$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: sVeNT8fpuTE9/9G2Z+nvCBI5514MjF+Tq1fJwTG+eGg= Subject key identifier: 1E:DF:23:22:7E:40:E2:67:41:88:49:21:C4:2F:15:F5:32:54:09:51 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0F3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0F30 Signing time: Wed 20 May 2026 17:34:42 +0000 Manifest this update: Wed 20 May 2026 17:34:42 +0000 Manifest next update: Wed 27 May 2026 17:34:42 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: z++Rg9+FAn4XrYgx7Qzl2YMT4WCz8YJsZRxWNqEJHak=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: epuRJDNpLBRjInLcr8wNqAbigHvQWwNVcLarPZoddFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3899 (0xf3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: May 20 17:34:42 2026 GMT Not After : May 27 17:34:42 2026 GMT Subject: CN=6a0df0b2-35d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:08:22:4f:7f:12:b9:be:df:e1:7b:f4:c6: 6a:93:2b:3e:7d:14:d8:e8:b8:9b:40:f3:e4:c9:5f: 26:48:3d:cc:07:43:c9:c2:34:2c:3c:ce:81:34:ed: a6:2c:cd:9e:9a:16:30:34:db:7d:24:3a:5c:bc:04: af:b2:2f:7c:8c:5b:1a:d7:74:e3:02:5c:8f:56:ea: 80:9c:f2:b7:97:63:26:a9:7d:12:de:34:ac:99:bd: 35:62:16:40:6f:57:97:35:db:b1:87:8f:9f:fa:f9: 98:50:04:f3:5e:99:3e:25:af:c7:2a:85:6e:24:ad: b8:ef:45:d4:2f:17:d5:5e:aa:b8:5e:9b:bd:51:de: da:ea:19:d6:21:4b:d2:cc:93:7d:aa:4b:b6:77:82: 70:68:f2:61:6d:84:d6:4f:7d:71:4e:12:4d:f4:34: 70:bf:39:04:d4:01:7b:11:a2:4a:44:b8:ab:d2:05: 0c:fe:56:44:3e:29:15:0c:d6:93:da:30:6d:ce:a5: f0:f9:ee:2e:f0:d1:80:da:fa:56:b3:7e:97:e5:21: 94:6e:b4:39:bb:5b:f3:0a:54:c8:00:da:c0:90:9b: 98:44:39:3e:7a:56:e5:09:cc:72:2c:cc:fd:06:91: 74:d6:af:25:13:87:ae:9d:63:de:bb:a1:13:8f:e5: cc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DF:23:22:7E:40:E2:67:41:88:49:21:C4:2F:15:F5:32:54:09:51 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:f7:dc:08:f3:11:77:33:ec:f9:83:bb:b9:55:ce:69:36:09: 5a:d9:81:f2:c4:a1:dc:bc:a5:0d:8f:f4:9a:e7:36:76:49:b6: 37:23:77:1f:a2:78:87:7c:79:59:28:0b:70:b7:38:be:47:80: 7d:61:96:10:c1:8c:28:aa:68:e9:1c:7c:9a:bd:62:a0:73:29: 91:ee:f3:da:a4:b1:cd:af:16:eb:9d:6f:eb:14:76:80:05:fd: e8:11:a4:3f:8b:98:09:6b:08:f1:e2:47:d9:85:2c:1f:81:7b: 3e:48:79:2b:7c:37:a1:52:4b:2f:0c:a1:23:bf:b9:d3:8b:d3: 96:b1:ad:bd:44:fd:78:99:f2:31:b2:f8:8d:35:2a:53:f1:1c: 37:e7:f4:23:2a:72:83:a1:f1:e3:d1:e8:02:86:6a:ef:29:f1: 75:93:bc:6a:b6:00:b4:1b:5a:2d:4f:f3:19:46:95:a1:de:49: ee:2b:08:06:a5:1e:e9:11:c6:2b:7a:b2:47:6a:27:ba:82:b8: da:24:11:7e:05:37:20:fb:ad:02:9d:00:99:de:d8:77:5f:99: af:51:b9:9c:f5:50:a5:78:6c:f5:db:ca:34:cc:dc:c6:0f:bb: c5:e8:f4:12:63:0a:02:8c:f6:95:ca:e9:10:bc:b1:21:c7:64: 82:c9:7b:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjYwNTIwMTczNDQyWhcNMjYwNTI3MTczNDQyWjAYMRYwFAYD VQQDEw02YTBkZjBiMi0zNWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm0IIk9/Erm+3+F79MZqkys+fRTY6LibQPPkyV8mSD3MB0PJwjQsPM6BNO2m LM2emhYwNNt9JDpcvASvsi98jFsa13TjAlyPVuqAnPK3l2MmqX0S3jSsmb01YhZA b1eXNduxh4+f+vmYUATzXpk+Ja/HKoVuJK2470XULxfVXqq4Xpu9Ud7a6hnWIUvS zJN9qku2d4JwaPJhbYTWT31xThJN9DRwvzkE1AF7EaJKRLir0gUM/lZEPikVDNaT 2jBtzqXw+e4u8NGA2vpWs36X5SGUbrQ5u1vzClTIANrAkJuYRDk+elblCcxyLMz9 BpF01q8lE4eunWPeu6ETj+XMdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB7fIyJ+ QOJnQYhJIcQvFfUyVAlRMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm/fcCPMRdzPs+YO7uVXOaTYJWtmB8sSh3LylDY/0muc2dkm2NyN3H6J4h3x5 WSgLcLc4vkeAfWGWEMGMKKpo6Rx8mr1ioHMpke7z2qSxza8W651v6xR2gAX96BGk P4uYCWsI8eJH2YUsH4F7Pkh5K3w3oVJLLwyhI7+504vTlrGtvUT9eJnyMbL4jTUq U/EcN+f0Iypyg6Hx49HoAoZq7ynxdZO8arYAtBtaLU/zGUaVod5J7isIBqUe6RHG K3qyR2onuoK42iQRfgU3IPutAp0Amd7Yd1+Zr1G5nPVQpXhs9dvKNMzcxg+7xej0 EmMKAoz2lcrpELyxIcdkgsl7oA== -----END CERTIFICATE-----Generated at Thu May 21 10:23:58 2026 by rpki-client