$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft File: 3Bh_yEFs5bNHuvIho2E6O0eCjog.mft (raw, json) Hash identifier: 5t8uBzPD2ZdRMl7ytHy7FyAI08H1qF8koFHfWy9Mj6M= Subject key identifier: C3:28:86:48:2B:CD:1B:F3:A4:34:62:5A:2D:8B:A9:AC:87:B6:06:BB Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0FA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft Manifest number: 0F8E Signing time: Tue 12 May 2026 17:33:30 +0000 Manifest this update: Tue 12 May 2026 17:33:29 +0000 Manifest next update: Tue 19 May 2026 17:33:29 +0000 Files and hashes: 1: 3Bh_yEFs5bNHuvIho2E6O0eCjog.crl (hash: M/MB6//86zXapz8ms9v9UWV8Ljunfe0scXLuhYDwesg=) 2: 0963FDF0C35711EC9F5ADC3DC4F9AE02.roa (hash: M1O0TrYvAUms1ssHPRAoRq4bhn4VdK0pL3BB4ocE2jg=) 3: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (hash: rVqpkfIia95fH7hrm3/K25j3N5yZHWL25KnyFo0eRas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4000 (0xfa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: May 12 17:33:29 2026 GMT Not After : May 19 17:33:29 2026 GMT Subject: CN=6a03646a-ed9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cb:3f:91:ff:63:b5:5a:74:03:3e:6e:ad:ff: 81:ba:5b:ec:03:b0:b1:41:07:f5:eb:54:78:a6:ae: 0d:64:00:8d:7f:26:fd:ed:a8:d3:aa:a0:9a:96:09: 17:d5:65:e7:36:9a:4a:39:a7:e2:69:46:43:55:ff: 67:af:63:b9:34:07:c2:76:97:f6:a4:ec:ed:7d:33: 2c:78:cd:12:fd:7a:dd:a3:79:62:6d:60:db:25:81: 8a:61:a4:a9:56:81:00:b8:fc:be:df:02:58:06:f1: 0e:89:d3:8c:13:03:73:ea:bd:b4:95:b6:c1:65:4e: 07:e1:64:67:f2:4e:cd:fb:45:36:cc:c5:60:09:6a: c6:c0:02:5f:25:24:ca:f9:1c:7d:23:86:32:f6:5a: 8a:c6:fe:7d:3a:bc:51:4e:ff:25:00:3c:e5:2c:c7: 29:46:03:25:e2:15:bf:1a:ba:cf:f8:fd:c8:95:1c: 85:25:02:9c:88:25:03:f2:67:0c:56:4c:7c:ef:27: 83:83:c7:bd:21:78:32:97:f9:59:37:c5:ac:da:b0: ff:4d:3a:a8:00:b2:c8:e9:ab:27:a3:5a:b1:92:e0: 84:23:09:08:e9:36:79:5c:88:3e:b7:3d:5f:58:57: 4a:4a:4b:b9:01:c1:ac:59:6e:2d:49:5f:07:f6:d9: 46:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:28:86:48:2B:CD:1B:F3:A4:34:62:5A:2D:8B:A9:AC:87:B6:06:BB X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:03:75:5d:c9:f7:df:15:8d:af:fd:79:c2:e9:44:c5:e1:6b: 4f:52:fa:79:8f:5e:41:ce:39:23:b2:b1:27:4e:4f:62:10:f3: 81:2a:bc:aa:bc:2f:f0:a6:76:11:a7:9f:0d:ee:e1:87:d3:e3: d0:a7:ea:eb:c2:c0:b5:5b:d8:bb:46:b3:1b:e1:8c:28:4a:fb: 38:02:b7:40:82:5c:e7:f7:6e:16:c7:9f:7a:51:e4:ef:10:7a: 0e:63:81:08:ef:d1:93:03:9d:6c:5d:90:3e:14:f4:07:51:e7: 25:e8:07:2e:14:01:c4:2f:1d:98:27:8f:12:75:a9:f3:7b:7a: 6b:a5:0e:19:d5:b6:15:2c:a3:df:00:ea:44:df:25:19:3a:eb: 74:e4:9d:2c:71:7c:e9:12:10:60:59:3b:cf:65:41:2d:a0:d2: 76:5c:b7:96:f1:be:78:23:88:58:5a:87:df:89:3c:12:24:3f: c8:9c:7c:84:99:e0:d5:bc:d1:e0:5a:48:c5:cf:9e:dd:d4:18: 36:4e:4c:39:8a:8d:ce:d4:43:dc:31:8f:16:a4:18:a3:96:0f: c8:8b:47:4d:78:d6:f2:af:5c:22:85:c3:9a:d3:ee:24:cc:32: 04:80:0e:96:d9:5c:44:8e:da:a5:39:7e:c4:7d:3d:22:35:c7: fd:71:ac:bf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICD6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjYwNTEyMTczMzI5WhcNMjYwNTE5MTczMzI5WjAYMRYwFAYD VQQDEw02YTAzNjQ2YS1lZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcs/kf9jtVp0Az5urf+BulvsA7CxQQf161R4pq4NZACNfyb97ajTqqCalgkX 1WXnNppKOafiaUZDVf9nr2O5NAfCdpf2pOztfTMseM0S/Xrdo3libWDbJYGKYaSp VoEAuPy+3wJYBvEOidOMEwNz6r20lbbBZU4H4WRn8k7N+0U2zMVgCWrGwAJfJSTK +Rx9I4Yy9lqKxv59OrxRTv8lADzlLMcpRgMl4hW/GrrP+P3IlRyFJQKciCUD8mcM Vkx87yeDg8e9IXgyl/lZN8Ws2rD/TTqoALLI6asno1qxkuCEIwkI6TZ5XIg+tz1f WFdKSku5AcGsWW4tSV8H9tlGPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMMohkgr zRvzpDRiWi2LqayHtga7MB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTdEMS85QTlCNDhBMjgyQTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczVi Tkh1dklobzJFNk8wZUNqb2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKAN1Xcn33xWNr/15wulExeFrT1L6eY9eQc45I7KxJ05PYhDzgSq8qrwv8KZ2 EaefDe7hh9Pj0Kfq68LAtVvYu0azG+GMKEr7OAK3QIJc5/duFsefelHk7xB6DmOB CO/RkwOdbF2QPhT0B1HnJegHLhQBxC8dmCePEnWp83t6a6UOGdW2FSyj3wDqRN8l GTrrdOSdLHF86RIQYFk7z2VBLaDSdly3lvG+eCOIWFqH34k8EiQ/yJx8hJng1bzR 4FpIxc+e3dQYNk5MOYqNztRD3DGPFqQYo5YPyItHTXjW8q9cIoXDmtPuJMwyBIAO ltlcRI7apTl+xH09IjXH/XGsvw== -----END CERTIFICATE-----Generated at Wed May 13 14:38:06 2026 by rpki-client