$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft File: 3oPHbNtE9PeURxkgK-OvqIPTSU0.mft (raw, json) Hash identifier: eP4zjxRC8gyYgTkvYm+D9yXsH1awVUC5thVijjWsH2Y= Subject key identifier: 02:45:51:18:8B:1E:9F:2B:18:CD:83:2B:04:20:A9:7C:90:4E:02:8A Authority key identifier: DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D Certificate issuer: /CN=A91EAE28/serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft Manifest number: 3F Signing time: Sun 05 Apr 2026 07:52:43 +0000 Manifest this update: Sun 05 Apr 2026 07:52:43 +0000 Manifest next update: Sun 12 Apr 2026 07:52:43 +0000 Files and hashes: 1: 3oPHbNtE9PeURxkgK-OvqIPTSU0.crl (hash: k2smLq5xUEgVov5ytsSaM1k/VApHOJ2RJ0Wst9eO21w=) 2: E9CC4952DBB711F09A595FAD4E641951.roa (hash: EtIKzTCAN2VdvSH9vn7Jry+LrXGcko8wl7wpF7oNjrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE28, serialNumber=DE83C76CDB44F4F7944719202BE3AFA883D3494D Validity Not Before: Apr 5 07:52:43 2026 GMT Not After : Apr 12 07:52:43 2026 GMT Subject: CN=69d214cb-f7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0d:f7:5b:ab:0b:d7:98:2e:b2:4c:b1:e8:d9: 4d:46:93:7b:29:a2:4c:fb:11:d8:49:13:5b:72:3c: 12:47:fd:2d:d6:4b:6a:f0:cf:cc:b6:c9:30:df:51: 44:d1:af:b6:81:58:54:27:5f:7c:e3:f5:68:d7:94: 43:83:04:10:fd:1a:db:38:f5:dd:ae:e7:b1:1f:23: b7:56:99:95:66:a2:d3:32:9f:01:1e:d8:f0:28:44: 19:22:5a:c1:82:d4:8c:55:ac:3b:aa:78:e0:77:20: 07:45:ba:5a:fe:7a:71:57:02:22:de:c2:bd:a1:19: ea:38:d1:ca:93:fb:5f:04:1c:44:5a:22:cc:c7:ec: 7b:99:43:8c:68:1b:04:d9:71:ed:b6:dd:05:61:c5: 48:9c:9d:76:f6:55:db:f0:0f:05:5e:f3:66:55:ba: cc:53:f7:17:8d:e3:23:30:fb:cb:75:54:83:3e:09: c2:61:ff:f4:2c:ef:f1:9f:0d:28:22:93:e1:33:84: 37:c3:96:75:b3:4f:9e:af:da:24:5c:c3:cd:d8:ff: e6:d4:98:52:37:2e:f8:1f:b0:00:40:6f:56:fe:fc: 20:3a:67:5d:1e:a7:24:8c:0a:cb:ee:78:33:1d:af: 3d:63:62:61:73:d8:64:40:21:4f:91:4f:63:3d:63: e8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:45:51:18:8B:1E:9F:2B:18:CD:83:2B:04:20:A9:7C:90:4E:02:8A X509v3 Authority Key Identifier: keyid:DE:83:C7:6C:DB:44:F4:F7:94:47:19:20:2B:E3:AF:A8:83:D3:49:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oPHbNtE9PeURxkgK-OvqIPTSU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE28/47606EB4DBB711F0A0DF90F04D641951/3oPHbNtE9PeURxkgK-OvqIPTSU0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a2:01:7a:59:bb:66:80:17:f9:27:f4:d9:b5:01:6e:69:f7: 