$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: ouvtb/INPZ+QiDqitJoEK+fuCOrK7VtWQgxo6+6EwAo= Subject key identifier: D4:2A:FD:A9:B2:F7:B9:24:C6:F3:E1:3B:90:C5:3C:DF:76:49:B3:42 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 353E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 353E Signing time: Wed 20 May 2026 14:38:10 +0000 Manifest this update: Wed 20 May 2026 14:38:10 +0000 Manifest next update: Wed 27 May 2026 14:38:10 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: 4LI/38xOr8kjYQ86dpdlE3w2zpGtkzrV/pDgrf1RyRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13630 (0x353e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: May 20 14:38:10 2026 GMT Not After : May 27 14:38:10 2026 GMT Subject: CN=6a0dc752-8fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:a8:e8:a0:98:be:70:56:b5:4c:e2:33:bf: 3c:27:d2:d0:0e:73:d2:69:0b:de:a2:ea:bb:91:23: 58:bb:eb:7b:40:02:af:fa:3b:f6:5e:6f:32:11:76: ad:db:5d:bd:21:0b:6c:63:71:b4:d3:f8:5e:a9:95: da:f9:ba:07:b9:27:ac:3e:aa:0e:69:d6:7b:fb:53: 3d:63:39:45:41:82:3a:27:a2:e5:4e:3a:a6:07:79: 6c:ee:53:a6:70:bc:45:1a:3b:b3:61:cc:bc:54:a9: 7a:af:41:7c:07:20:a9:06:62:5d:ae:43:c4:68:a3: e2:94:59:3c:76:81:7c:75:7f:e7:ab:05:ee:c5:1c: 31:a1:ad:94:55:10:ff:2d:d7:11:30:4b:f0:12:df: 03:3d:15:52:a9:a9:ef:bc:5a:ab:01:53:5a:0c:78: cb:e9:21:c7:76:81:da:45:9a:ad:97:90:6c:d0:f1: c9:8f:ee:d7:92:f2:21:ab:cb:d1:3f:67:08:ec:88: f8:28:84:69:63:ef:7e:98:62:04:8c:e6:55:6c:55: 4c:7a:24:0e:78:a7:21:e8:a6:ef:f9:76:9a:88:ff: f7:bb:bc:29:51:b6:0d:f0:58:1b:85:86:69:1c:db: 04:cf:26:23:88:e7:3e:30:4c:bf:64:6d:a2:dd:6e: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2A:FD:A9:B2:F7:B9:24:C6:F3:E1:3B:90:C5:3C:DF:76:49:B3:42 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f4:17:f0:71:9f:56:88:a5:1b:b1:5f:7c:45:a7:52:ff:c2: f8:fe:50:fb:98:44:69:c0:99:78:4a:b9:13:7d:24:29:82:36: 1e:2b:1a:a8:1b:26:9a:79:d5:b4:5b:0a:f9:74:df:5b:bb:67: 45:6c:28:49:0e:ca:d8:22:19:01:1b:b7:ba:bf:b9:ea:b4:a1: a5:e2:7b:a5:3d:eb:82:f9:6e:1e:3b:2d:1b:8c:eb:46:78:5b: 78:07:a5:82:03:bf:14:a7:81:e0:0f:60:f2:5e:53:1b:c7:55: d4:10:d5:3a:c4:87:a7:79:d4:fe:64:2b:6d:79:9e:0b:e6:8b: 94:6c:59:9f:21:60:2e:8a:ea:77:e7:33:42:0e:fe:28:da:5f: b0:51:55:2d:b8:49:58:6a:98:a2:8a:2d:95:03:6b:9c:f1:f8: 3a:5b:e1:32:b0:ff:c2:06:ea:51:7f:96:1c:bf:c1:8a:84:5c: d4:1e:ec:d7:a7:b1:a2:cf:f2:af:dd:e2:ba:63:88:ac:8e:f5: c8:db:f5:83:47:0e:87:22:70:ae:bb:48:80:6e:d3:dc:d2:c1: 08:3c:c2:a4:25:e9:f6:d7:bc:7c:ec:c8:2b:17:40:35:a8:0b: df:d4:5e:9a:c5:30:c1:3f:b9:5f:3d:bd:44:04:74:5e:4d:69: 6e:d2:8a:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjYwNTIwMTQzODEwWhcNMjYwNTI3MTQzODEwWjAYMRYwFAYD VQQDEw02YTBkYzc1Mi04ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup+o6KCYvnBWtUziM788J9LQDnPSaQveouq7kSNYu+t7QAKv+jv2Xm8yEXat 2129IQtsY3G00/heqZXa+boHuSesPqoOadZ7+1M9YzlFQYI6J6LlTjqmB3ls7lOm cLxFGjuzYcy8VKl6r0F8ByCpBmJdrkPEaKPilFk8doF8dX/nqwXuxRwxoa2UVRD/ LdcRMEvwEt8DPRVSqanvvFqrAVNaDHjL6SHHdoHaRZqtl5Bs0PHJj+7XkvIhq8vR P2cI7Ij4KIRpY+9+mGIEjOZVbFVMeiQOeKch6Kbv+XaaiP/3u7wpUbYN8FgbhYZp HNsEzyYjiOc+MEy/ZG2i3W5ObQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNQq/amy 97kkxvPhO5DFPN92SbNCMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApvQX8HGfVoilG7FffEWnUv/C+P5Q+5hEacCZeEq5E30kKYI2HisaqBsmmnnV tFsK+XTfW7tnRWwoSQ7K2CIZARu3ur+56rShpeJ7pT3rgvluHjstG4zrRnhbeAel ggO/FKeB4A9g8l5TG8dV1BDVOsSHp3nU/mQrbXmeC+aLlGxZnyFgLorqd+czQg7+ KNpfsFFVLbhJWGqYoootlQNrnPH4OlvhMrD/wgbqUX+WHL/BioRc1B7s16exos/y r93iumOIrI71yNv1g0cOhyJwrrtIgG7T3NLBCDzCpCXp9te8fOzIKxdANagL39Re msUwwT+5Xz29RAR0Xk1pbtKK8A== -----END CERTIFICATE-----Generated at Thu May 21 10:18:07 2026 by rpki-client