$ rpki-client -vvf rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.mft File: T-3YAGh4j_B5v7o_OuSTcmQRX8A.mft (raw, json) Hash identifier: Aw8sZXhH8sXNSPFKXp7YPZyoYBNrQezTcBu5dnyytos= Subject key identifier: 56:1E:D7:50:6F:B8:F7:C4:9E:4C:31:D4:DE:A8:D1:8E:D0:F1:21:B4 Authority key identifier: 4F:ED:D8:00:68:78:8F:F0:79:BF:BA:3F:3A:E4:93:72:64:11:5F:C0 Certificate issuer: /CN=A918924D/serialNumber=4FEDD80068788FF079BFBA3F3AE4937264115FC0 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-3YAGh4j_B5v7o_OuSTcmQRX8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.mft Manifest number: 21 Signing time: Tue 19 May 2026 08:48:10 +0000 Manifest this update: Tue 19 May 2026 08:48:09 +0000 Manifest next update: Tue 26 May 2026 08:48:09 +0000 Files and hashes: 1: T-3YAGh4j_B5v7o_OuSTcmQRX8A.crl (hash: rRiLrhTBsjuRQxhVAIh32TMGlsYMOd9ls+T+EGu2guQ=) 2: 0F7A780C278211F19C45DF9DCA833773.roa (hash: Nj46aMQlSHXr0PtozGObb5+1Bq9Ubs8JUSseSuuPGA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.crl rsync://rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-3YAGh4j_B5v7o_OuSTcmQRX8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 08:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918924D, serialNumber=4FEDD80068788FF079BFBA3F3AE4937264115FC0 Validity Not Before: May 19 08:48:09 2026 GMT Not After : May 26 08:48:09 2026 GMT Subject: CN=6a0c23c9-9c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a4:f0:72:1c:d1:30:12:42:79:ee:3b:21:8a: cc:e4:6d:de:27:31:41:13:84:0d:ac:04:d9:14:ef: 3d:11:fa:c5:d2:99:6f:42:b7:91:23:95:3f:93:d1: d8:59:ce:4a:4d:da:00:33:4d:f2:af:28:2f:8e:ad: 55:2c:cf:f7:ad:de:db:a1:40:2c:e2:34:2d:c4:4f: 00:3b:8a:49:6f:0e:d4:da:04:0b:06:34:e8:bb:30: c5:ad:1f:7c:19:7a:a2:77:e2:e5:39:8c:c9:e6:a1: 66:64:93:bd:fe:a7:50:56:7d:d6:b0:eb:d4:b9:a6: 51:f5:0e:2f:51:c5:57:23:f4:b5:17:4d:35:b2:a4: bc:41:5a:69:08:7f:54:a3:2c:f0:2c:60:e5:71:bb: 3d:e0:4d:7a:8d:9a:6c:79:cf:fd:f6:d2:e0:74:e8: 3e:f5:b7:42:c5:8f:52:28:e8:8f:0a:c5:cb:73:d5: a2:30:45:60:de:91:dc:a4:d3:54:3d:fd:b7:44:3a: 66:d9:31:05:64:c4:39:91:c6:33:5d:7c:53:db:28: a5:09:bb:ac:df:54:55:88:e2:9b:72:96:ff:7b:1d: d5:06:73:2b:af:d4:49:82:65:fa:6b:8c:d6:bd:71: be:b9:87:23:92:95:ed:a5:80:a1:29:da:ab:c2:00: 32:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1E:D7:50:6F:B8:F7:C4:9E:4C:31:D4:DE:A8:D1:8E:D0:F1:21:B4 X509v3 Authority Key Identifier: