$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.mft File: 3HVZ7loiUGA5czj8qjgD_6pLI1c.mft (raw, json) Hash identifier: mEQWP0aq8pFQoaVoabRNVJT3tV41ckaWHWvEX9I3XtQ= Subject key identifier: 9E:1F:60:EE:F6:BB:CB:8E:47:B2:96:1D:52:19:CB:AE:DC:1B:A1:74 Authority key identifier: DC:75:59:EE:5A:22:50:60:39:73:38:FC:AA:38:03:FF:AA:4B:23:57 Certificate issuer: /CN=A91FA56C/serialNumber=DC7559EE5A225060397338FCAA3803FFAA4B2357 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.mft Manifest number: 0130 Signing time: Sun 05 Apr 2026 04:58:21 +0000 Manifest this update: Sun 05 Apr 2026 04:58:21 +0000 Manifest next update: Sun 12 Apr 2026 04:58:21 +0000 Files and hashes: 1: 3HVZ7loiUGA5czj8qjgD_6pLI1c.crl (hash: ukYehkUDnxsQehNlAxkRThrdqfqjdSFZBnjtcN7cqfk=) 2: 6E16949065A011EFA4AA8E6BC4F9AE02.roa (hash: rjCr6k0hES4hJ4HPyOEdmEOZBWpRclb2qE3oqjX2XnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.crl rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA56C, serialNumber=DC7559EE5A225060397338FCAA3803FFAA4B2357 Validity Not Before: Apr 5 04:58:21 2026 GMT Not After : Apr 12 04:58:21 2026 GMT Subject: CN=69d1ebed-fa26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:66:d7:3b:43:32:54:ce:07:0f:fa:ed:22:f1: 69:98:1f:59:a6:02:5a:18:6e:28:2f:f3:46:1f:01: 26:b8:0d:15:bf:32:a2:42:6b:fb:31:cf:b6:50:a0: 09:49:51:28:28:6a:87:86:da:86:cb:c5:47:83:b5: 43:ec:0a:ef:e0:5e:c0:65:63:6a:dc:65:76:81:c1: d7:cb:9f:cc:9c:15:e8:f8:62:5c:30:0d:66:f4:d6: d1:8e:45:c0:5f:13:96:4d:80:24:30:a2:5c:31:01: 3c:3e:dc:f3:de:90:29:7a:19:54:a8:0e:d8:03:1f: 55:4a:75:09:b2:8c:a1:0d:f9:ac:2c:d4:7c:81:90: 4a:f9:4a:0c:02:5f:7a:bd:17:48:5d:3e:79:ed:44: 8c:da:8e:a9:15:f6:bc:97:e5:d2:72:00:64:7c:29: 39:2f:aa:a1:1c:d0:25:cc:2f:16:36:e3:4e:c6:2b: 2c:4c:85:61:1b:8b:15:42:17:95:b5:c9:f0:22:70: 78:ee:33:dc:78:2a:e2:ef:a0:14:08:b6:5f:58:2c: b4:10:da:c5:c0:fb:2a:67:77:d0:a5:a8:03:2b:59: 83:0e:c6:fc:83:77:06:fe:50:e0:4d:fa:2d:98:ff: e2:8b:fb:ad:c7:84:f5:ab:b2:1b:23:b8:7b:ae:e1: 04:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1F:60:EE:F6:BB:CB:8E:47:B2:96:1D:52:19:CB:AE:DC:1B:A1:74 X509v3 Authority Key Identifier: keyid:DC:75:59:EE:5A:22:50:60:39:73:38:FC:AA:38:03:FF:AA:4B:23:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HVZ7loiUGA5czj8qjgD_6pLI1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA56C/DDDE8C4864FF11EFA5A81158C4F9AE02/3HVZ7loiUGA5czj8qjgD_6pLI1c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f2:11:09:28:01:9b:6b:47:8c:2c:d5:10:3b:13:ba:c7:28: 