$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: 3dAI3mpQNZvLc+/QpwnAt9wUc5yoBf8ioRD8QXTN/Gw= Subject key identifier: 3A:E3:A2:06:DF:71:6B:5D:44:49:B9:89:6A:6B:00:88:2A:EF:16:31 Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: 019E Signing time: Thu 21 May 2026 04:18:54 +0000 Manifest this update: Thu 21 May 2026 04:18:54 +0000 Manifest next update: Thu 28 May 2026 04:18:54 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: FcZgGO+/6AVK6medFq3/WfP2MDOIJFBjtyeThmek4pk=) 2: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (hash: hWA9sbtTP3vDnNyxUlzJU40/vhKF33Gp8Ll5fnOcEtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: May 21 04:18:54 2026 GMT Not After : May 28 04:18:54 2026 GMT Subject: CN=6a0e87ae-1181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ca:be:95:85:11:dc:24:85:1e:60:f0:73:a3: c5:dd:0d:a0:66:e2:b5:9c:5a:ed:cb:0a:3c:2b:fa: 94:dc:ad:66:9b:ee:4f:db:51:65:14:06:ed:ff:11: 5c:5a:01:c3:e3:84:88:34:0a:30:b4:9a:29:7b:b1: a9:b2:d0:c0:b3:38:3a:e5:14:2c:59:37:07:57:59: 45:26:a4:b5:d9:ef:be:a0:22:39:60:77:ac:48:36: 7a:81:7e:d4:cc:3b:2d:dd:51:4d:35:a8:59:71:d6: be:3b:03:30:04:ce:f5:1f:00:cb:10:6f:dc:28:4a: 92:bc:65:a8:13:a3:66:37:b2:4d:9a:41:02:48:38: 1a:a4:eb:85:3a:24:ba:30:b9:87:e7:ee:8b:86:91: be:eb:3d:30:c7:81:3b:f4:3a:0d:28:ce:07:01:99: c3:12:40:03:71:64:b3:04:c0:a8:f3:45:a5:4f:d4: 07:09:47:a4:28:0a:06:c9:3e:49:21:dc:e3:54:ee: 2d:cf:96:ee:b3:1a:16:b8:c4:5e:c6:c8:78:43:fc: e6:3e:83:46:a5:13:6d:36:c1:de:c6:18:f5:ce:29: b3:f9:02:37:31:53:ee:19:f4:d4:1c:77:9b:98:dd: 17:1c:4e:33:55:12:95:64:66:34:b3:ad:df:ec:f5: 57:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E3:A2:06:DF:71:6B:5D:44:49:B9:89:6A:6B:00:88:2A:EF:16:31 X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:bf:0a:5d:5c:4d:00:47:71:7c:32:19:f9:9b:28:54:84:dc: c6:1d:00:3e:0d:31:57:39:42:bf:b5:51:b6:d3:c1:66:ba:a5: 7c:bd:17:b3:8b:5c:e9:bf:e2:c4:7a:24:e4:33:79:6d:99:ed: 7b:08:30:60:01:24:5d:95:1f:a6:24:9a:c0:3f:54:86:d2:7e: 0c:82:c2:81:d7:10:23:cb:47:b0:73:d7:48:3d:90:60:59:09: 24:c1:56:0f:14:5f:1e:60:68:da:b6:90:e8:ea:2d:99:bd:c7: f6:a3:72:b0:83:3a:30:36:64:70:6a:b0:ba:98:2c:04:24:4a: 64:85:a1:fa:dc:4f:4e:60:79:51:c2:cf:51:3d:9e:ed:40:a4: 89:93:9c:5f:81:00:4f:47:46:28:3f:de:e1:ba:e0:07:ea:bf: 18:69:dd:3a:e3:79:fe:ed:2d:01:bb:8b:ee:48:67:03:f3:ca: 23:82:f4:f2:b6:eb:22:c0:73:08:16:f5:a1:9a:bd:1b:83:3f: 55:24:4b:79:aa:b7:6e:81:0d:70:65:f6:75:c7:9e:a2:03:70: 36:a4:d0:fa:c5:1f:ea:1d:83:96:d9:20:c6:48:fa:ff:25:7a: 2a:dd:6c:60:22:5f:46:68:d3:c3:38:e8:3a:d7:dc:ea:a1:b7: 95:db:6a:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjYwNTIxMDQxODU0WhcNMjYwNTI4MDQxODU0WjAYMRYwFAYD VQQDEw02YTBlODdhZS0xMTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Mq+lYUR3CSFHmDwc6PF3Q2gZuK1nFrtywo8K/qU3K1mm+5P21FlFAbt/xFc WgHD44SINAowtJope7GpstDAszg65RQsWTcHV1lFJqS12e++oCI5YHesSDZ6gX7U zDst3VFNNahZcda+OwMwBM71HwDLEG/cKEqSvGWoE6NmN7JNmkECSDgapOuFOiS6 MLmH5+6LhpG+6z0wx4E79DoNKM4HAZnDEkADcWSzBMCo80WlT9QHCUekKAoGyT5J IdzjVO4tz5busxoWuMRexsh4Q/zmPoNGpRNtNsHexhj1zimz+QI3MVPuGfTUHHeb mN0XHE4zVRKVZGY0s63f7PVXwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDrjogbf cWtdREm5iWprAIgq7xYxMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjIzRi82NzBDMkYyQ0UyOUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1L eXRYeHpxTlFacnIwbm4xZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY78KXVxNAEdxfDIZ+ZsoVITcxh0APg0xVzlCv7VRttPBZrqlfL0Xs4tc6b/i xHok5DN5bZntewgwYAEkXZUfpiSawD9UhtJ+DILCgdcQI8tHsHPXSD2QYFkJJMFW DxRfHmBo2raQ6Ootmb3H9qNysIM6MDZkcGqwupgsBCRKZIWh+txPTmB5UcLPUT2e 7UCkiZOcX4EAT0dGKD/e4brgB+q/GGndOuN5/u0tAbuL7khnA/PKI4L08rbrIsBz CBb1oZq9G4M/VSRLeaq3boENcGX2dceeogNwNqTQ+sUf6h2Dltkgxkj6/yV6Kt1s YCJfRmjTwzjoOtfc6qG3ldtqcw== -----END CERTIFICATE-----Generated at Thu May 21 09:37:45 2026 by rpki-client