$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: NK/Igk1/A8OE8R7O1uv5ENqC7pTios6f1VDG/TVf3fc= Subject key identifier: DC:C7:82:68:78:59:7E:E5:C2:CE:69:6C:0E:88:5A:73:94:7C:1A:B7 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 356C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 3558 Signing time: Wed 20 May 2026 14:23:58 +0000 Manifest this update: Wed 20 May 2026 14:23:57 +0000 Manifest next update: Wed 27 May 2026 14:23:57 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: P0kMIaNYs3UXF8wgbBL0BexXNiEi4mQZ/g30K6TNTdY=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: 3W4AiNrrj2kArnRpgqwuIaUDi20UJ9Jgfp+kFDwU8cQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13676 (0x356c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: May 20 14:23:57 2026 GMT Not After : May 27 14:23:57 2026 GMT Subject: CN=6a0dc3fd-962d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:66:fd:36:77:b6:2d:68:82:b5:73:d4:6d: d5:6b:de:36:7c:a8:2e:f0:a9:0b:a4:75:8a:9e:2e: b2:13:e5:f3:d5:b3:a1:13:49:55:ea:c7:9a:3f:ca: bf:63:96:ea:c1:ae:ba:40:c0:c6:69:e6:39:88:77: 94:01:bd:f2:9d:58:ca:d2:f4:ec:38:63:3a:49:1a: 59:30:2a:9a:1f:02:ac:4f:66:aa:c5:61:6f:06:5f: 20:36:0e:f0:d6:08:64:d1:ad:32:1b:f0:b3:ea:17: af:f7:6a:26:40:98:52:c9:48:d7:d2:e1:dc:9b:5d: ae:95:87:19:e3:5d:38:66:dd:38:9a:89:a8:1c:c5: 1b:78:98:32:23:26:2f:4f:be:da:0f:cd:f3:39:a8: 40:8a:90:75:8e:cb:36:75:e5:87:83:ba:8a:1f:48: 93:cd:7e:68:7c:17:0a:2e:3d:5c:a0:50:3b:db:08: 42:cb:f4:76:b3:87:3d:b3:19:da:b8:10:a3:36:97: b1:64:26:78:b3:80:61:86:66:53:2d:1d:7c:dd:85: 23:f4:b7:e5:03:5e:a2:11:b4:ae:72:1e:5b:81:06: 3c:3a:cd:30:d5:a2:2b:5d:a0:81:d6:9c:50:f8:18: a9:1e:18:84:7d:2d:b7:f8:20:80:8f:22:80:9d:5c: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C7:82:68:78:59:7E:E5:C2:CE:69:6C:0E:88:5A:73:94:7C:1A:B7 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:c7:4c:72:df:28:ba:60:fe:14:e0:7d:fa:1b:bb:fc:79:c1: 77:65:01:6b:f9:48:74:59:f7:6f:67:35:19:f2:69:00:93:6c: d6:c5:bd:db:e5:bb:64:d6:3b:78:62:e4:43:aa:f4:10:79:bd: 38:8f:c3:52:e1:74:bc:d1:a8:a3:77:ec:d2:7f:8c:68:dd:f4: 92:6f:fe:35:74:86:53:51:37:1a:73:46:33:e4:4a:45:ee:e5: b2:70:b9:78:16:c3:8f:3d:62:31:c2:bc:d0:9b:05:4c:77:8c: 58:0d:26:d6:1b:32:84:6b:f1:78:94:6f:60:22:98:d2:5e:00: ff:69:b0:1d:77:e4:4e:64:0a:8c:88:6d:f3:28:45:6d:57:1c: f6:3b:5b:f1:27:70:8d:e6:08:9c:e8:94:8e:73:33:30:07:3c: 76:6a:ea:9a:80:d1:fa:42:af:d5:b7:cd:8b:94:39:ce:0f:da: 9b:5a:87:2f:26:db:30:cb:e8:a7:6f:81:9e:92:bb:4b:11:0f: 93:d0:ab:96:9c:bf:12:36:1f:5e:ae:59:d0:c6:dd:76:67:33: 10:a9:46:ef:98:08:5d:48:69:39:ab:5c:77:f3:ad:9c:f6:16: 42:1d:24:ce:cc:25:46:4f:d4:fc:3a:ff:9b:50:45:1a:74:eb: ea:7d:86:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjYwNTIwMTQyMzU3WhcNMjYwNTI3MTQyMzU3WjAYMRYwFAYD VQQDEw02YTBkYzNmZC05NjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKVm/TZ3ti1ogrVz1G3Va942fKgu8KkLpHWKni6yE+Xz1bOhE0lV6seaP8q/ Y5bqwa66QMDGaeY5iHeUAb3ynVjK0vTsOGM6SRpZMCqaHwKsT2aqxWFvBl8gNg7w 1ghk0a0yG/Cz6hev92omQJhSyUjX0uHcm12ulYcZ4104Zt04momoHMUbeJgyIyYv T77aD83zOahAipB1jss2deWHg7qKH0iTzX5ofBcKLj1coFA72whCy/R2s4c9sxna uBCjNpexZCZ4s4BhhmZTLR183YUj9LflA16iEbSuch5bgQY8Os0w1aIrXaCB1pxQ +BipHhiEfS23+CCAjyKAnVyaiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNzHgmh4 WX7lws5pbA6IWnOUfBq3MB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsMdMct8oumD+FOB9+hu7/HnBd2UBa/lIdFn3b2c1GfJpAJNs1sW92+W7ZNY7 eGLkQ6r0EHm9OI/DUuF0vNGoo3fs0n+MaN30km/+NXSGU1E3GnNGM+RKRe7lsnC5 eBbDjz1iMcK80JsFTHeMWA0m1hsyhGvxeJRvYCKY0l4A/2mwHXfkTmQKjIht8yhF bVcc9jtb8SdwjeYInOiUjnMzMAc8dmrqmoDR+kKv1bfNi5Q5zg/am1qHLybbMMvo p2+BnpK7SxEPk9Crlpy/EjYfXq5Z0MbddmczEKlG75gIXUhpOatcd/OtnPYWQh0k zswlRk/U/Dr/m1BFGnTr6n2GRQ== -----END CERTIFICATE-----Generated at Thu May 21 10:39:30 2026 by rpki-client