54:77:6d:7d:e9:88:e1:60:36:df:88:50:45:25:3c:f4:d4:35: 51:26:dc:d2:da:8f:e7:81:b1:66:17:d8:8c:5a:db:7f:6c:84: 8f:94:b4:f9:c7:d6:55:61:ed:55:b8:33:3d:cc:a2:88:81:b2: d7:ad:a8:2c:26:2e:2d:a1:64:e5:56:9b:48:d4:e0:e8:f4:f8: 40:c0:d4:3a:0e:14:03:94:2c:ff:ff:b3:ff:29:22:b3:68:ce: 7a:02:ef:a1:04:6c:1c:ce:98:6b:f1:cc:cb:9e:b4:cb:41:82: 72:e1:8f:44:27:41:b9:3d:7a:6f:33:38:0a:01:ff:c3:e2:f4: ca:1e:41:dd:6b:ed:e2:cf:ef:47:80:e2:71:6e:43:c4:af:bf: 27:dc:56:83:c0:1c:76:d2:4b:95:19:b2:84:14:cc:5f:dd:66: b2:d2:1b:03:1d:04:c9:9b:cd:04:89:19:f9:89:db:68:27:4a: ec:f0:12:c3:b7:81:dc:1a:d6:71:f6:6f:0c:e5:04:dd:c7:6b: 91:3c:40:61:bd:8f:c6:06:1f:87:a0:b5:2c:62:f3:0a:a8:8b: d2:b0:15:44:68:5d:22:4c:92:82:9d:67:b6:6e:f1:e0:b7:54: 8d:e7:c9:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NkMxMTAvBgNVBAUTKERDNzU1OUVFNUEyMjUwNjAzOTczMzhGQ0FBMzgwM0ZG QUE0QjIzNTcwHhcNMjYwNDA1MDQ1ODIxWhcNMjYwNDEyMDQ1ODIxWjAYMRYwFAYD VQQDEw02OWQxZWJlZC1mYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmbXO0MyVM4HD/rtIvFpmB9ZpgJaGG4oL/NGHwEmuA0VvzKiQmv7Mc+2UKAJ SVEoKGqHhtqGy8VHg7VD7Arv4F7AZWNq3GV2gcHXy5/MnBXo+GJcMA1m9NbRjkXA XxOWTYAkMKJcMQE8Ptzz3pApehlUqA7YAx9VSnUJsoyhDfmsLNR8gZBK+UoMAl96 vRdIXT557USM2o6pFfa8l+XScgBkfCk5L6qhHNAlzC8WNuNOxissTIVhG4sVQheV tcnwInB47jPceCri76AUCLZfWCy0ENrFwPsqZ3fQpagDK1mDDsb8g3cG/lDgTfot mP/ii/utx4T1q7IbI7h7ruEEsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ4fYO72 u8uOR7KWHVIZy67cG6F0MB8GA1UdIwQYMBaAFNx1We5aIlBgOXM4/Ko4A/+qSyNX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Qy9ERERFOEM0ODY0 RkYxMUVGQTVBODExNThDNEY5QUUwMi8zSFZaN2xvaVVHQTVjemo4cWpnRF82cExJ MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIVlo3bG9pVUdBNWN6ajhxamdEXzZwTEkxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Qy9ERERFOEM0ODY0RkYxMUVGQTVBODExNThDNEY5QUUwMi8zSFZaN2xvaVVH QTVjemo4cWpnRF82cExJMWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjPIRCSgBm2tHjCzVEDsTuscoVHdtfemI4WA234hQRSU89NQ1USbc0tqP54Gx ZhfYjFrbf2yEj5S0+cfWVWHtVbgzPcyiiIGy162oLCYuLaFk5VabSNTg6PT4QMDU Og4UA5Qs//+z/ykis2jOegLvoQRsHM6Ya/HMy560y0GCcuGPRCdBuT16bzM4CgH/ w+L0yh5B3Wvt4s/vR4DicW5DxK+/J9xWg8AcdtJLlRmyhBTMX91mstIbAx0EyZvN BIkZ+YnbaCdK7PASw7eB3BrWcfZvDOUE3cdrkTxAYb2PxgYfh6C1LGLzCqiL0rAV RGhdIkySgp1ntm7x4LdUjefJMQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:26 2026 by rpki-client