$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: 5/f0ItrtZJzmMaww6NpBkwAHtSLc6cM5EUTJ3bOo6Vg= Subject key identifier: CA:52:F4:43:2D:8B:DD:AA:FA:01:01:C4:87:4E:18:49:EF:F7:B5:3A Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 354F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 3545 Signing time: Wed 20 May 2026 15:18:28 +0000 Manifest this update: Wed 20 May 2026 15:18:27 +0000 Manifest next update: Wed 27 May 2026 15:18:27 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: 5B4dP2ORk5m/bafdhxw9+8DuJp2ov5iHr135h8UQPeg=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: bvmOeL2YXx3nWwBQZ93HrV/AoxQKQL3Er6wwEPR+cds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13647 (0x354f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: May 20 15:18:27 2026 GMT Not After : May 27 15:18:27 2026 GMT Subject: CN=6a0dd0c3-1a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:57:36:a2:a3:3d:d9:bc:c3:85:11:15:a5: 87:fe:f1:3c:20:a2:68:15:a3:4f:e6:4c:8e:d8:79: 79:47:b8:9c:da:40:c2:66:71:21:77:8d:eb:1b:85: 0d:dc:a7:c5:50:46:3f:c0:9c:22:2e:a5:6b:3a:ba: 9d:ab:f6:b7:5e:47:6c:f1:52:00:d6:a8:a5:df:c5: 24:ba:78:ce:7f:3a:b6:05:d3:97:e3:94:c4:34:60: 00:b3:31:51:75:23:e9:77:bc:e9:0f:91:20:73:94: f7:f5:e1:aa:d2:4e:25:f0:ac:3d:1b:30:74:9d:84: 7f:a1:83:c7:6e:71:51:a9:fe:96:6c:aa:cd:17:61: 97:5a:e4:9e:84:4d:6a:45:7a:a5:1d:17:b4:52:ee: 59:50:f6:a9:42:42:63:82:93:c2:f2:4f:73:0b:b8: d7:0f:7f:77:d4:8b:3e:eb:8a:d0:a8:cd:09:2c:f8: 8b:c3:e9:64:fc:bc:90:4e:82:17:b7:80:a8:2c:2a: cd:f9:bb:7a:fa:4e:07:47:07:e0:4c:73:68:c5:db: 37:df:09:e2:c1:8b:6e:47:3d:30:fc:63:b5:72:a2: f4:38:15:88:86:1d:b5:8c:d9:3c:d8:b5:71:a8:f1: 82:14:70:0e:ba:d3:b4:cc:be:1e:19:04:cc:f7:b5: 01:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:52:F4:43:2D:8B:DD:AA:FA:01:01:C4:87:4E:18:49:EF:F7:B5:3A X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:69:ca:2c:82:68:72:5f:75:c2:07:9e:19:f1:2f:29:e9:93: 3a:c7:c0:6a:5b:0c:fa:46:13:3b:60:87:5d:d7:2b:1b:de:94: 87:f8:8d:12:25:d7:6f:83:21:55:8a:ea:37:e1:d8:98:93:04: 4e:ff:65:ad:c7:6a:19:8f:a1:b8:22:47:fc:58:0b:45:3b:76: c1:f5:bc:65:f6:79:da:33:ef:61:57:11:26:72:d2:85:25:1b: c6:6e:02:4b:22:aa:79:0c:73:cd:34:60:2b:aa:30:35:ff:d7: 42:01:40:cc:a9:17:de:7e:37:4c:bd:d2:e4:16:32:43:5a:3b: 22:aa:f6:47:d2:b0:0d:cb:55:28:45:db:0d:d5:fd:79:b7:75: db:b4:6d:76:b0:ae:ca:c9:9a:4f:b6:aa:54:bb:9a:73:8b:8b: 99:ae:6c:18:83:1e:a6:4b:b3:77:38:49:83:72:5a:a9:9f:7a: 42:bf:62:e0:92:6b:6f:2e:52:d3:8b:d8:5b:c6:3f:79:5f:45: 72:d5:74:fe:bd:45:91:7d:c5:c5:69:9b:2c:56:e2:0d:c6:9b: 1d:8e:03:b2:81:e7:57:23:fe:09:45:a1:5a:03:34:6c:c2:7b: e1:ee:a5:00:5f:9b:09:5c:4d:58:c5:85:ce:90:0a:41:59:db: 19:86:1e:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjYwNTIwMTUxODI3WhcNMjYwNTI3MTUxODI3WjAYMRYwFAYD VQQDEw02YTBkZDBjMy0xYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJ1XNqKjPdm8w4URFaWH/vE8IKJoFaNP5kyO2Hl5R7ic2kDCZnEhd43rG4UN 3KfFUEY/wJwiLqVrOrqdq/a3Xkds8VIA1qil38UkunjOfzq2BdOX45TENGAAszFR dSPpd7zpD5Egc5T39eGq0k4l8Kw9GzB0nYR/oYPHbnFRqf6WbKrNF2GXWuSehE1q RXqlHRe0Uu5ZUPapQkJjgpPC8k9zC7jXD3931Is+64rQqM0JLPiLw+lk/LyQToIX t4CoLCrN+bt6+k4HRwfgTHNoxds33wniwYtuRz0w/GO1cqL0OBWIhh21jNk82LVx qPGCFHAOutO0zL4eGQTM97UBowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpS9EMt i92q+gEBxIdOGEnv97U6MB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU2nKLIJocl91wgeeGfEvKemTOsfAalsM+kYTO2CHXdcrG96Uh/iNEiXXb4Mh VYrqN+HYmJMETv9lrcdqGY+huCJH/FgLRTt2wfW8ZfZ52jPvYVcRJnLShSUbxm4C SyKqeQxzzTRgK6owNf/XQgFAzKkX3n43TL3S5BYyQ1o7Iqr2R9KwDctVKEXbDdX9 ebd127RtdrCuysmaT7aqVLuac4uLma5sGIMepkuzdzhJg3JaqZ96Qr9i4JJrby5S 04vYW8Y/eV9FctV0/r1FkX3FxWmbLFbiDcabHY4DsoHnVyP+CUWhWgM0bMJ74e6l AF+bCVxNWMWFzpAKQVnbGYYepg== -----END CERTIFICATE-----Generated at Thu May 21 10:29:29 2026 by rpki-client