$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: ok+5USQjs9rsgLHMh0IL7VI7ptwnCJNhSf/jbh37rJ8= Subject key identifier: 09:10:E0:9B:B6:FE:DB:26:61:B8:48:6E:C3:03:77:16:45:A0:5A:FD Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0CA6 Signing time: Wed 20 May 2026 18:33:57 +0000 Manifest this update: Wed 20 May 2026 18:33:56 +0000 Manifest next update: Wed 27 May 2026 18:33:56 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: GYf6tuPrNQL48FdoF5y4WoCjXQLZwuN2VUZS6NKiGVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD, serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: May 20 18:33:56 2026 GMT Not After : May 27 18:33:56 2026 GMT Subject: CN=6a0dfe94-bd04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4e:74:b7:6d:16:cd:25:04:b6:53:c2:8d:35: 32:db:e8:ce:60:92:56:3e:d0:13:6d:66:86:27:0f: b1:84:0c:1c:1b:fc:d6:ba:5e:b6:d4:f9:ab:96:1d: c3:68:9e:ab:ca:02:95:0d:4e:a1:7d:31:8c:49:b6: 23:14:25:97:03:9b:62:4a:bc:1e:78:a4:75:39:0f: 54:0e:db:b7:43:8b:57:bb:8c:1e:11:ff:1e:c9:40: a6:16:9f:19:3c:a1:f9:de:42:f5:11:62:5f:a9:36: 10:c4:f4:be:1c:3e:d3:89:77:77:63:fe:6f:aa:4a: 40:b2:ae:61:0c:cf:76:4a:31:7d:7e:cc:a3:d1:c7: bf:2a:b0:8e:53:dc:67:69:8c:33:1e:07:7f:1a:7d: 2c:39:51:78:51:ee:44:22:68:6e:90:00:e5:7b:ac: 9c:71:10:d7:9c:ff:5e:96:31:f4:ba:e9:c3:e3:40: 59:58:24:7b:a4:9d:a8:af:a8:fe:9c:b7:ea:d8:42: 01:a6:30:d1:ef:45:36:53:e4:a5:bd:d7:8e:43:fb: 2d:a4:17:71:f0:1e:d0:95:94:54:8f:a3:d7:d9:4a: 79:1b:6b:98:1d:60:4e:09:a1:bf:14:3a:da:38:8b: ed:af:c8:dc:93:07:9d:f9:c1:c5:42:29:ff:3f:ee: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:10:E0:9B:B6:FE:DB:26:61:B8:48:6E:C3:03:77:16:45:A0:5A:FD X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:09:1c:55:35:64:c9:8d:21:ab:f8:35:4c:d4:02:3b:51:cc: f5:03:a6:69:d3:a1:bc:38:8c:87:e3:4f:e3:db:22:58:10:ca: 7e:a5:33:14:f4:df:f6:e1:87:d4:47:35:ae:f7:d7:9c:ff:e4: a4:ad:cb:2d:25:e8:f4:d9:ef:61:b7:c5:c4:9d:67:46:48:56: 5d:13:db:6e:3b:31:f3:a5:96:18:33:54:b8:e1:c6:83:73:5f: 88:b3:81:f7:c8:f0:b6:d4:58:7d:1e:18:b6:16:a8:47:b0:11: ad:5e:77:2a:48:4c:65:aa:5f:57:a1:49:69:31:85:5b:f1:39: ad:11:49:d1:2c:d0:77:24:8c:08:e6:0a:cd:b6:07:8b:8e:91: 81:3f:bc:76:8a:0e:91:74:95:95:d8:32:30:8d:e4:31:92:8d: d9:ec:63:f1:f0:a0:6d:8f:18:4e:a0:90:e8:3a:12:13:d9:80: 6c:0b:4b:33:30:d3:52:6a:7e:c2:5c:5a:5a:14:bf:46:db:f0: 63:e2:38:84:08:04:c3:cb:0f:f9:b7:39:a9:fc:7a:e1:43:cb: b2:4c:22:f5:17:84:bf:81:34:74:1b:e9:5d:eb:e2:93:85:25: 02:a7:57:5c:a6:02:07:45:40:28:50:45:56:d6:7d:cf:5a:e7: 25:b7:9c:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjYwNTIwMTgzMzU2WhcNMjYwNTI3MTgzMzU2WjAYMRYwFAYD VQQDEw02YTBkZmU5NC1iZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2E50t20WzSUEtlPCjTUy2+jOYJJWPtATbWaGJw+xhAwcG/zWul621Pmrlh3D aJ6rygKVDU6hfTGMSbYjFCWXA5tiSrweeKR1OQ9UDtu3Q4tXu4weEf8eyUCmFp8Z PKH53kL1EWJfqTYQxPS+HD7TiXd3Y/5vqkpAsq5hDM92SjF9fsyj0ce/KrCOU9xn aYwzHgd/Gn0sOVF4Ue5EImhukADle6yccRDXnP9eljH0uunD40BZWCR7pJ2or6j+ nLfq2EIBpjDR70U2U+SlvdeOQ/stpBdx8B7QlZRUj6PX2Up5G2uYHWBOCaG/FDra OIvtr8jckwed+cHFQin/P+54XQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAkQ4Ju2 /tsmYbhIbsMDdxZFoFr9MB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXgkcVTVkyY0hq/g1TNQCO1HM9QOmadOhvDiMh+NP49siWBDKfqUzFPTf9uGH 1Ec1rvfXnP/kpK3LLSXo9NnvYbfFxJ1nRkhWXRPbbjsx86WWGDNUuOHGg3NfiLOB 98jwttRYfR4YthaoR7ARrV53KkhMZapfV6FJaTGFW/E5rRFJ0SzQdySMCOYKzbYH i46RgT+8dooOkXSVldgyMI3kMZKN2exj8fCgbY8YTqCQ6DoSE9mAbAtLMzDTUmp+ wlxaWhS/RtvwY+I4hAgEw8sP+bc5qfx64UPLskwi9ReEv4E0dBvpXevik4UlAqdX XKYCB0VAKFBFVtZ9z1rnJbecnw== -----END CERTIFICATE-----Generated at Thu May 21 11:15:27 2026 by rpki-client