33:37:70:27:e2:79:4e:66:db:3e:a4:66:de:e6:8a:d8:26:33: dd:c7:34:f9:75:b1:98:fe:44:01:a2:1a:cd:45:ff:2e:a4:13: 7c:a3:12:c2:ae:72:91:1d:d9:c4:b2:07:1a:e6:6d:db:4f:c2: 50:05:87:5b:dd:4f:b1:5b:d4:4f:68:d0:9a:51:b7:d5:fa:d4: 3f:23:4b:2a:f1:57:17:d2:0b:c1:1f:5e:00:be:36:9b:e6:57: f6:2b:99:e8:25:5f:65:98:ca:13:46:73:ca:5f:05:d9:ec:75: f6:ee:61:6e:f1:98:5b:8d:7a:00:a5:dc:29:4d:80:5b:3e:cd: 0a:2e:06:d3:38:29:ed:5e:51:11:4a:89:9e:ac:72:22:fe:34: ab:e0:a3:80:5e:3c:0d:77:9e:88:87:3f:c8:d6:72:d5:18:5b: 64:1f:ff:c5:2f:dd:8d:89:f0:eb:13:41:1f:02:25:d9:cd:ae: 8d:a5:5e:af:ce:2e:19:60:28:33:43:3a:14:44:55:f3:8d:bc: c7:aa:50:3d:c0:6c:e9:b1:17:c0:9f:a7:77:a5:59:8e:43:4f: f3:38:5d:20:8e:41:8c:43:d3:73:a0:97:3a:63:3b:4a:7b:3d: a0:02:29:31 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUUyODExMC8GA1UEBRMoREU4M0M3NkNEQjQ0RjRGNzk0NDcxOTIwMkJFM0FGQTg4 M0QzNDk0RDAeFw0yNjA0MDUwNzUyNDNaFw0yNjA0MTIwNzUyNDNaMBgxFjAUBgNV BAMTDTY5ZDIxNGNiLWY3ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYDfdbqwvXmC6yTLHo2U1Gk3spokz7EdhJE1tyPBJH/S3WS2rwz8y2yTDfUUTR r7aBWFQnX3zj9WjXlEODBBD9Gts49d2u57EfI7dWmZVmotMynwEe2PAoRBkiWsGC 1IxVrDuqeOB3IAdFulr+enFXAiLewr2hGeo40cqT+18EHERaIszH7HuZQ4xoGwTZ ce223QVhxUicnXb2VdvwDwVe82ZVusxT9xeN4yMw+8t1VIM+CcJh//Qs7/GfDSgi k+EzhDfDlnWzT56v2iRcw83Y/+bUmFI3LvgfsABAb1b+/CA6Z10epySMCsvueDMd rz1jYmFz2GRAIU+RT2M9Y+gJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUAkVRGIse nysYzYMrBCCpfJBOAoowHwYDVR0jBBgwFoAU3oPHbNtE9PeURxkgK+OvqIPTSU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTI4LzQ3NjA2RUI0REJC NzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBlVVJ4a2dLLU92cUlQVFNV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM29QSGJOdEU5UGVVUnhrZ0stT3ZxSVBUU1UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTI4LzQ3NjA2RUI0REJCNzExRjBBMERGOTBGMDRENjQxOTUxLzNvUEhiTnRFOVBl VVJ4a2dLLU92cUlQVFNVMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBdogF6WbtmgBf5J/TZtQFuafczN3An4nlOZts+pGbe5orYJjPdxzT5dbGY/kQB ohrNRf8upBN8oxLCrnKRHdnEsgca5m3bT8JQBYdb3U+xW9RPaNCaUbfV+tQ/I0sq 8VcX0gvBH14Avjab5lf2K5noJV9lmMoTRnPKXwXZ7HX27mFu8ZhbjXoApdwpTYBb Ps0KLgbTOCntXlERSomerHIi/jSr4KOAXjwNd56Ihz/I1nLVGFtkH//FL92NifDr E0EfAiXZza6NpV6vzi4ZYCgzQzoURFXzjbzHqlA9wGzpsRfAn6d3pVmOQ0/zOF0g jkGMQ9NzoJc6YztKez2gAikx -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:02 2026 by rpki-client