$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: RgFafP0LUCrG1FRiKqrHOKO9dYMr1/EZjoBlN1Z59xI= Subject key identifier: 27:E3:69:DE:7F:07:39:78:18:BC:29:E0:53:11:99:9F:D2:73:85:0E Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0C44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0C3A Signing time: Wed 20 May 2026 18:46:15 +0000 Manifest this update: Wed 20 May 2026 18:46:15 +0000 Manifest next update: Wed 27 May 2026 18:46:15 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: 7GsOl606VPQfiZIq+Lg+k+7LS8hYERJlx0EYIuXUfLE=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: WSz2V/sotpR3gJkmMh94wQPcuajtaYW6M7zsjsYcooc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: May 20 18:46:15 2026 GMT Not After : May 27 18:46:15 2026 GMT Subject: CN=6a0e0177-3a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a9:76:a3:3c:de:75:ed:2d:a9:8a:0c:38:d4: 26:5f:e0:b3:8b:00:31:ed:ab:6b:d6:4c:e9:65:ab: f9:b8:18:b0:fc:82:ad:88:70:51:db:f3:a3:3c:9d: 70:3b:e3:4a:c9:00:97:90:57:9a:13:23:a6:72:83: 73:c2:2e:96:14:5f:5c:db:12:b1:53:05:ca:8b:45: 86:bc:da:97:0a:d8:74:14:ea:85:03:7e:52:3b:04: 26:b7:52:2c:28:f8:a8:05:eb:25:17:35:0d:e7:e2: e0:a3:7a:a4:68:49:ed:56:4e:7e:49:bb:d9:5f:a7: 9c:e7:18:85:6b:c9:c6:55:90:1a:7b:12:9e:b7:64: d5:23:d0:46:77:77:4d:d4:30:2a:60:fd:ea:c4:41: 6c:f9:60:2c:04:4a:b0:ec:ac:89:90:ac:70:be:db: 61:ab:27:c5:16:af:8a:fc:5c:40:69:e9:29:ca:6b: 41:11:87:60:98:7f:92:ab:b7:2a:a8:ff:c6:2b:b8: be:30:22:19:b8:76:78:88:b8:76:1e:66:86:99:3b: 9c:1f:13:63:f3:2b:27:03:85:f8:43:03:31:ad:ce: 6c:c7:18:fe:e7:bf:0e:7a:97:d3:36:5e:65:6a:ad: ae:b6:92:53:95:ef:09:38:ba:15:d7:4c:c0:f4:b2: 32:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E3:69:DE:7F:07:39:78:18:BC:29:E0:53:11:99:9F:D2:73:85:0E X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:f4:0a:2b:64:32:12:af:d6:44:24:28:43:6e:22:a9:44:c5: 87:07:e5:7f:94:55:58:9b:41:f5:68:40:8d:c1:b2:17:cf:93: a9:07:25:91:b9:d8:79:a7:8c:bb:6d:0c:1f:f8:99:16:95:43: 8f:03:dc:c0:5a:d3:22:5e:57:eb:d4:99:ad:43:f0:4c:fd:c4: b7:b9:a3:9d:fb:b2:7a:7a:2e:cb:bb:35:bc:16:3b:40:1d:5e: c2:4a:da:2b:ea:ea:56:08:05:00:9e:02:3c:fb:f8:7d:9f:c0: 0e:f3:09:d2:73:56:08:cd:77:95:bf:21:64:32:4b:03:4e:9f: 34:05:d1:01:83:3b:4f:f5:6b:77:fa:cc:e2:fa:d0:42:f9:5e: 8d:e6:b6:df:b2:2e:de:6f:ca:4e:00:d5:d0:e3:41:e0:e6:7b: aa:de:b2:ea:99:c6:78:ab:f8:0f:68:a6:6c:af:11:05:04:ed: 50:28:e6:2d:d8:dd:1f:b6:b0:a9:1b:a1:c4:c6:c9:42:f3:f2: 91:83:23:da:10:3e:48:f8:44:8d:b0:71:35:ad:2b:be:89:35: a6:9d:ce:25:02:6a:c6:37:88:be:64:2a:e0:49:92:1e:c9:0a: 71:05:57:d2:a9:2a:d0:a4:16:42:b5:1e:dd:bd:db:e0:59:b5: 89:fd:31:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjYwNTIwMTg0NjE1WhcNMjYwNTI3MTg0NjE1WjAYMRYwFAYD VQQDEw02YTBlMDE3Ny0zYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoal2ozzede0tqYoMONQmX+CziwAx7atr1kzpZav5uBiw/IKtiHBR2/OjPJ1w O+NKyQCXkFeaEyOmcoNzwi6WFF9c2xKxUwXKi0WGvNqXCth0FOqFA35SOwQmt1Is KPioBeslFzUN5+Lgo3qkaEntVk5+SbvZX6ec5xiFa8nGVZAaexKet2TVI9BGd3dN 1DAqYP3qxEFs+WAsBEqw7KyJkKxwvtthqyfFFq+K/FxAaekpymtBEYdgmH+Sq7cq qP/GK7i+MCIZuHZ4iLh2HmaGmTucHxNj8ysnA4X4QwMxrc5sxxj+578OepfTNl5l aq2utpJTle8JOLoV10zA9LIylwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCfjad5/ Bzl4GLwp4FMRmZ/Sc4UOMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdvQKK2QyEq/WRCQoQ24iqUTFhwflf5RVWJtB9WhAjcGyF8+TqQclkbnYeaeM u20MH/iZFpVDjwPcwFrTIl5X69SZrUPwTP3Et7mjnfuyenouy7s1vBY7QB1ewkra K+rqVggFAJ4CPPv4fZ/ADvMJ0nNWCM13lb8hZDJLA06fNAXRAYM7T/Vrd/rM4vrQ Qvlejea237Iu3m/KTgDV0ONB4OZ7qt6y6pnGeKv4D2imbK8RBQTtUCjmLdjdH7aw qRuhxMbJQvPykYMj2hA+SPhEjbBxNa0rvok1pp3OJQJqxjeIvmQq4EmSHskKcQVX 0qkq0KQWQrUe3b3b4Fm1if0xaA== -----END CERTIFICATE-----Generated at Thu May 21 09:35:11 2026 by rpki-client