$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: EYZ7a9Eh3tBhsd08HK0HLttRYUQdMqxv9O5nMeIu6YE= Subject key identifier: 57:46:6F:5E:0D:14:4E:FB:6D:E1:F6:B3:BD:45:AF:3D:5C:3D:B1:10 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 0A4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0A41 Signing time: Wed 20 May 2026 19:44:42 +0000 Manifest this update: Wed 20 May 2026 19:44:42 +0000 Manifest next update: Wed 27 May 2026 19:44:42 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: L3ljlaKBv7ASZq/KQDzKfvrCMHvsZYnerWsvZV+U2p0=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: AksdzM4PbXGL/XcGvbH1UmcYB82GNXMH4wOGUwrHV60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: May 20 19:44:42 2026 GMT Not After : May 27 19:44:42 2026 GMT Subject: CN=6a0e0f2a-1cef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0e:ba:aa:97:da:6a:0b:05:64:1e:98:57:cd: c3:40:73:3f:b3:9e:25:49:00:f4:0b:0b:19:af:98: bb:c8:6f:bd:01:43:da:aa:f4:81:5c:13:7c:e3:e0: 7a:2b:dc:f0:e7:00:0e:6e:b6:da:2e:23:5c:15:95: d9:27:19:3e:11:50:e8:18:13:90:dd:b1:e0:1b:ea: c5:4a:b7:53:bd:66:1f:3d:56:b7:f8:dd:22:0c:45: 82:da:40:98:4e:86:58:d4:5a:0d:e3:5c:c6:43:69: a2:05:35:74:cf:7f:b5:21:27:a8:8f:1c:ab:62:f6: 79:25:49:43:f5:0c:6e:fc:ea:8d:1e:67:47:8b:af: c4:18:3d:4a:a8:ac:9f:b6:33:2e:07:3e:47:21:96: 76:36:a7:d6:21:af:1b:cc:c9:55:88:dd:70:9f:1d: 16:19:67:c4:01:3d:5a:2d:08:1e:ea:86:67:80:74: a5:80:47:1a:af:d8:8a:ec:48:6b:24:57:3e:06:17: 0b:41:8e:7f:4e:78:25:93:30:47:8c:ff:1b:bb:b8: 0b:77:8e:a6:0f:97:a2:b4:1b:86:07:38:65:f4:e1: 62:e4:e5:5d:3b:d6:91:a4:3d:65:d9:cf:80:66:16: e4:06:33:97:7c:35:cf:f6:45:c1:b3:fa:94:ef:d7: 0a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:46:6F:5E:0D:14:4E:FB:6D:E1:F6:B3:BD:45:AF:3D:5C:3D:B1:10 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7e:1c:60:60:20:8a:54:be:3b:35:a2:7b:2e:ea:16:3b:35: a4:ee:97:2d:f8:17:46:ac:77:9a:d1:e2:3a:91:6f:ab:63:27: 67:ea:dc:4a:99:49:11:3f:5a:3d:37:00:aa:f2:f0:82:72:da: 50:c5:86:b3:4e:08:18:eb:d4:cc:fc:f6:21:d3:c5:3d:54:ba: d4:81:78:ad:5b:67:22:26:48:4c:31:e1:be:cf:39:7e:4d:31: 5f:7b:66:f6:95:18:95:12:47:f3:06:f1:14:94:19:5f:8c:45: 49:57:fd:40:5a:bb:70:74:ab:b4:a4:2b:90:1a:2a:2e:57:92: 73:65:ac:72:e0:42:1f:8a:0c:f7:f3:0e:fa:be:6c:23:d4:c0: fe:c0:15:f8:c0:44:cf:ff:5d:29:f5:55:c8:53:bb:bb:61:0b: c0:59:77:24:36:1f:b7:ab:f2:1b:a9:d4:f1:29:6d:6d:08:ae: a5:f1:82:90:c5:b3:8d:5c:c7:9b:37:c8:5f:0f:79:a7:6d:2d: 9f:df:df:48:a7:56:3c:96:64:cb:44:c9:b6:a3:8c:d1:19:43: 58:60:4a:31:0d:17:4b:8c:78:fe:94:e2:cf:17:36:84:e6:76: 71:ad:9b:53:17:53:83:60:d7:18:18:21:93:2d:a6:3e:f6:94: 9b:f0:3f:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjYwNTIwMTk0NDQyWhcNMjYwNTI3MTk0NDQyWjAYMRYwFAYD VQQDEw02YTBlMGYyYS0xY2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmg66qpfaagsFZB6YV83DQHM/s54lSQD0CwsZr5i7yG+9AUPaqvSBXBN84+B6 K9zw5wAObrbaLiNcFZXZJxk+EVDoGBOQ3bHgG+rFSrdTvWYfPVa3+N0iDEWC2kCY ToZY1FoN41zGQ2miBTV0z3+1ISeojxyrYvZ5JUlD9Qxu/OqNHmdHi6/EGD1KqKyf tjMuBz5HIZZ2NqfWIa8bzMlViN1wnx0WGWfEAT1aLQge6oZngHSlgEcar9iK7Ehr JFc+BhcLQY5/TnglkzBHjP8bu7gLd46mD5eitBuGBzhl9OFi5OVdO9aRpD1l2c+A ZhbkBjOXfDXP9kXBs/qU79cKkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFdGb14N FE77beH2s71Frz1cPbEQMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfH4cYGAgilS+OzWiey7qFjs1pO6XLfgXRqx3mtHiOpFvq2MnZ+rcSplJET9a PTcAqvLwgnLaUMWGs04IGOvUzPz2IdPFPVS61IF4rVtnIiZITDHhvs85fk0xX3tm 9pUYlRJH8wbxFJQZX4xFSVf9QFq7cHSrtKQrkBoqLleSc2WscuBCH4oM9/MO+r5s I9TA/sAV+MBEz/9dKfVVyFO7u2ELwFl3JDYft6vyG6nU8SltbQiupfGCkMWzjVzH mzfIXw95p20tn9/fSKdWPJZky0TJtqOM0RlDWGBKMQ0XS4x4/pTizxc2hOZ2ca2b UxdTg2DXGBghky2mPvaUm/A/iA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:49 2026 by rpki-client