$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: +c3iSmlc9sCbQVSCbKRvR4CfZMNk6F1+UFkYh+KhfzE= Subject key identifier: 2A:94:A0:1F:B6:CC:A7:DA:45:BB:E7:07:00:53:A5:6B:19:32:59:82 Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 03E7 Signing time: Thu 21 May 2026 00:36:46 +0000 Manifest this update: Thu 21 May 2026 00:36:45 +0000 Manifest next update: Thu 28 May 2026 00:36:45 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: PlZOTo0W8oTlKuXZuGu6q+cZbZKjr5Eo4CJkAY16zOY=) 2: 5734DF38D56811EF89A7D332C4F9AE02.roa (hash: +ePsXEldU8XwZr86Pjr8gpmcjv5LOq79B94UDeNsGa8=) 3: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: KxT8vQKIHFK7Gk3hZ5CxcVmRf+RluSRn51YSF+ICMIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71, serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: May 21 00:36:45 2026 GMT Not After : May 28 00:36:45 2026 GMT Subject: CN=6a0e539e-d4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9b:b4:32:8e:6d:72:2d:8e:f4:8e:d6:3c:92: 8c:25:2c:75:51:35:c7:cd:e2:4f:33:18:62:42:1d: 15:18:74:2e:45:d4:c5:6b:d8:53:0b:5f:8f:63:a7: 19:01:b8:95:4d:01:bb:12:42:56:8e:11:b8:08:ea: 83:75:96:8a:82:83:6b:67:54:00:0b:ca:95:7f:63: 85:31:f3:84:e6:54:65:e8:94:64:1d:1a:ae:53:cf: a6:aa:f6:db:a1:93:0f:f3:98:bd:53:41:9d:1f:5e: 02:72:66:39:24:da:d6:ea:04:2d:cf:51:f6:f9:ca: 93:8d:95:c5:5b:3f:47:93:1e:22:ab:47:8a:26:c2: 45:9f:1d:23:ad:0c:cf:6c:a0:ff:b1:e3:29:ba:34: f0:86:75:b0:a1:d7:25:86:aa:f6:51:9f:62:ed:c1: e9:59:64:d4:91:bc:f4:5f:47:b6:32:6f:ea:eb:6c: 7c:cc:49:45:c9:bc:56:a2:11:a9:4b:fa:ca:37:6f: 3e:fa:33:85:db:ac:8f:b7:17:0e:73:75:f3:55:61: a6:16:c7:a2:f6:40:ec:40:7a:1f:50:a7:72:6a:31: d7:61:f7:7a:52:8b:55:3c:ed:fe:21:30:76:a6:84: 04:b7:a7:59:b2:f5:e0:48:ac:2d:14:9d:77:77:8a: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:94:A0:1F:B6:CC:A7:DA:45:BB:E7:07:00:53:A5:6B:19:32:59:82 X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:36:9c:13:11:f9:43:7a:d3:d7:0b:44:b7:8a:dc:2e:8f:38: 12:d1:d7:91:96:58:59:6f:71:7e:fa:2a:5b:e7:9c:25:23:89: 3f:51:ad:52:ab:b9:8d:18:1b:af:3c:23:c2:3a:d7:8b:e0:a8: b8:ff:f9:5d:a6:83:c5:37:88:5b:90:36:15:4e:b2:70:43:2a: ba:a7:e9:c3:10:b9:98:71:aa:2a:db:22:a5:df:80:dd:38:0e: 72:42:ef:3d:ee:8c:55:23:30:42:e6:f1:04:4b:9c:4a:64:87: c3:1f:86:a4:2b:14:1a:55:50:95:14:21:83:19:80:db:ff:c7: 6e:ae:cf:6d:bb:65:9a:e5:91:eb:36:db:c7:aa:40:8d:1a:4c: f3:09:1f:40:ce:77:20:2c:5b:61:3c:d5:dd:21:d2:75:db:81: ca:5f:16:db:32:ef:3d:3c:db:60:0e:e4:f3:9c:ed:92:f3:f8: c6:71:98:a4:c4:a0:f0:64:b7:4b:18:37:51:b8:6a:8c:ad:a9: f8:ff:99:1e:62:38:b6:58:2a:75:57:2a:ec:b4:79:0c:0a:76: 86:38:11:c9:1e:72:5d:05:1d:f6:77:f7:58:08:d8:d9:1f:33: 08:03:7b:30:1e:d8:c2:08:34:71:65:bc:59:ea:c9:42:bb:7b: cc:9b:2e:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjYwNTIxMDAzNjQ1WhcNMjYwNTI4MDAzNjQ1WjAYMRYwFAYD VQQDEw02YTBlNTM5ZS1kNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ju0Mo5tci2O9I7WPJKMJSx1UTXHzeJPMxhiQh0VGHQuRdTFa9hTC1+PY6cZ AbiVTQG7EkJWjhG4COqDdZaKgoNrZ1QAC8qVf2OFMfOE5lRl6JRkHRquU8+mqvbb oZMP85i9U0GdH14CcmY5JNrW6gQtz1H2+cqTjZXFWz9Hkx4iq0eKJsJFnx0jrQzP bKD/seMpujTwhnWwodclhqr2UZ9i7cHpWWTUkbz0X0e2Mm/q62x8zElFybxWohGp S/rKN28++jOF26yPtxcOc3XzVWGmFsei9kDsQHofUKdyajHXYfd6UotVPO3+ITB2 poQEt6dZsvXgSKwtFJ13d4rEZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCqUoB+2 zKfaRbvnBwBTpWsZMlmCMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmzacExH5Q3rT1wtEt4rcLo84EtHXkZZYWW9xfvoqW+ecJSOJP1GtUqu5jRgb rzwjwjrXi+CouP/5XaaDxTeIW5A2FU6ycEMquqfpwxC5mHGqKtsipd+A3TgOckLv Pe6MVSMwQubxBEucSmSHwx+GpCsUGlVQlRQhgxmA2//Hbq7PbbtlmuWR6zbbx6pA jRpM8wkfQM53ICxbYTzV3SHSdduByl8W2zLvPTzbYA7k85ztkvP4xnGYpMSg8GS3 Sxg3UbhqjK2p+P+ZHmI4tlgqdVcq7LR5DAp2hjgRyR5yXQUd9nf3WAjY2R8zCAN7 MB7Ywgg0cWW8WerJQrt7zJsulg== -----END CERTIFICATE-----Generated at Thu May 21 10:28:07 2026 by rpki-client