$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: GTfjzFdV6CnJzGPgRy0OhU3rTBb1L7ta61AS72X/ExQ= Subject key identifier: EB:C4:92:72:97:E3:F0:5D:59:8E:80:CE:E0:70:15:28:42:2E:64:34 Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0F17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0F0C Signing time: Wed 20 May 2026 17:36:14 +0000 Manifest this update: Wed 20 May 2026 17:36:14 +0000 Manifest next update: Wed 27 May 2026 17:36:14 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: 4rC8ZEU4o+NikD0Cl84XTlxRkSfxGnu+vRX28dHNe34=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 7Zntvgptxi7t6rq+AQ6AjwkrN9jO9paj8Ccr/LfGYDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3863 (0xf17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3, serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: May 20 17:36:14 2026 GMT Not After : May 27 17:36:14 2026 GMT Subject: CN=6a0df10e-0536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dd:af:16:1c:31:c6:92:80:b7:00:77:f2:f5: 9a:20:39:e0:b7:4d:73:27:3d:28:9e:6c:c9:ba:cf: a5:54:34:49:1f:c7:0f:c6:93:01:b5:be:c7:0b:45: e5:65:c4:64:ca:09:e5:8d:cb:d4:33:ed:3d:04:10: 73:94:14:54:b9:6b:18:b7:0b:0b:50:90:2e:ab:c9: eb:68:05:a9:5c:f7:38:ac:92:19:30:2e:a3:c7:ea: f1:b1:29:a0:67:c5:66:c9:d9:04:31:3c:fb:ff:0b: f7:1d:80:8d:d3:a8:1c:e9:0d:d2:97:a6:42:f9:c8: 35:1d:8c:d7:3a:e3:1b:39:1d:66:1e:45:cd:96:71: 60:1f:75:e1:ed:aa:dc:bd:ec:ff:97:5a:82:66:2c: 35:0d:28:00:96:55:05:18:6c:7d:3b:c5:b8:b8:6b: 26:be:9c:f2:da:b3:6f:21:3c:86:f4:3a:83:a0:c3: 1c:cc:59:4c:27:ee:57:6f:31:28:d6:92:80:65:04: 4e:96:b3:07:06:12:f8:55:c5:96:8f:2e:c0:a6:f2: ab:1c:db:c8:77:da:24:49:95:85:7c:97:96:5f:c3: 17:f9:93:c4:94:1d:2a:fd:ed:ca:ec:9c:4a:32:58: 74:f1:0a:36:31:e0:bc:d9:23:79:43:11:f4:1a:32: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C4:92:72:97:E3:F0:5D:59:8E:80:CE:E0:70:15:28:42:2E:64:34 X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8e:88:bd:f2:48:2b:9d:36:85:85:e2:69:e4:73:2a:e9:c6: 47:82:cf:88:45:02:d8:32:56:2b:c4:86:32:ac:cf:20:ba:71: 8a:c2:5e:e9:3f:64:e5:84:e6:9a:56:79:61:78:83:22:30:d2: ed:30:8d:5a:e4:72:04:7f:1c:2e:21:f8:4d:46:f8:7f:48:f2: fb:87:74:e5:95:29:6d:e5:c2:80:93:af:9f:f5:2b:86:88:31: e5:0d:b7:25:db:6b:58:94:c5:4e:8e:2a:8d:a5:ba:c8:20:52: 7f:f5:cf:ef:c9:ba:93:bf:89:14:68:a5:86:e3:e9:fe:0c:a1: 6b:65:fe:bd:39:ce:f1:e1:2f:55:d0:86:1b:f6:fc:6e:d1:7f: ab:c8:7a:29:10:b4:ce:63:34:e9:b1:a9:b3:1f:93:b9:9e:e7: d5:bd:47:ab:5d:48:a1:55:cf:91:c7:5f:23:a8:68:3a:26:eb: a6:62:62:8b:d4:4b:42:d3:6a:a0:87:2a:b8:e0:94:1f:e4:f9: af:4c:22:73:d0:d1:c8:ba:e3:b5:8d:b8:38:6c:95:33:56:c3: 86:13:ad:75:9e:27:45:fc:e5:9a:82:14:6c:35:f0:bd:90:87: 56:dd:5f:01:61:18:a1:63:ea:10:5e:06:4d:13:17:f4:2d:42: a2:8c:43:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjYwNTIwMTczNjE0WhcNMjYwNTI3MTczNjE0WjAYMRYwFAYD VQQDEw02YTBkZjEwZS0wNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnt2vFhwxxpKAtwB38vWaIDngt01zJz0onmzJus+lVDRJH8cPxpMBtb7HC0Xl ZcRkygnljcvUM+09BBBzlBRUuWsYtwsLUJAuq8nraAWpXPc4rJIZMC6jx+rxsSmg Z8VmydkEMTz7/wv3HYCN06gc6Q3Sl6ZC+cg1HYzXOuMbOR1mHkXNlnFgH3Xh7arc vez/l1qCZiw1DSgAllUFGGx9O8W4uGsmvpzy2rNvITyG9DqDoMMczFlMJ+5XbzEo 1pKAZQROlrMHBhL4VcWWjy7ApvKrHNvId9okSZWFfJeWX8MX+ZPElB0q/e3K7JxK Mlh08Qo2MeC82SN5QxH0GjKMKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOvEknKX 4/BdWY6AzuBwFShCLmQ0MB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANI6IvfJIK502hYXiaeRzKunGR4LPiEUC2DJWK8SGMqzPILpxisJe6T9k5YTm mlZ5YXiDIjDS7TCNWuRyBH8cLiH4TUb4f0jy+4d05ZUpbeXCgJOvn/Urhogx5Q23 JdtrWJTFTo4qjaW6yCBSf/XP78m6k7+JFGilhuPp/gyha2X+vTnO8eEvVdCGG/b8 btF/q8h6KRC0zmM06bGpsx+TuZ7n1b1Hq11IoVXPkcdfI6hoOibrpmJii9RLQtNq oIcquOCUH+T5r0wic9DRyLrjtY24OGyVM1bDhhOtdZ4nRfzlmoIUbDXwvZCHVt1f AWEYoWPqEF4GTRMX9C1CooxDfQ== -----END CERTIFICATE-----Generated at Thu May 21 10:15:37 2026 by rpki-client