$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: iuXt7HYZD73HoZdTb7RhorTqbeeF/pCcW8ALuwhyEQA= Subject key identifier: C2:8D:0A:EF:AA:FD:DD:42:F4:A3:4B:53:C4:B9:87:8B:50:DD:2D:21 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 0537 Signing time: Wed 20 May 2026 23:36:25 +0000 Manifest this update: Wed 20 May 2026 23:36:24 +0000 Manifest next update: Wed 27 May 2026 23:36:24 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: Cmma8IlO+IAJ/JTEkiAeDCBsSq106+obgNctf1JaTUE=) 2: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: 3Nz0u0qKawbNn//HDkZr80q3+/OhbNMzbbOUzKEulCE=) 3: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 6VGJIXHJFD6gG6e/bpw0km40IC6Vms57Pyehvnv97As=) 4: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: zOR5TgVBsSHkOmvQ/lOL+jCdE7mO8zRHpP652KPFcEI=) 5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: qtZVADdmFN9d5j6ch3m5PUYodnBui2LsIftYffK0ss4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1369 (0x559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: May 20 23:36:24 2026 GMT Not After : May 27 23:36:24 2026 GMT Subject: CN=6a0e4578-5499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:59:b1:c4:9e:c6:d3:9b:11:eb:aa:b4:26:c1: 16:ca:73:37:ed:ff:05:9e:03:8f:68:a3:2c:b3:07: c4:e6:5d:0d:fb:f1:24:33:73:5f:1d:b1:f0:0f:fe: 87:31:6e:68:d4:6f:bf:2f:8a:37:e6:78:47:4a:1e: 78:4b:7f:e7:3d:9c:86:8a:5f:f1:b1:f9:43:06:71: 29:6f:ef:72:80:7c:62:26:51:aa:fd:ac:5f:96:7e: 59:8a:02:2f:24:d3:78:1a:aa:4e:3a:01:6d:91:dd: 92:7e:25:eb:a4:ba:7f:62:4c:df:a7:38:5f:4f:8c: 2a:35:33:89:4e:68:84:d2:84:f8:84:a4:77:b9:21: 49:08:99:b9:8e:65:01:0c:8a:35:11:f5:db:cd:11: 12:1d:cf:e6:9f:70:83:9c:95:3b:68:40:18:72:0f: b1:66:c4:48:e6:3c:48:f6:da:c2:c5:70:57:ce:24: 1c:a0:fe:4f:cf:99:55:01:48:e4:b7:b9:c5:8d:ce: 64:b8:f4:b2:d9:2e:a2:1a:c8:26:07:76:e6:53:2e: 13:fb:81:1f:2e:c8:8e:22:37:c9:3b:4a:ab:54:a9: a9:b4:a8:74:ad:98:a2:ed:ec:12:3e:3f:d7:6a:0d: 1b:f2:f8:b2:3d:e9:62:ee:95:03:6c:e5:e3:96:eb: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8D:0A:EF:AA:FD:DD:42:F4:A3:4B:53:C4:B9:87:8B:50:DD:2D:21 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:42:a6:2e:09:7f:30:6a:d3:b2:c4:cc:10:9d:9f:f9:53:d5: 91:28:b1:df:7d:a8:95:ea:65:ee:fd:4c:a5:6c:6f:54:31:df: c9:a0:47:33:b8:30:4c:6a:f3:91:7a:2d:84:d3:3e:8b:a6:f0: 6c:7d:28:69:53:9a:16:a4:b2:21:d2:31:61:03:16:34:c3:b2: c5:b7:f5:54:b8:34:80:25:5d:89:5c:c0:3b:44:d6:bf:96:8d: d6:6d:db:52:38:31:45:ce:98:6e:df:a7:f4:bb:0b:00:18:c8: e2:24:01:b0:05:92:5b:02:24:2b:cc:02:65:9e:53:de:a3:0f: 3e:c0:cd:42:af:be:ee:c5:27:a0:5b:8a:47:92:b7:35:dc:79: ab:03:63:65:fb:22:1b:7e:1d:18:c1:e4:a2:3e:0e:59:4d:75: c3:5c:3d:99:93:14:45:38:5b:af:bf:24:58:3e:3e:e8:7a:3a: 30:dc:bf:42:d2:c0:ec:0a:07:34:58:38:f8:98:a8:77:d6:3f: 00:80:df:a1:c8:2d:2d:1b:e0:e4:c1:9b:64:0e:30:26:bf:28: 1e:2c:81:fa:06:3e:fc:00:db:75:9a:7e:23:ca:51:0b:25:54: 2b:12:2a:c3:22:fd:0e:e5:c0:63:78:55:55:1c:0e:61:c1:ff: da:ad:28:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjYwNTIwMjMzNjI0WhcNMjYwNTI3MjMzNjI0WjAYMRYwFAYD VQQDEw02YTBlNDU3OC01NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1mxxJ7G05sR66q0JsEWynM37f8FngOPaKMsswfE5l0N+/EkM3NfHbHwD/6H MW5o1G+/L4o35nhHSh54S3/nPZyGil/xsflDBnEpb+9ygHxiJlGq/axfln5ZigIv JNN4GqpOOgFtkd2SfiXrpLp/YkzfpzhfT4wqNTOJTmiE0oT4hKR3uSFJCJm5jmUB DIo1EfXbzRESHc/mn3CDnJU7aEAYcg+xZsRI5jxI9trCxXBXziQcoP5Pz5lVAUjk t7nFjc5kuPSy2S6iGsgmB3bmUy4T+4EfLsiOIjfJO0qrVKmptKh0rZii7ewSPj/X ag0b8viyPeli7pUDbOXjlutuCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMKNCu+q /d1C9KNLU8S5h4tQ3S0hMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi0KmLgl/MGrTssTMEJ2f+VPVkSix332olepl7v1MpWxvVDHfyaBHM7gwTGrz kXothNM+i6bwbH0oaVOaFqSyIdIxYQMWNMOyxbf1VLg0gCVdiVzAO0TWv5aN1m3b UjgxRc6Ybt+n9LsLABjI4iQBsAWSWwIkK8wCZZ5T3qMPPsDNQq++7sUnoFuKR5K3 Ndx5qwNjZfsiG34dGMHkoj4OWU11w1w9mZMURThbr78kWD4+6Ho6MNy/QtLA7AoH NFg4+Jiod9Y/AIDfocgtLRvg5MGbZA4wJr8oHiyB+gY+/ADbdZp+I8pRCyVUKxIq wyL9DuXAY3hVVRwOYcH/2q0oyg== -----END CERTIFICATE-----Generated at Fri May 22 15:09:49 2026 by rpki-client