$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: 7uRZro4aRLtKkSCPjNqWBNHtTeK/8FPxtUS3ZOyGnHg= Subject key identifier: F3:35:C4:10:F6:B6:18:9D:3F:D0:19:D4:9A:59:E1:9B:26:55:C4:C1 Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: 01CC Signing time: Wed 13 May 2026 03:47:08 +0000 Manifest this update: Wed 13 May 2026 03:47:08 +0000 Manifest next update: Wed 20 May 2026 03:47:08 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: MNTtolf1KPCDmWwKD81XrSws6jP3NmvGE+ciV1T86Vs=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: XfdGm7eKGJG4mI4OlbsmvCWQLht74XpIFUZS0ZbYwl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33, serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: May 13 03:47:08 2026 GMT Not After : May 20 03:47:08 2026 GMT Subject: CN=6a03f43c-f294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:74:38:76:3b:75:f5:bf:4c:c6:60:2f:a8:20: 68:4f:d9:28:65:71:89:be:97:61:a7:fe:04:fe:87: 3b:78:97:92:0c:99:89:5a:62:97:1c:af:25:c3:5b: 75:58:8a:48:81:c0:4f:08:7d:ca:62:c5:94:d2:48: 8a:0a:b3:59:0a:93:e5:4b:71:1e:00:eb:c6:36:e2: 9a:12:11:9d:8c:fe:ef:20:7c:17:28:d6:ee:d4:83: 64:8d:f4:46:26:23:4e:4c:87:e3:93:68:8e:7a:2d: 72:d7:cc:89:85:5b:77:06:03:2b:54:ab:6d:c8:ea: c4:5a:eb:f7:b8:5b:69:a1:0d:06:7f:c9:c4:55:5d: 0c:3e:33:42:74:9d:b3:cc:8b:44:3f:59:da:6a:8e: 47:5f:aa:76:b4:cd:e2:a5:30:67:25:d5:53:f3:91: 7e:78:38:8f:f5:87:6c:dc:1a:03:a5:4b:01:a0:48: da:4f:8b:91:5e:34:0f:e6:cf:cb:7f:f1:cc:ee:4c: 77:7d:9e:3d:c1:76:b1:dd:a5:67:5c:8c:58:3c:88: b5:82:75:9f:95:02:8a:e4:af:3b:82:3c:f7:01:d2: ce:ae:e7:4a:19:68:36:9a:e0:be:c5:3a:7e:97:f3: a8:52:c7:65:e2:1d:92:9a:90:c7:f2:18:48:5d:90: f1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:35:C4:10:F6:B6:18:9D:3F:D0:19:D4:9A:59:E1:9B:26:55:C4:C1 X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:fc:a2:9d:8a:74:9b:76:db:15:c9:79:82:5f:d7:aa:f0:0a: 87:bd:60:81:02:6e:fd:e9:7c:33:85:8b:d5:d8:f6:a0:4a:54: c9:42:c7:26:bf:12:63:b5:2e:32:8e:b4:af:c0:b0:41:1f:0a: 1c:5c:8f:55:6e:62:28:ab:79:f2:9c:f2:82:05:5f:aa:f2:cf: f6:60:e5:19:00:17:f3:7c:bc:d9:80:11:ae:86:e5:c0:f8:d9: 45:da:8e:78:87:bb:35:f3:3f:e1:5d:b1:dd:a1:a9:6e:73:3c: e8:69:d1:d3:aa:21:8d:50:27:a4:8f:c6:03:d8:08:ab:d9:f7: ab:e3:74:a2:46:b2:e2:4b:7a:86:c7:1e:7c:3e:2b:8b:2c:0d: b1:ab:a9:6d:d6:1e:5a:c0:2e:79:5a:c4:33:ba:f6:d8:a7:46: f1:18:e2:37:a9:53:d2:e0:0f:8a:0b:88:4e:86:89:8d:93:f3: f7:0c:50:5f:a8:99:8d:51:14:af:08:57:26:2f:88:05:44:78: 8a:73:d4:c9:83:4c:28:77:31:db:95:f5:5b:59:5c:06:43:9a: 46:66:ee:ce:9d:1d:fa:2e:63:ea:a1:7a:a2:8d:2b:39:52:29: 2d:24:06:85:49:64:ce:8f:25:18:23:a2:59:3f:04:85:91:79: dc:94:ee:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjYwNTEzMDM0NzA4WhcNMjYwNTIwMDM0NzA4WjAYMRYwFAYD VQQDEw02YTAzZjQzYy1mMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9HQ4djt19b9MxmAvqCBoT9koZXGJvpdhp/4E/oc7eJeSDJmJWmKXHK8lw1t1 WIpIgcBPCH3KYsWU0kiKCrNZCpPlS3EeAOvGNuKaEhGdjP7vIHwXKNbu1INkjfRG JiNOTIfjk2iOei1y18yJhVt3BgMrVKttyOrEWuv3uFtpoQ0Gf8nEVV0MPjNCdJ2z zItEP1naao5HX6p2tM3ipTBnJdVT85F+eDiP9Yds3BoDpUsBoEjaT4uRXjQP5s/L f/HM7kx3fZ49wXax3aVnXIxYPIi1gnWflQKK5K87gjz3AdLOrudKGWg2muC+xTp+ l/OoUsdl4h2SmpDH8hhIXZDxYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPM1xBD2 thidP9AZ1JpZ4ZsmVcTBMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPPyinYp0m3bbFcl5gl/XqvAKh71ggQJu/el8M4WL1dj2oEpUyULHJr8SY7Uu Mo60r8CwQR8KHFyPVW5iKKt58pzyggVfqvLP9mDlGQAX83y82YARroblwPjZRdqO eIe7NfM/4V2x3aGpbnM86GnR06ohjVAnpI/GA9gIq9n3q+N0okay4kt6hscefD4r iywNsaupbdYeWsAueVrEM7r22KdG8RjiN6lT0uAPiguIToaJjZPz9wxQX6iZjVEU rwhXJi+IBUR4inPUyYNMKHcx25X1W1lcBkOaRmbuzp0d+i5j6qF6oo0rOVIpLSQG hUlkzo8lGCOiWT8EhZF53JTu/A== -----END CERTIFICATE-----Generated at Wed May 13 11:04:40 2026 by rpki-client