$ rpki-client -vvf rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft File: qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft (raw, json) Hash identifier: vNZMw0SVXdNLRoYKV3K2C2tKYPxMW9DbbzpRyaezcyc= Subject key identifier: 2C:8E:29:20:1D:60:0E:DD:E9:6D:50:D7:40:F1:D7:DA:6C:F7:A2:ED Authority key identifier: AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 Certificate issuer: /CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Certificate serial: 0D56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft Manifest number: 0D52 Signing time: Wed 20 May 2026 18:02:52 +0000 Manifest this update: Wed 20 May 2026 18:02:51 +0000 Manifest next update: Wed 27 May 2026 18:02:51 +0000 Files and hashes: 1: qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl (hash: DOEKxrnNfqzmObPwqPH/TUIoJpubK8ewlAmnu3tvPPM=) 2: 95693F483EFC11F19C051D00C6833773.roa (hash: M5SN5EGxc5NyHEJDLm2TcpSC8S8Y0BYtXOyoPOm7xl8=) 3: CEFC9F4C3EFD11F18502D769C6833773.roa (hash: FVKpYfCHPdPaELMYVb2ZrEZUKTclZWOqDrHvXakeCfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3414 (0xd56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E026, serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Validity Not Before: May 20 18:02:51 2026 GMT Not After : May 27 18:02:51 2026 GMT Subject: CN=6a0df74b-042b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:10:b0:87:62:0f:96:7d:4f:66:8b:ba:30:fc: e9:20:4f:0c:ae:3f:f6:ab:a3:16:3d:c5:ce:04:58: 4c:24:70:b2:ec:00:b7:79:5d:bf:99:18:89:fb:93: 15:81:f6:86:89:e8:ae:91:ba:b6:4d:e7:47:8c:64: 56:7e:d5:b4:4e:07:e9:3c:f8:f6:f7:fb:3b:ad:13: 5d:19:90:d2:35:76:cf:4e:cc:dc:c1:e2:c1:66:d6: 61:0f:ac:7a:69:65:30:f8:37:6c:bd:84:62:ef:b4: 7c:c8:a5:3a:ef:8f:b6:25:f7:d2:e2:12:fe:ad:b6: b1:68:ea:c1:8a:84:26:7c:e7:25:ba:e6:f9:8f:c7: d1:d8:f4:1f:c0:f8:e5:f5:40:68:93:0a:aa:f8:08: d8:3e:2c:eb:03:0a:00:f9:62:55:f2:b4:d8:b0:df: 88:72:95:0f:84:18:22:e0:44:9c:79:02:78:54:83: 0e:f9:13:b5:24:34:31:6b:e1:dd:13:df:49:af:9f: e7:0f:21:13:60:11:fa:5c:05:b5:70:a0:b1:76:71: f5:92:88:c5:2c:06:f3:5f:d5:08:48:b1:bb:e9:0b: f0:56:05:d3:6d:2c:e3:a0:8e:8a:26:c6:5f:10:0b: dc:3a:ff:8c:ad:92:6a:38:52:4d:6f:0b:ec:49:c7: 08:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8E:29:20:1D:60:0E:DD:E9:6D:50:D7:40:F1:D7:DA:6C:F7:A2:ED X509v3 Authority Key Identifier: keyid:AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ae:00:fa:00:b7:61:16:65:94:fb:7b:0b:a6:79:f3:6f:4f: ba:47:3f:d5:ae:13:a3:bd:c2:c8:af:38:67:6b:6c:53:a8:0c: 53:ae:0b:a8:d3:91:bd:7f:a4:1f:43:52:64:ce:35:08:60:fa: b5:90:6e:1d:c4:7b:4b:d9:9b:ae:42:36:14:ce:ee:3d:4b:32: 6c:15:df:f1:5a:ca:16:d3:1c:91:79:3f:f0:93:6f:52:40:5e: d3:a0:09:bd:0d:58:ed:e0:48:d9:ea:5c:66:07:68:89:a7:d3: a9:41:95:31:25:f4:75:22:d5:a8:8f:44:c7:80:6d:79:10:db: b2:86:e7:ee:6b:47:44:9a:39:e9:22:b7:11:2a:ed:90:84:93: f5:b8:ad:7d:e7:24:47:b1:0d:01:4e:80:24:5b:8f:a4:ca:e8: fe:15:1c:e0:f9:c8:5b:f9:4b:6d:c0:ab:d9:9d:de:de:48:7b: 2a:f6:df:d9:0e:e3:e2:5e:45:39:3d:62:57:c6:03:e3:f1:3c: 1b:f7:e3:ce:73:fd:b8:2b:cd:e4:13:ea:6b:9e:19:e3:02:c1: 8c:d5:1d:07:92:ac:6c:a8:69:21:89:06:60:d0:95:57:93:a9: 63:24:31:0a:7c:38:44:0e:91:21:8f:66:31:2c:b8:34:00:37: be:5e:d5:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMjYxMTAvBgNVBAUTKEFCMEQ4Nzk3QzU4QTgzQTVCNDlDMDc3QTMyRUY2NzMy ODcyNEU0MTIwHhcNMjYwNTIwMTgwMjUxWhcNMjYwNTI3MTgwMjUxWjAYMRYwFAYD VQQDEw02YTBkZjc0Yi0wNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BCwh2IPln1PZou6MPzpIE8Mrj/2q6MWPcXOBFhMJHCy7AC3eV2/mRiJ+5MV gfaGieiukbq2TedHjGRWftW0TgfpPPj29/s7rRNdGZDSNXbPTszcweLBZtZhD6x6 aWUw+DdsvYRi77R8yKU674+2JffS4hL+rbaxaOrBioQmfOcluub5j8fR2PQfwPjl 9UBokwqq+AjYPizrAwoA+WJV8rTYsN+IcpUPhBgi4ESceQJ4VIMO+RO1JDQxa+Hd E99Jr5/nDyETYBH6XAW1cKCxdnH1kojFLAbzX9UISLG76QvwVgXTbSzjoI6KJsZf EAvcOv+MrZJqOFJNbwvsSccI4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCyOKSAd YA7d6W1Q10Dx19ps96LtMB8GA1UdIwQYMBaAFKsNh5fFioOltJwHejLvZzKHJOQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAyNi9ENkIyNjMwNEY1 NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2VzBuQWQ2TXU5bk1vY2s1 QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F3MkhsOFdLZzZXMG5BZDZNdTluTW9jazVCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAyNi9ENkIyNjMwNEY1NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2 VzBuQWQ2TXU5bk1vY2s1QkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPa4A+gC3YRZllPt7C6Z5829Pukc/1a4To73CyK84Z2tsU6gMU64LqNORvX+k H0NSZM41CGD6tZBuHcR7S9mbrkI2FM7uPUsybBXf8VrKFtMckXk/8JNvUkBe06AJ vQ1Y7eBI2epcZgdoiafTqUGVMSX0dSLVqI9Ex4BteRDbsobn7mtHRJo56SK3ESrt kIST9bitfeckR7ENAU6AJFuPpMro/hUc4PnIW/lLbcCr2Z3e3kh7Kvbf2Q7j4l5F OT1iV8YD4/E8G/fjznP9uCvN5BPqa54Z4wLBjNUdB5KsbKhpIYkGYNCVV5OpYyQx Cnw4RA6RIY9mMSy4NAA3vl7Vmw== -----END CERTIFICATE-----Generated at Thu May 21 10:24:02 2026 by rpki-client