$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: A1lZ7d48Ff5pQz2cewxmp4d2EJyCDaIl5D41gicZsEk= Subject key identifier: DD:F5:22:3E:70:FF:60:58:21:DB:7A:56:E1:03:1A:D3:A1:3A:4B:35 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: C0 Signing time: Sun 05 Apr 2026 06:23:20 +0000 Manifest this update: Sun 05 Apr 2026 06:23:19 +0000 Manifest next update: Sun 12 Apr 2026 06:23:19 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: 4PEmj2qkYKyDbfpabpoLxnNEfpTfBrD1HACkl/oAv/w=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: wGUGCDLQuCuMzbcHbV/cBOi37S+j6xYKnWjU86HEOho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Apr 5 06:23:19 2026 GMT Not After : Apr 12 06:23:19 2026 GMT Subject: CN=69d1ffd8-f2a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:da:79:f2:32:30:d4:43:d1:59:03:fc:9c:72: b5:85:df:c7:42:d6:34:ac:ba:ce:31:af:52:f8:91: bf:fa:22:f2:43:d7:45:19:4d:30:45:2c:a3:30:77: 32:03:81:db:43:2d:4a:c5:78:df:bf:f9:08:61:ba: 05:e9:a1:6f:7e:f6:96:b3:d1:12:87:3e:13:8b:69: d6:0a:cc:1b:d9:65:c5:d4:ff:d6:43:24:76:c4:5f: 6b:94:09:69:b7:14:28:2f:4b:05:8f:b1:a0:c8:6e: fc:22:7d:e3:8e:93:12:82:0d:6c:5d:cd:4b:53:68: e7:db:0b:41:02:08:7e:5d:93:9f:20:3c:0a:ef:d3: 1b:21:31:2d:f1:2e:00:71:4c:36:7e:97:cc:ed:6a: 8a:c9:76:98:c9:fc:d2:2b:40:24:4f:5d:1b:48:c9: 42:6c:8e:3e:c3:f5:79:eb:b9:e9:58:cd:2b:d2:11: f1:0c:fd:21:8c:32:92:a0:e0:6d:e2:95:c7:9e:fa: 54:69:44:43:2e:09:91:24:72:d8:22:a9:ee:5a:0f: 53:75:dc:b9:61:c4:19:99:d0:53:d8:f6:e7:c7:b9: 4a:33:f3:93:b8:fd:44:f3:79:ea:57:3a:c8:28:f2: 4c:0b:af:78:e9:42:13:3d:15:94:01:85:4b:14:8b: b4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F5:22:3E:70:FF:60:58:21:DB:7A:56:E1:03:1A:D3:A1:3A:4B:35 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c5:46:0c:e2:f8:04:33:9c:c8:2e:55:ea:3e:c3:dd:20:06: f0:e2:2f:10:63:93:b3:75:61:5d:d9:a3:18:43:b5:81:f5:ee: 01:d5:cf:90:61:57:1c:c2:64:ce:ff:d2:41:e9:fa:97:95:cc: 87:d8:67:fb:5e:84:a5:74:22:86:ef:45:d6:7a:26:f1:39:8a: a4:3c:12:d4:83:eb:44:d2:ed:d3:9e:3f:60:1b:e4:bb:cf:41: 8c:d8:4c:b3:c6:f0:66:a3:3b:bb:43:89:89:14:e0:96:d4:61: c5:2b:32:4d:d0:30:66:87:05:b8:8d:bd:4d:95:ff:1a:31:20: 9d:7c:2d:fc:0d:df:ae:80:c9:b5:90:38:77:b6:cf:51:7b:95: 7c:88:8b:26:2b:dd:36:c3:8e:f8:b5:68:57:35:57:41:5e:c0: 2f:1a:8c:3e:6a:a4:47:e9:99:13:7a:45:c0:c1:db:8f:57:bd: 2d:a3:d8:b3:46:f2:e6:a1:9b:a0:38:ff:a6:8e:fa:20:9a:b6: 4a:d9:69:1d:7f:26:02:63:54:a2:31:26:8e:c5:e5:0f:3c:7f: 24:69:d9:21:5d:b8:5c:bf:13:28:f9:3d:bf:62:62:be:6b:93: cf:8d:7d:5c:b8:94:e9:1f:97:e1:63:5f:73:0b:13:9b:6b:0b: 17:47:a9:b5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjYwNDA1MDYyMzE5WhcNMjYwNDEyMDYyMzE5WjAYMRYwFAYD VQQDEw02OWQxZmZkOC1mMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNp58jIw1EPRWQP8nHK1hd/HQtY0rLrOMa9S+JG/+iLyQ9dFGU0wRSyjMHcy A4HbQy1KxXjfv/kIYboF6aFvfvaWs9EShz4Ti2nWCswb2WXF1P/WQyR2xF9rlAlp txQoL0sFj7GgyG78In3jjpMSgg1sXc1LU2jn2wtBAgh+XZOfIDwK79MbITEt8S4A cUw2fpfM7WqKyXaYyfzSK0AkT10bSMlCbI4+w/V567npWM0r0hHxDP0hjDKSoOBt 4pXHnvpUaURDLgmRJHLYIqnuWg9Tddy5YcQZmdBT2Pbnx7lKM/OTuP1E83nqVzrI KPJMC6946UITPRWUAYVLFIu0lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN31Ij5w /2BYIdt6VuEDGtOhOks1MB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACsVGDOL4BDOcyC5V6j7D3SAG8OIvEGOTs3VhXdmjGEO1gfXuAdXPkGFXHMJk zv/SQen6l5XMh9hn+16EpXQihu9F1nom8TmKpDwS1IPrRNLt054/YBvku89BjNhM s8bwZqM7u0OJiRTgltRhxSsyTdAwZocFuI29TZX/GjEgnXwt/A3froDJtZA4d7bP UXuVfIiLJivdNsOO+LVoVzVXQV7ALxqMPmqkR+mZE3pFwMHbj1e9LaPYs0by5qGb oDj/po76IJq2StlpHX8mAmNUojEmjsXlDzx/JGnZIV24XL8TKPk9v2JivmuTz419 XLiU6R+X4WNfcwsTm2sLF0eptQ== -----END CERTIFICATE-----Generated at Mon Apr 6 15:23:45 2026 by rpki-client