$ rpki-client -vvf rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft File: I3Q0S3Gynw44NSDK_GyINQw1YWg.mft (raw, json) Hash identifier: hbMLc6vhfWuTwB6EkVuO1uJjG76vYO77aQr5icWjaVs= Subject key identifier: 3B:9E:61:21:AA:8E:BE:21:26:92:17:06:BB:DC:52:27:C7:04:71:7C Authority key identifier: 23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 Certificate issuer: /CN=A91A58AA/serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft Manifest number: C3 Signing time: Wed 13 May 2026 07:00:51 +0000 Manifest this update: Wed 13 May 2026 07:00:51 +0000 Manifest next update: Wed 20 May 2026 07:00:51 +0000 Files and hashes: 1: I3Q0S3Gynw44NSDK_GyINQw1YWg.crl (hash: UqIIKXN4xq2zMDK0w8QjPuZFUHy+BzYjYjVJZiAzKWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 07:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A58AA, serialNumber=2374344B71B29F0E383520CAFC6C88350C356168 Validity Not Before: May 13 07:00:51 2026 GMT Not After : May 20 07:00:51 2026 GMT Subject: CN=6a0421a3-c551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:96:f2:d6:7e:47:4f:3c:a4:fc:d6:75:ec:cc: 1f:d0:48:57:df:53:e7:6c:a8:b8:6d:5c:80:6b:d0: 65:23:37:d7:ee:ec:a6:bc:d4:f5:aa:6b:69:93:b6: cc:21:8e:a9:97:7e:fc:c2:1e:fc:d8:66:5b:13:31: ff:75:5b:50:17:5f:dc:46:82:7f:c4:96:c4:0a:f6: c3:4c:9e:66:03:a3:45:42:ef:fb:1d:72:fb:2f:05: ed:16:76:39:bc:35:6b:63:c4:fc:99:5b:cf:57:3f: a0:f0:4f:ea:7f:51:c0:e5:72:b4:57:b1:0b:d4:72: 85:d0:a6:53:c9:5e:59:7a:1b:b1:57:ef:62:d0:9f: f0:61:f5:16:68:d5:9f:ff:db:a5:1c:62:02:64:ef: b3:75:7d:c4:9d:b1:4f:02:97:d8:43:9b:af:1a:17: e4:4a:67:75:45:98:12:87:70:87:28:25:07:7a:50: 8a:34:21:55:64:4e:ea:98:84:23:3f:ae:ff:14:a4: 16:8d:37:3f:f8:91:e2:a4:4f:58:76:7a:d5:95:47: b4:99:6c:15:e1:48:33:94:1e:bc:3e:e7:76:1f:ee: e6:00:fb:2b:c9:a7:6a:00:cf:d5:bb:32:52:7c:29: a5:9e:ea:df:c0:1e:fd:01:b0:45:59:88:67:3d:2d: 97:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9E:61:21:AA:8E:BE:21:26:92:17:06:BB:DC:52:27:C7:04:71:7C X509v3 Authority Key Identifier: keyid:23:74:34:4B:71:B2:9F:0E:38:35:20:CA:FC:6C:88:35:0C:35:61:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3Q0S3Gynw44NSDK_GyINQw1YWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A58AA/CA50C926240211F0961B646DC4F9AE02/I3Q0S3Gynw44NSDK_GyINQw1YWg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:16:f3:c5:6d:32:1a:f2:15:be:d3:66:08:bd:ab:aa:d6:12: 57:7e:88:41:34:b9:4d:1c:bd:b8:23:36:3b:83:0d:82:32:fd: db:c8:b2:c0:fa:ef:4c:c2:27:6a:53:8a:a3:3d:f4:b8:54:6c: b4:f9:d1:19:f4:fa:45:0a:8a:64:4a:d4:80:4c:e8:06:14:bc: 77:c3:c8:1b:b3:63:b9:a7:4b:30:95:e8:f4:3d:9d:3d:58:28: 4b:48:91:9f:11:13:a5:a7:ed:49:c4:9a:2a:f1:1d:09:89:fc: 06:c9:c5:79:c8:2d:46:7e:0d:91:b8:12:89:72:77:17:04:53: cf:95:d0:88:0c:50:57:66:d5:cc:a5:36:f3:58:2f:c0:a1:30: 13:6b:ff:1b:68:bc:41:46:56:bb:e1:24:50:7f:61:07:31:9b: 6f:8a:4a:f8:25:c1:a3:2f:1c:f5:24:49:31:b7:48:18:dc:6f: e0:0d:0f:c2:42:24:8b:77:b9:60:4f:fe:fa:96:9b:8a:e5:43: 6f:13:e7:cd:4d:8e:73:33:6a:d7:b1:d4:b9:91:b4:ee:a9:e5: 5a:df:b5:d5:d9:f7:00:1d:ef:e5:7f:3e:fb:52:d1:d3:87:51: 9d:78:7c:d5:f7:ac:5a:aa:9d:ed:ee:03:0b:38:47:b5:c1:97: d4:c3:66:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4QUExMTAvBgNVBAUTKDIzNzQzNDRCNzFCMjlGMEUzODM1MjBDQUZDNkM4ODM1 MEMzNTYxNjgwHhcNMjYwNTEzMDcwMDUxWhcNMjYwNTIwMDcwMDUxWjAYMRYwFAYD VQQDEw02YTA0MjFhMy1jNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJby1n5HTzyk/NZ17Mwf0EhX31PnbKi4bVyAa9BlIzfX7uymvNT1qmtpk7bM IY6pl378wh782GZbEzH/dVtQF1/cRoJ/xJbECvbDTJ5mA6NFQu/7HXL7LwXtFnY5 vDVrY8T8mVvPVz+g8E/qf1HA5XK0V7EL1HKF0KZTyV5ZehuxV+9i0J/wYfUWaNWf /9ulHGICZO+zdX3EnbFPApfYQ5uvGhfkSmd1RZgSh3CHKCUHelCKNCFVZE7qmIQj P67/FKQWjTc/+JHipE9YdnrVlUe0mWwV4UgzlB68Pud2H+7mAPsryadqAM/VuzJS fCmlnurfwB79AbBFWYhnPS2XYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDueYSGq jr4hJpIXBrvcUifHBHF8MB8GA1UdIwQYMBaAFCN0NEtxsp8OODUgyvxsiDUMNWFo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNThBQS9DQTUwQzkyNjI0 MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53NDROU0RLX0d5SU5RdzFZ V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzUTBTM0d5bnc0NE5TREtfR3lJTlF3MVlXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NThBQS9DQTUwQzkyNjI0MDIxMUYwOTYxQjY0NkRDNEY5QUUwMi9JM1EwUzNHeW53 NDROU0RLX0d5SU5RdzFZV2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfRbzxW0yGvIVvtNmCL2rqtYSV36IQTS5TRy9uCM2O4MNgjL928iywPrvTMIn alOKoz30uFRstPnRGfT6RQqKZErUgEzoBhS8d8PIG7NjuadLMJXo9D2dPVgoS0iR nxETpaftScSaKvEdCYn8BsnFecgtRn4NkbgSiXJ3FwRTz5XQiAxQV2bVzKU281gv wKEwE2v/G2i8QUZWu+EkUH9hBzGbb4pK+CXBoy8c9SRJMbdIGNxv4A0PwkIki3e5 YE/++pabiuVDbxPnzU2OczNq17HUuZG07qnlWt+11dn3AB3v5X8++1LR04dRnXh8 1fesWqqd7e4DCzhHtcGX1MNmOA== -----END CERTIFICATE-----Generated at Wed May 13 10:44:08 2026 by rpki-client