$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft File: 3rTAuQf6yhxdN3a9SUb0uqjKazA.mft (raw, json) Hash identifier: Vfr2k14G3L9h2t/1stzzISwDZ8P4TLCUU1eGAWB+7Zg= Subject key identifier: A4:83:1A:3E:D6:DC:E0:E9:92:62:A1:2C:26:44:68:28:65:D7:4A:F6 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft Manifest number: D3 Signing time: Wed 13 May 2026 06:54:01 +0000 Manifest this update: Wed 13 May 2026 06:54:00 +0000 Manifest next update: Wed 20 May 2026 06:54:00 +0000 Files and hashes: 1: 3rTAuQf6yhxdN3a9SUb0uqjKazA.crl (hash: tP80eih1nqwykUB4CT1UF6ItMQFv6Hf+CiauPwK5Ofo=) 2: 0B65C980136D11F09F542C81C4F9AE02.roa (hash: wGUGCDLQuCuMzbcHbV/cBOi37S+j6xYKnWjU86HEOho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 06:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: May 13 06:54:00 2026 GMT Not After : May 20 06:54:00 2026 GMT Subject: CN=6a042008-0db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:2a:6a:9f:07:66:5a:bb:a5:91:25:65:05: fd:b7:b3:4b:cf:65:db:90:5e:85:c8:8e:6f:15:86: 03:da:ca:b8:9a:bd:b4:d6:a6:b0:5a:20:3b:1a:dc: de:57:7c:91:04:d0:f9:68:07:cc:26:77:bb:4e:86: 63:25:46:7e:e9:cb:5b:7c:f6:83:43:ef:ad:f4:83: 8f:dc:d0:a8:42:ff:e6:54:0d:a3:f9:49:cb:21:1c: 34:17:f5:68:4e:6e:1a:74:f4:3a:03:33:9c:26:bc: 7d:22:39:1f:d7:38:3c:c4:0b:db:1f:70:4d:ce:69: d1:de:85:67:7c:af:07:f6:07:67:2e:7c:a7:61:eb: cb:5c:c1:9e:27:1f:39:fb:df:c6:dc:73:ef:92:50: 0f:c1:6a:4a:d7:a9:45:79:59:86:76:0f:c9:1e:f9: 30:ce:87:e2:15:ee:3e:a2:5a:9a:c9:59:75:35:0e: 77:7b:f0:68:7a:bb:e5:57:8c:a3:3e:cd:6a:65:3f: b7:f2:fd:57:8d:c5:65:cc:60:b4:c6:f3:24:90:47: a0:b3:55:ca:22:c3:5b:0b:a3:35:a9:be:2f:cb:ab: 5b:93:f1:bf:a4:f9:33:d7:fa:18:91:94:3d:07:5a: df:54:1b:3f:29:8c:3e:83:50:b4:35:c6:40:82:a6: 43:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:83:1A:3E:D6:DC:E0:E9:92:62:A1:2C:26:44:68:28:65:D7:4A:F6 X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:95:0e:32:90:e3:5b:72:79:e3:57:a9:d7:87:94:b5:33:68: 61:fc:67:75:01:dc:1a:d0:93:89:3a:e4:2a:97:a4:91:7e:1a: b0:ec:37:e4:05:4c:c9:0a:25:36:06:18:6e:0c:75:5f:47:a8: 50:d1:56:2a:81:4a:9b:d5:50:53:68:84:c9:fb:96:d9:ab:c5: b5:bc:a9:dd:73:0c:56:0d:46:b6:cb:a1:00:e3:d3:2f:c1:42: dd:04:0d:34:9d:ad:8a:24:95:90:76:5e:cc:9d:f7:f9:c5:28: 64:8f:55:4d:33:43:fc:3e:10:96:f8:7e:68:ea:a0:61:8f:4e: 91:a1:ea:28:f6:4b:c9:58:f7:3d:e0:62:a4:3b:b5:1b:24:c7: a7:34:ec:43:1d:9d:bf:f7:79:31:02:ea:d9:79:51:de:f1:f4: 35:e4:fd:4d:6c:08:54:1a:d7:40:82:a8:91:02:0b:48:c1:31: a4:a4:ba:64:81:ed:3e:e5:4e:c5:ca:30:4c:46:f5:01:85:66: 81:72:3a:c8:ec:db:51:4e:7b:86:0e:fc:f6:4a:fb:13:b7:dc: a2:53:21:be:84:01:67:34:e2:2b:c6:b0:92:64:d0:54:a2:4d: 73:e8:e4:b9:73:6a:9b:72:ae:67:3b:e9:cf:64:65:f4:f2:c5: 3a:81:6a:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCNUYxMTAvBgNVBAUTKERFQjRDMEI5MDdGQUNBMUM1RDM3NzZCRDQ5NDZGNEJB QThDQTZCMzAwHhcNMjYwNTEzMDY1NDAwWhcNMjYwNTIwMDY1NDAwWjAYMRYwFAYD VQQDEw02YTA0MjAwOC0wZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVMqap8HZlq7pZElZQX9t7NLz2XbkF6FyI5vFYYD2sq4mr201qawWiA7Gtze V3yRBND5aAfMJne7ToZjJUZ+6ctbfPaDQ++t9IOP3NCoQv/mVA2j+UnLIRw0F/Vo Tm4adPQ6AzOcJrx9Ijkf1zg8xAvbH3BNzmnR3oVnfK8H9gdnLnynYevLXMGeJx85 +9/G3HPvklAPwWpK16lFeVmGdg/JHvkwzofiFe4+olqayVl1NQ53e/BoervlV4yj Ps1qZT+38v1XjcVlzGC0xvMkkEegs1XKIsNbC6M1qb4vy6tbk/G/pPkz1/oYkZQ9 B1rfVBs/KYw+g1C0NcZAgqZDdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKSDGj7W 3ODpkmKhLCZEaChl10r2MB8GA1UdIwQYMBaAFN60wLkH+socXTd2vUlG9Lqoymsw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0I1Ri9CMTcwQzkxMjEz NjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnloeGROM2E5U1ViMHVxakth ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8zclRBdVFmNnlo eGROM2E5U1ViMHVxakthekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWZUOMpDjW3J541ep14eUtTNoYfxndQHcGtCTiTrkKpekkX4asOw35AVMyQol NgYYbgx1X0eoUNFWKoFKm9VQU2iEyfuW2avFtbyp3XMMVg1GtsuhAOPTL8FC3QQN NJ2tiiSVkHZezJ33+cUoZI9VTTND/D4Qlvh+aOqgYY9OkaHqKPZLyVj3PeBipDu1 GyTHpzTsQx2dv/d5MQLq2XlR3vH0NeT9TWwIVBrXQIKokQILSMExpKS6ZIHtPuVO xcowTEb1AYVmgXI6yOzbUU57hg789kr7E7fcolMhvoQBZzTiK8awkmTQVKJNc+jk uXNqm3KuZzvpz2Rl9PLFOoFqZQ== -----END CERTIFICATE-----Generated at Wed May 13 12:09:31 2026 by rpki-client