$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: 2B+M29ml9MiaWtyTUVAbhNsF7NQdJnVj2uL/cQGQDyc= Subject key identifier: 2D:85:D1:7E:B7:AE:77:29:4B:92:01:47:58:B6:65:88:3C:00:E1:DF Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0224 Signing time: Thu 21 May 2026 02:47:23 +0000 Manifest this update: Thu 21 May 2026 02:47:22 +0000 Manifest next update: Thu 28 May 2026 02:47:22 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: s7y20Ifd7jEZXiGSWp336F7aX5bivJP290Paw7T+ldw=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: fhl3fJcB+h4weCxugxGGdq61t1fYoSdltlSekuAK37k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 02:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: May 21 02:47:22 2026 GMT Not After : May 28 02:47:22 2026 GMT Subject: CN=6a0e723b-ce1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2f:c1:02:ee:17:2e:69:e1:66:18:e5:f9:f3: e1:de:c9:a5:71:98:b0:ff:00:f9:0d:9a:0b:38:29: 83:65:df:bf:9e:53:4d:52:2d:2c:15:6d:2c:b7:5c: 60:74:d1:4d:bf:62:50:ee:e3:3b:aa:18:50:b9:a6: 37:c7:45:b9:08:33:f5:81:34:28:27:21:18:41:bc: 50:8e:9a:98:f5:12:c9:e5:60:da:67:08:dd:69:e7: 53:07:00:62:8d:4b:86:a6:13:d3:e9:1b:b0:e9:a7: 12:26:5b:78:a3:29:fd:72:19:c0:fe:36:79:e1:15: cb:b9:23:92:cc:ed:d7:c9:6a:2d:39:6f:25:b5:e1: 90:6f:ed:cf:6b:42:1a:23:4e:1b:ea:6a:03:8a:74: 35:33:d6:be:70:bc:6d:79:98:bb:0f:f9:4c:94:a0: f8:b8:43:8a:fd:3a:66:2d:3c:e6:14:47:cb:b5:9a: 4b:ab:fe:ce:17:b1:11:51:70:09:1b:ff:73:11:79: e6:50:b7:69:7a:08:24:37:1e:bd:ca:2c:5a:b8:12: 64:b3:71:8c:4d:fb:b2:39:20:8a:c2:eb:50:18:aa: 4a:d4:15:39:38:a6:db:bc:ce:bc:a1:3e:5c:8e:16: da:5b:22:20:13:a9:bf:5c:74:e4:40:17:e9:66:0a: 35:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:85:D1:7E:B7:AE:77:29:4B:92:01:47:58:B6:65:88:3C:00:E1:DF X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:b8:13:60:51:de:b9:fe:5c:37:78:f5:ca:cd:fc:70:57:25: d5:c4:f8:17:21:5e:16:59:83:35:9f:d4:c7:16:a7:49:9a:01: d7:df:10:0e:8d:64:18:d3:14:b7:56:8e:8c:3f:88:c5:05:da: 0f:8e:2e:f9:49:d8:1b:78:df:bb:ee:2c:25:d1:ff:3d:c2:0c: aa:b6:a2:5a:f5:cb:2f:eb:dc:02:91:e5:be:ec:a1:86:8f:b2: ac:37:d5:bd:bf:6c:e3:1e:6d:e2:ba:8f:53:5b:ac:a4:96:aa: 5b:2b:7d:53:82:bb:7a:05:07:ed:de:8c:06:d6:b1:29:ef:19: 83:43:b6:51:10:eb:0c:45:cd:94:ca:50:26:87:7b:51:4a:1b: 09:de:58:ed:bc:0d:6d:5a:95:70:45:65:3b:23:1f:d2:74:d9: 9e:f7:52:d8:52:88:86:7d:76:10:e0:2e:8d:98:30:52:40:2a: b9:40:0e:d0:47:97:61:aa:b5:e1:a7:82:f7:60:55:db:6d:5f: 5e:77:7d:7f:3e:60:f6:20:a6:39:84:a1:e2:16:03:11:6e:c7: bc:f5:22:73:02:39:7f:20:e2:bf:d3:0d:0d:a2:54:6f:99:1b: d6:80:a6:4b:62:eb:3f:67:a7:8d:ac:04:f3:92:4e:e9:0e:3d: a0:35:88:8b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjYwNTIxMDI0NzIyWhcNMjYwNTI4MDI0NzIyWjAYMRYwFAYD VQQDEw02YTBlNzIzYi1jZTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S/BAu4XLmnhZhjl+fPh3smlcZiw/wD5DZoLOCmDZd+/nlNNUi0sFW0st1xg dNFNv2JQ7uM7qhhQuaY3x0W5CDP1gTQoJyEYQbxQjpqY9RLJ5WDaZwjdaedTBwBi jUuGphPT6Ruw6acSJlt4oyn9chnA/jZ54RXLuSOSzO3XyWotOW8lteGQb+3Pa0Ia I04b6moDinQ1M9a+cLxteZi7D/lMlKD4uEOK/TpmLTzmFEfLtZpLq/7OF7ERUXAJ G/9zEXnmULdpeggkNx69yixauBJks3GMTfuyOSCKwutQGKpK1BU5OKbbvM68oT5c jhbaWyIgE6m/XHTkQBfpZgo1jwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC2F0X63 rncpS5IBR1i2ZYg8AOHfMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMLgTYFHeuf5cN3j1ys38cFcl1cT4FyFeFlmDNZ/UxxanSZoB198QDo1kGNMU t1aOjD+IxQXaD44u+UnYG3jfu+4sJdH/PcIMqraiWvXLL+vcApHlvuyhho+yrDfV vb9s4x5t4rqPU1uspJaqWyt9U4K7egUH7d6MBtaxKe8Zg0O2URDrDEXNlMpQJod7 UUobCd5Y7bwNbVqVcEVlOyMf0nTZnvdS2FKIhn12EOAujZgwUkAquUAO0EeXYaq1 4aeC92BV221fXnd9fz5g9iCmOYSh4hYDEW7HvPUicwI5fyDiv9MNDaJUb5kb1oCm S2LrP2enjawE85JO6Q49oDWIiw== -----END CERTIFICATE-----Generated at Thu May 21 11:03:35 2026 by rpki-client