$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: 8XSkf+iL9TuxCzO1VYgkWEXfyUAG2Usr85Xp7fv8LRU= Subject key identifier: 48:EC:E9:1E:09:3A:BA:60:3E:01:BD:FB:B6:86:F0:42:F8:53:1E:B2 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 356F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3553 Signing time: Wed 20 May 2026 14:36:42 +0000 Manifest this update: Wed 20 May 2026 14:36:42 +0000 Manifest next update: Wed 27 May 2026 14:36:42 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: qjJNuCvQb3VM2KfXSknSnbofLB2gOzJJvBhr+ngEDj4=) 2: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 8vDZoZnTL3EsLAf9lWoggGQcc7J0/U/rlfaQO/B5nJw=) 3: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: EmtqkldBy+S1KrrhPoPa/VOGFTeYDwSx06Mb2C05cC8=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: fGf/PGVtu9coS4OTxiQfwTin94woH0RC8SYgnjce7aM=) 5: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: UwLoOyaZbHGVyc3Yo+XyKXXwqdXa6YKf1q7At4kg4i0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13679 (0x356f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: May 20 14:36:42 2026 GMT Not After : May 27 14:36:42 2026 GMT Subject: CN=6a0dc6fa-1cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9f:5d:73:b7:2d:56:2e:26:fe:ef:75:52:1e: 5f:4e:ec:cc:41:3e:c4:46:4e:5a:a7:16:09:5b:8a: 8b:29:a0:cd:68:4d:ce:3f:42:ed:85:cb:07:13:5d: 9a:1e:5d:15:77:87:69:ae:57:6e:6a:d8:89:d2:e4: c4:0b:36:ca:1e:6f:1d:fa:d9:d6:2a:b4:01:4d:c9: 89:56:ac:80:5c:49:d2:1e:76:2c:e5:66:c6:4a:31: 38:8b:24:7b:47:61:ba:53:6d:81:1d:cf:84:4b:96: 3e:c7:0e:50:f1:7d:ff:b2:98:25:87:ba:d9:48:c2: d2:b1:67:7c:8d:7b:22:cf:e6:19:a1:4b:0f:4c:89: 09:6b:11:56:16:81:81:31:60:4e:31:2f:a1:48:e7: 5b:75:87:bd:49:f2:4f:4c:c1:5b:d2:a7:5c:8d:df: d1:59:67:4a:20:d5:b4:34:c2:76:bd:9c:56:db:10: eb:04:bf:45:17:57:d3:82:5a:30:81:c9:66:4e:e6: 28:d3:0b:bf:51:2a:93:5e:dd:c0:f7:fb:6a:aa:3e: 2b:2a:b0:86:3a:59:77:66:ef:97:ed:30:8f:d2:38: 05:88:cd:3e:41:6a:84:21:2c:53:a7:c2:7a:15:01: e2:8b:7d:d5:14:49:e1:47:1a:e4:e8:c9:f7:21:fa: db:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:EC:E9:1E:09:3A:BA:60:3E:01:BD:FB:B6:86:F0:42:F8:53:1E:B2 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:70:cb:54:83:68:44:39:1b:c0:91:4c:81:d3:be:8d:1f:34: ea:45:06:89:80:ec:8c:56:69:e5:07:22:dd:f4:6a:20:88:ec: b8:25:34:8a:62:1b:f8:2f:47:a2:21:48:bb:74:99:04:aa:0b: dc:85:9e:0a:2e:66:b4:3c:b6:e0:27:1b:4b:df:61:03:94:58: ac:6d:08:63:9a:27:29:78:3a:44:17:f1:d2:f3:6a:3a:71:94: 26:d0:14:a8:0a:fa:9b:99:58:45:eb:32:bf:32:b6:11:4c:a2: 68:69:5f:bb:4b:60:4c:41:84:92:2d:70:ce:19:49:47:2a:1e: 87:f7:50:17:f0:e3:cf:22:f3:94:13:99:c5:78:87:fa:95:1b: 06:31:04:bc:f8:82:54:27:2c:1a:d0:a4:bb:6b:5f:96:89:0b: 05:5f:94:05:90:0b:97:f9:6d:d6:a4:86:e0:aa:5c:da:ec:69: 2a:6e:ff:6a:83:3d:bc:a8:7f:dd:ab:71:22:df:4f:96:fc:c8: 45:21:09:fa:38:e4:c1:8e:c2:6f:53:31:2c:10:a8:e2:ae:6c: 40:ac:f0:50:5e:10:43:33:b1:32:6e:25:cd:85:0e:9f:0e:d6: c5:14:bc:26:bb:3f:94:75:fa:80:f2:43:ad:15:62:2b:70:e0: b1:1e:72:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjYwNTIwMTQzNjQyWhcNMjYwNTI3MTQzNjQyWjAYMRYwFAYD VQQDEw02YTBkYzZmYS0xY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0p9dc7ctVi4m/u91Uh5fTuzMQT7ERk5apxYJW4qLKaDNaE3OP0LthcsHE12a Hl0Vd4dprlduatiJ0uTECzbKHm8d+tnWKrQBTcmJVqyAXEnSHnYs5WbGSjE4iyR7 R2G6U22BHc+ES5Y+xw5Q8X3/spglh7rZSMLSsWd8jXsiz+YZoUsPTIkJaxFWFoGB MWBOMS+hSOdbdYe9SfJPTMFb0qdcjd/RWWdKINW0NMJ2vZxW2xDrBL9FF1fTglow gclmTuYo0wu/USqTXt3A9/tqqj4rKrCGOll3Zu+X7TCP0jgFiM0+QWqEISxTp8J6 FQHii33VFEnhRxrk6Mn3IfrbwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEjs6R4J OrpgPgG9+7aG8EL4Ux6yMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKHDLVINoRDkbwJFMgdO+jR806kUGiYDsjFZp5Qci3fRqIIjsuCU0imIb+C9H oiFIu3SZBKoL3IWeCi5mtDy24CcbS99hA5RYrG0IY5onKXg6RBfx0vNqOnGUJtAU qAr6m5lYResyvzK2EUyiaGlfu0tgTEGEki1wzhlJRyoeh/dQF/DjzyLzlBOZxXiH +pUbBjEEvPiCVCcsGtCku2tflokLBV+UBZALl/lt1qSG4Kpc2uxpKm7/aoM9vKh/ 3atxIt9PlvzIRSEJ+jjkwY7Cb1MxLBCo4q5sQKzwUF4QQzOxMm4lzYUOnw7WxRS8 Jrs/lHX6gPJDrRViK3DgsR5yzg== -----END CERTIFICATE-----Generated at Thu May 21 10:15:32 2026 by rpki-client