:2a:b4:91:1a:9e: a5:4b:2a:25:c5:4e:e1:22:b4:02:46:9e:ad:4c:6e:a0:c9:2d: 04:5b:b0:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjYwNDA0MjAyOTE3WhcNMjYwNDExMjAyOTE3WjAYMRYwFAYD VQQDEw02OWQxNzQ5ZC01MzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4S+edWpsURKyniD4hI/bT+frrarZMW1WIp/o70tDWSh56wisDdTDDIwMLmkp TgDD/2/z+oxneJySr6DjfVMD+96dsYYIUZfT87L/3NTR4Rloyjm1oovZmQH/lGtx dTWIHAN/gTb5ElI9ci9WVt+2yP4w6mmxqKh8nnzdS+okUypQDVTDhit7uELNaQw5 3RXrhYyumr5EBcgApNErLu3BDVvlg29+evYfAgrbOYJquXkABTRLH5CIExW5N2+Q 3V85gux2PjBm6LiU3kaxEGWyIHeRNq2kCBS8dz55gey3dHSZcQnEQXJqdF5GBR2K CAdR4BC31iEUMzfRWSGrQCZ6sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZdB1LF qFe0AhhbBpB6y5YPmSxAMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN2cB9tDC678hzXsDpmd2NuqMPLh7jgH315ldlpXg2ZpOEeOwRI/Bg2UFN9o/ un/aNafCKpEeewXoqSpINy4T3HPTqrVsZ6fBAsdtidHq5VQX6ElZyA9gpfNhf7ez LRRe6kL7nnoHWUAlQBylpFpdijMKEZZGLvTDFIEZGXnkA3XQsWHLwUjzLRJvp4O/ Sot8vXHb3yvzcZG+rAWE3yZbSzM35/YqF9fvsgcAEaQ7ogVBmh7+k/2iMKwvdSXn juSHGAT/H7cG9tRW46cWvSmZrs6QgTMBY2O3OK+gtRI/JcIACvqKjCq0kRqepUsq JcVO4SK0AkaerUxuoMktBFuwww== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:34 2026 by rpki-client