keyid:4F:ED:D8:00:68:78:8F:F0:79:BF:BA:3F:3A:E4:93:72:64:11:5F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-3YAGh4j_B5v7o_OuSTcmQRX8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918924D/CBE97B62277511F1A85D704CC6833773/T-3YAGh4j_B5v7o_OuSTcmQRX8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:31:37:35:a4:ac:62:ca:d5:02:cc:01:7c:cf:37:0c:0e:f8: ae:05:c9:54:03:2b:87:f3:fe:4a:ff:f1:0d:ab:55:f0:57:94: 7a:35:eb:f7:9e:32:81:76:af:1f:52:e5:ad:5c:36:b9:7a:57: 14:2e:07:47:83:f3:f9:20:7f:84:13:61:89:cd:61:a6:39:14: 2c:dd:b5:ed:3d:89:c9:3a:f7:c6:b7:5a:bd:6c:f8:4f:0a:4d: 51:0f:e7:33:10:e8:ea:5d:c0:74:70:c4:b1:70:10:3a:00:08: ee:b9:26:02:dc:ee:6a:35:cd:8e:af:b1:b1:f1:d5:6a:51:98: 9e:3b:4e:b3:07:36:17:c3:7a:f5:26:53:3c:3a:ce:61:b7:69: 2e:89:7e:d7:ee:70:c5:ab:9e:c8:b9:19:8a:83:07:2a:37:36: 9a:96:f8:26:df:55:63:87:69:8e:bc:b4:01:a5:58:f5:70:f8: 0a:f0:2d:44:f7:e0:ab:3e:a8:ab:79:c7:83:e4:b4:0c:3c:fa: 41:cc:3c:a3:d9:c1:3c:14:5a:40:62:ea:56:1b:5e:6e:54:53: d0:a3:4a:6a:7e:14:f4:e8:65:c3:9c:f3:75:85:a6:3a:ed:0d: 6f:c4:16:19:e3:92:ba:6b:49:ee:fd:62:ca:8d:36:da:84:28: 2c:8f:bd:91 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTI0RDExMC8GA1UEBRMoNEZFREQ4MDA2ODc4OEZGMDc5QkZCQTNGM0FFNDkzNzI2 NDExNUZDMDAeFw0yNjA1MTkwODQ4MDlaFw0yNjA1MjYwODQ4MDlaMBgxFjAUBgNV BAMTDTZhMGMyM2M5LTljNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+pPByHNEwEkJ57jshiszkbd4nMUEThA2sBNkU7z0R+sXSmW9Ct5EjlT+T0dhZ zkpN2gAzTfKvKC+OrVUsz/et3tuhQCziNC3ETwA7iklvDtTaBAsGNOi7MMWtH3wZ eqJ34uU5jMnmoWZkk73+p1BWfdaw69S5plH1Di9RxVcj9LUXTTWypLxBWmkIf1Sj LPAsYOVxuz3gTXqNmmx5z/320uB06D71t0LFj1Io6I8Kxctz1aIwRWDekdyk01Q9 /bdEOmbZMQVkxDmRxjNdfFPbKKUJu6zfVFWI4ptylv97HdUGcyuv1EmCZfprjNa9 cb65hyOSle2lgKEp2qvCADJLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUVh7XUG+4 98SeTDHU3qjRjtDxIbQwHwYDVR0jBBgwFoAUT+3YAGh4j/B5v7o/OuSTcmQRX8Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5MjREL0NCRTk3QjYyMjc3 NTExRjFBODVENzA0Q0M2ODMzNzczL1QtM1lBR2g0al9CNXY3b19PdVNUY21RUlg4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVC0zWUFHaDRqX0I1djdvX091U1RjbVFSWDhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 MjREL0NCRTk3QjYyMjc3NTExRjFBODVENzA0Q0M2ODMzNzczL1QtM1lBR2g0al9C NXY3b19PdVNUY21RUlg4QS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBSMTc1pKxiytUCzAF8zzcMDviuBclUAyuH8/5K//ENq1XwV5R6Nev3njKBdq8f UuWtXDa5elcULgdHg/P5IH+EE2GJzWGmORQs3bXtPYnJOvfGt1q9bPhPCk1RD+cz EOjqXcB0cMSxcBA6AAjuuSYC3O5qNc2Or7Gx8dVqUZieO06zBzYXw3r1JlM8Os5h t2kuiX7X7nDFq57IuRmKgwcqNzaalvgm31Vjh2mOvLQBpVj1cPgK8C1E9+CrPqir eceD5LQMPPpBzDyj2cE8FFpAYupWG15uVFPQo0pqfhT06GXDnPN1haY67Q1vxBYZ 45K6a0nu/WLKjTbahCgsj72R -----END CERTIFICATE-----Generated at Thu May 21 10:20:51 2026 by rpki-client