$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: EjIxnjIwB0BVzjL5UMjn0K/DT/PZkc1ROafMLfGaklM= Subject key identifier: 1C:D3:04:7C:0C:E8:0E:67:65:D2:2A:73:DA:95:F1:31:71:E2:46:71 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 1606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 15F8 Signing time: Wed 20 May 2026 16:43:21 +0000 Manifest this update: Wed 20 May 2026 16:43:20 +0000 Manifest next update: Wed 27 May 2026 16:43:20 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: MoV/ETXc5/iuZUzBGv2oYWqpcZqHJ803t7ywDf+5b84=) 2: 85CB3A8A4A9D11F1A2093B779BEE528E.roa (hash: BY+6H26Cj8DhX22dIV97gKFv22bXOYbyBpYT+3ZQkX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5638 (0x1606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: May 20 16:43:20 2026 GMT Not After : May 27 16:43:20 2026 GMT Subject: CN=6a0de4a9-e644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:95:1e:f8:a6:69:6b:24:f2:49:ab:cf:6b:0a: 96:10:d7:f9:a2:f2:14:73:f9:7b:c9:18:e8:ad:1e: b8:98:70:c8:26:3f:73:90:27:7d:3b:78:ca:b1:d0: be:d1:58:73:df:1c:58:e9:02:ae:d2:91:c1:3f:1e: 99:e7:53:52:80:61:5b:76:ce:fb:c9:e2:c5:8a:a9: 17:56:87:0f:b7:9d:68:1e:9b:07:b1:dc:02:ad:23: c4:7b:ef:18:c7:89:1b:32:55:bd:38:94:4e:9d:7d: 5c:1b:0c:8d:ab:62:d6:7c:38:1d:9c:48:e9:dc:c5: be:af:c7:b4:1d:70:f4:dc:3e:f9:89:6c:e0:60:bb: b4:5f:90:b0:be:d0:c8:af:bf:90:97:b2:49:82:a7: 29:bf:86:10:50:bd:85:88:72:3c:b5:1f:ee:d1:84: 95:8d:dd:94:13:12:8e:58:6d:a6:c1:3f:29:4b:58: 10:d4:4c:74:a8:d8:f3:12:71:a0:64:d7:6e:89:cd: 36:1c:35:26:f3:a1:98:5a:7a:00:5c:b8:c1:7b:9f: 92:72:71:13:fb:9f:51:5e:ee:d3:fa:c3:2b:85:c3: 68:74:db:38:66:ce:8e:f8:1d:75:5b:86:27:3b:a7: f0:8c:27:be:83:a8:06:b2:7f:2a:1a:c7:0f:37:97: 45:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D3:04:7C:0C:E8:0E:67:65:D2:2A:73:DA:95:F1:31:71:E2:46:71 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:7d:5a:a1:2d:eb:bf:7a:33:10:b3:24:7a:f9:63:86:67:22: 61:ab:eb:e7:36:5d:79:59:71:22:47:5d:46:b7:93:81:8e:80: 34:89:7b:96:22:10:90:5f:0f:00:a1:38:91:f5:58:9c:65:50: 98:d0:ba:a7:42:35:2e:a2:a8:10:0d:40:60:33:45:3f:9f:f1: 1a:c1:16:5d:57:2e:8b:2e:44:a0:15:34:1d:d1:74:f8:8e:11: 09:34:85:a1:62:9c:be:3b:63:26:47:1c:8f:c5:76:5b:88:57: 67:ad:56:52:a5:c0:8d:68:64:f3:41:ff:87:33:4a:05:80:76: da:5d:2c:ad:f1:64:3e:35:40:76:5f:ef:b8:1e:2b:00:da:1c: f2:7e:2a:d8:5a:24:e6:47:0f:c1:c3:b4:63:53:ab:42:12:79: 09:76:c9:8b:0c:55:e0:98:08:f8:02:36:8a:f8:38:1d:7d:8c: 81:72:aa:07:0a:f8:d7:c3:e1:a2:ac:be:c7:b7:c6:80:bd:d5: b2:e0:d8:90:9d:c0:87:81:92:40:76:4e:22:10:e5:69:68:2c: e4:77:0b:f3:1f:43:74:18:c9:29:3a:3c:cf:9e:95:17:87:93: 81:92:f3:5f:14:ea:22:75:d0:d8:d8:49:5e:0a:39:79:2a:db: 8b:ee:22:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjYwNTIwMTY0MzIwWhcNMjYwNTI3MTY0MzIwWjAYMRYwFAYD VQQDEw02YTBkZTRhOS1lNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JUe+KZpayTySavPawqWENf5ovIUc/l7yRjorR64mHDIJj9zkCd9O3jKsdC+ 0Vhz3xxY6QKu0pHBPx6Z51NSgGFbds77yeLFiqkXVocPt51oHpsHsdwCrSPEe+8Y x4kbMlW9OJROnX1cGwyNq2LWfDgdnEjp3MW+r8e0HXD03D75iWzgYLu0X5CwvtDI r7+Ql7JJgqcpv4YQUL2FiHI8tR/u0YSVjd2UExKOWG2mwT8pS1gQ1Ex0qNjzEnGg ZNduic02HDUm86GYWnoAXLjBe5+ScnET+59RXu7T+sMrhcNodNs4Zs6O+B11W4Yn O6fwjCe+g6gGsn8qGscPN5dFwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBzTBHwM 6A5nZdIqc9qV8TFx4kZxMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANX1aoS3rv3ozELMkevljhmciYavr5zZdeVlxIkddRreTgY6ANIl7liIQkF8P AKE4kfVYnGVQmNC6p0I1LqKoEA1AYDNFP5/xGsEWXVcuiy5EoBU0HdF0+I4RCTSF oWKcvjtjJkccj8V2W4hXZ61WUqXAjWhk80H/hzNKBYB22l0srfFkPjVAdl/vuB4r ANoc8n4q2Fok5kcPwcO0Y1OrQhJ5CXbJiwxV4JgI+AI2ivg4HX2MgXKqBwr418Ph oqy+x7fGgL3VsuDYkJ3Ah4GSQHZOIhDlaWgs5HcL8x9DdBjJKTo8z56VF4eTgZLz XxTqInXQ2NhJXgo5eSrbi+4i0g== -----END CERTIFICATE-----Generated at Thu May 21 10:14:15 2026 by rpki-client