$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: mdsG4U+zTSO+OKNaGpiW874lPTXwJvrZUKkS+8r3/Do= Subject key identifier: D0:A7:D3:65:AA:8E:C8:F3:D1:27:CE:10:2C:48:DD:05:89:A6:14:91 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 021D Signing time: Wed 13 May 2026 02:55:52 +0000 Manifest this update: Wed 13 May 2026 02:55:52 +0000 Manifest next update: Wed 20 May 2026 02:55:52 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: Z4743aEy+qRoBycmBUPtvYyQms1j74TUHLTQBj52vhk=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: 6YiHQS923AFAHNIQZq0OQFG6vXkTwTlPlKTi8KK2q5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: May 13 02:55:52 2026 GMT Not After : May 20 02:55:52 2026 GMT Subject: CN=6a03e838-f45a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:29:13:10:5e:7b:67:b9:63:de:d6:16:be: b0:de:d0:03:e1:c0:86:c7:32:3e:28:03:e1:a6:6e: fb:75:b8:f7:1e:6f:1a:54:26:c9:d7:1a:7d:04:d7: ee:76:45:40:f9:82:dc:ac:8f:1b:2a:b6:ae:76:13: 63:30:9d:71:e7:b4:eb:95:85:78:6e:16:86:38:ee: 99:4c:0e:e7:c8:6b:c5:86:ac:cd:a3:5b:72:d9:85: 1e:ba:8e:58:a2:39:4f:6e:0a:88:d1:70:69:db:6f: 65:3a:6e:c0:2d:2e:fa:24:e3:1f:df:e3:bb:0d:c3: f8:81:5d:ec:b9:09:31:7d:da:80:37:1b:03:78:ca: 1a:03:c1:9e:2b:d6:b7:d9:63:21:b1:de:b0:7a:88: eb:92:e0:43:07:fe:55:91:ba:71:f8:16:50:97:ac: 19:b8:b7:c1:96:25:6a:1b:e8:53:39:ba:11:b2:84: 3b:dd:42:82:7b:2a:07:e0:75:b9:9c:3c:7b:34:ab: 92:8b:2e:be:d0:83:48:a2:c9:5b:9f:89:14:ec:fa: 54:21:2b:41:b6:ac:56:ff:45:46:63:a8:f7:0a:e0: 4d:f4:a9:16:70:4f:c6:c1:d4:c0:d0:5f:f9:b4:e3: 21:ab:d4:cf:33:dc:51:bc:f0:a2:c3:30:03:38:db: 4c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A7:D3:65:AA:8E:C8:F3:D1:27:CE:10:2C:48:DD:05:89:A6:14:91 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:0d:cf:c9:63:51:a1:c7:3f:84:a8:7b:48:9d:2c:d3:95:12: 29:3a:94:d8:b3:a5:b8:58:aa:b3:40:93:5b:42:95:e8:5e:4a: 7b:06:6e:56:4b:25:cf:ef:8f:df:5e:69:01:ed:c0:58:ee:39: 25:fe:09:a4:ce:69:44:37:88:a4:7b:b1:a4:27:c5:42:a5:00: dc:12:81:93:11:6d:b5:87:4c:82:c0:e5:80:93:21:62:f1:36: 65:30:0e:8a:34:3b:6e:a6:ed:bd:ad:ad:1b:28:db:c7:30:08: 7b:88:9a:79:07:89:f9:1a:7a:ff:af:05:80:bd:ed:53:8d:e4: d8:a3:79:22:0c:79:b4:16:07:8d:2d:e8:5e:2b:c6:07:a6:4f: 9b:79:1c:c9:c3:18:68:01:eb:9a:dc:88:d8:12:39:52:4b:02: 15:93:64:b6:3e:ce:32:18:ad:14:a2:4d:a1:d1:d2:2a:91:a5: c6:d9:be:1e:b0:cb:32:e0:df:7d:cf:7f:56:6d:13:54:3c:de: 70:bd:f4:33:66:f8:14:41:76:60:ca:0b:33:08:02:3f:b8:61: a1:94:7b:98:c9:aa:fa:36:44:3d:98:3f:4d:b2:d4:e0:b3:77: ee:12:b3:84:ac:b6:1c:cf:f9:05:a5:ab:7b:86:02:33:f9:07: c3:bb:10:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjYwNTEzMDI1NTUyWhcNMjYwNTIwMDI1NTUyWjAYMRYwFAYD VQQDEw02YTAzZTgzOC1mNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX0pExBee2e5Y97WFr6w3tAD4cCGxzI+KAPhpm77dbj3Hm8aVCbJ1xp9BNfu dkVA+YLcrI8bKraudhNjMJ1x57TrlYV4bhaGOO6ZTA7nyGvFhqzNo1ty2YUeuo5Y ojlPbgqI0XBp229lOm7ALS76JOMf3+O7DcP4gV3suQkxfdqANxsDeMoaA8GeK9a3 2WMhsd6weojrkuBDB/5Vkbpx+BZQl6wZuLfBliVqG+hTOboRsoQ73UKCeyoH4HW5 nDx7NKuSiy6+0INIoslbn4kU7PpUIStBtqxW/0VGY6j3CuBN9KkWcE/GwdTA0F/5 tOMhq9TPM9xRvPCiwzADONtM+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNCn02Wq jsjz0SfOECxI3QWJphSRMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaA3PyWNRocc/hKh7SJ0s05USKTqU2LOluFiqs0CTW0KV6F5KewZuVkslz++P 315pAe3AWO45Jf4JpM5pRDeIpHuxpCfFQqUA3BKBkxFttYdMgsDlgJMhYvE2ZTAO ijQ7bqbtva2tGyjbxzAIe4iaeQeJ+Rp6/68FgL3tU43k2KN5Igx5tBYHjS3oXivG B6ZPm3kcycMYaAHrmtyI2BI5UksCFZNktj7OMhitFKJNodHSKpGlxtm+HrDLMuDf fc9/Vm0TVDzecL30M2b4FEF2YMoLMwgCP7hhoZR7mMmq+jZEPZg/TbLU4LN37hKz hKy2HM/5BaWre4YCM/kHw7sQfw== -----END CERTIFICATE-----Generated at Wed May 13 23:11:59 2026 by rpki-client