$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: r03fmWHcqCdrBQ0ZyfsR6ExWWDqGomF8HrOc06HB490= Subject key identifier: EE:1A:5A:4B:25:45:F5:50:D5:93:C5:FA:CB:C1:60:69:C5:D5:C3:63 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0700 Signing time: Wed 20 May 2026 22:05:44 +0000 Manifest this update: Wed 20 May 2026 22:05:44 +0000 Manifest next update: Wed 27 May 2026 22:05:44 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: /lAsE2xWoIRIWU8jz1fWxJIFblkuXBu3DTydrU7ABTQ=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: MHi4TFFkjk45IS82Lk1zkWvvF71n/wv3X8tPB3ZA4gQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 22:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: May 20 22:05:44 2026 GMT Not After : May 27 22:05:44 2026 GMT Subject: CN=6a0e3038-ea1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ac:8e:2c:81:bd:8d:63:e0:fc:ca:44:f4:04: 2e:58:1d:1e:06:6a:e4:56:22:50:82:12:4e:25:47: ce:c1:52:aa:7d:a1:d8:4a:e2:bc:29:56:ad:6c:f6: 1b:15:d0:41:e3:91:f1:94:c1:21:c2:5e:83:72:bf: 69:de:74:4e:ca:f0:4c:3e:ca:f9:7d:9a:69:8e:c4: 7c:5c:ae:83:b0:b2:16:11:7e:0d:b2:5f:fe:18:9a: af:6e:62:ce:29:0a:fb:af:91:6c:91:2c:df:89:5a: fb:eb:68:98:49:70:ca:ef:9c:61:40:ba:52:fb:c8: 12:70:2c:db:45:2f:16:43:20:ce:9d:8f:12:32:11: 39:a0:b9:2e:dc:ea:02:2e:ea:ba:74:d9:62:df:c2: 02:3c:3d:a4:04:de:77:e9:c0:53:7b:01:35:ca:bd: 56:47:7f:94:34:70:f3:07:de:18:b5:d9:df:01:f6: 8a:d3:92:4d:24:1a:42:73:6c:64:9b:5b:ad:91:f3: 38:69:b9:7c:d7:2f:20:77:6e:04:e9:92:6d:17:30: 45:ec:2e:b4:c3:50:2b:4c:47:7f:b2:09:26:07:73: a1:fe:14:20:8f:29:cc:bf:20:40:96:7b:6c:e0:37: be:25:d1:3e:ee:df:52:50:53:f0:f7:e2:eb:4d:72: 7f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1A:5A:4B:25:45:F5:50:D5:93:C5:FA:CB:C1:60:69:C5:D5:C3:63 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:40:2f:96:c6:48:5d:ac:74:01:d6:8b:fb:11:05:1a:0c:f6: e5:67:f6:c0:f9:f3:bd:c6:41:a0:39:2a:8f:b2:99:b7:fd:e3: 68:ae:78:2e:cb:ae:d1:35:4e:6f:59:b0:0a:e7:92:96:9d:02: b8:c8:3e:2a:47:7f:40:ed:2d:6c:95:c2:6b:30:07:40:cd:5a: 00:0a:7b:a1:c5:07:4a:c9:9d:97:0c:cc:28:56:ed:7d:54:d0: 9f:e3:39:9a:01:a5:11:87:e6:d1:7b:6f:d6:db:24:23:c4:6f: 7e:cb:ce:d6:2c:48:b5:d7:9b:8a:30:7d:3b:e3:7a:20:14:b0: b2:15:25:0f:fc:10:27:43:d2:63:b0:46:8f:21:d4:8c:97:81: b6:48:61:ee:c3:15:5f:22:4c:34:b9:67:ea:d6:69:4a:3e:d2: dd:d9:29:e2:f3:29:3a:c8:dd:d0:23:94:02:e9:e6:e7:4e:1e: e9:24:de:c6:b2:c1:73:73:6e:e4:bf:a2:87:10:e8:8a:5d:ad: 6b:71:92:bb:79:b2:5b:de:81:d2:4b:06:1a:3c:0e:18:ab:d4: 8c:2e:87:46:d6:a9:eb:8a:44:15:5b:7f:23:f6:2b:f2:cd:13: cd:db:4f:af:d5:c3:26:69:2a:55:f9:e4:1a:5c:19:98:eb:f9: dd:c6:86:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjYwNTIwMjIwNTQ0WhcNMjYwNTI3MjIwNTQ0WjAYMRYwFAYD VQQDEw02YTBlMzAzOC1lYTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqyOLIG9jWPg/MpE9AQuWB0eBmrkViJQghJOJUfOwVKqfaHYSuK8KVatbPYb FdBB45HxlMEhwl6Dcr9p3nROyvBMPsr5fZppjsR8XK6DsLIWEX4Nsl/+GJqvbmLO KQr7r5FskSzfiVr762iYSXDK75xhQLpS+8gScCzbRS8WQyDOnY8SMhE5oLku3OoC Luq6dNli38ICPD2kBN536cBTewE1yr1WR3+UNHDzB94YtdnfAfaK05JNJBpCc2xk m1utkfM4abl81y8gd24E6ZJtFzBF7C60w1ArTEd/sgkmB3Oh/hQgjynMvyBAlnts 4De+JdE+7t9SUFPw9+LrTXJ/RwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO4aWksl RfVQ1ZPF+svBYGnF1cNjMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADUAvlsZIXax0AdaL+xEFGgz25Wf2wPnzvcZBoDkqj7KZt/3jaK54Lsuu0TVO b1mwCueSlp0CuMg+Kkd/QO0tbJXCazAHQM1aAAp7ocUHSsmdlwzMKFbtfVTQn+M5 mgGlEYfm0Xtv1tskI8RvfsvO1ixItdebijB9O+N6IBSwshUlD/wQJ0PSY7BGjyHU jJeBtkhh7sMVXyJMNLln6tZpSj7S3dkp4vMpOsjd0COUAunm504e6STexrLBc3Nu 5L+ihxDoil2ta3GSu3myW96B0ksGGjwOGKvUjC6HRtap64pEFVt/I/Yr8s0TzdtP r9XDJmkqVfnkGlwZmOv53caGpg== -----END CERTIFICATE-----Generated at Thu May 21 10:20:21 2026 by rpki-client