$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: YgNGFjqanc1qqplzW0AIf/SZ1rg/o5NZeWsrvoZPCC8= Subject key identifier: AB:70:A0:47:F7:F5:62:47:29:24:8C:47:14:86:A2:9F:83:2F:F0:C2 Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 35FC Signing time: Wed 20 May 2026 15:00:41 +0000 Manifest this update: Wed 20 May 2026 15:00:41 +0000 Manifest next update: Wed 27 May 2026 15:00:41 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: cpA41DnJeBersfB4OukeEW3OHKdoDaGSMmleHj+2gNM=) 2: D5AE1878445411F18F0CA58D8E833773.roa (hash: ZzEqHzGC8O5FdOMWgyAvG6I7/k8xFdsyTDuE7KDBbIU=) 3: 14C7EB3E4A0311F188B4A0B8BF833773.roa (hash: uuHcdBkxccty/weIenIOJopCypBlJDPkgRjWEztGkA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13957 (0x3685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: May 20 15:00:41 2026 GMT Not After : May 27 15:00:41 2026 GMT Subject: CN=6a0dcc99-60e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:e8:f5:ac:46:b5:5d:7f:f5:ba:ff:e6:9a: 51:37:06:8e:87:be:8a:4b:52:4e:9d:b5:15:de:e8: 56:e8:74:87:06:10:78:f2:c4:5b:03:0c:f5:b3:48: 7c:40:27:1f:06:44:5b:18:de:95:c5:cb:44:8d:4c: 69:bb:a4:68:e5:1e:a9:f0:9a:3b:10:c4:f2:0a:47: 88:57:17:b5:54:ba:0a:a0:c5:f4:16:0e:71:cc:7d: 46:d5:66:0f:3a:e3:3b:97:c6:81:ac:b8:b6:97:97: 88:c6:65:c1:ba:a0:c3:82:04:65:26:8b:e7:a9:26: ea:50:58:b4:c8:bd:d3:2b:49:65:6b:9c:0e:bc:1a: db:2a:98:f6:2e:86:53:d6:e8:3b:2f:99:75:28:87: e4:f9:17:07:b7:06:a6:d2:24:16:24:83:42:90:c3: 09:ba:a8:fc:c6:cd:cd:16:d5:24:ab:69:0c:dd:be: 23:70:d3:a5:ef:bd:3e:a5:96:a2:2c:44:15:66:87: 3c:f9:e5:90:35:3b:b4:b4:5b:06:b4:73:e7:ce:c4: b0:e4:38:f7:f7:6a:00:c3:c5:91:e1:c2:a1:01:c1: b3:40:36:b9:45:2c:5a:86:b1:06:b3:63:01:46:aa: 09:76:65:81:8f:05:47:67:37:e8:eb:9e:f3:9b:6e: f6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:70:A0:47:F7:F5:62:47:29:24:8C:47:14:86:A2:9F:83:2F:F0:C2 X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7e:40:7c:99:04:ce:f9:1d:d6:5a:4a:df:5f:4d:59:24:17: 82:04:2e:e5:aa:bb:f3:c5:e7:2a:2e:02:b2:e2:55:c9:7a:48: 16:33:32:52:a8:2c:9e:a4:a2:80:65:ae:f5:fa:aa:22:2e:c0: 0a:a7:e2:c5:1f:c1:f8:0b:31:6d:ef:85:ae:f8:73:14:cb:0e: 2b:ce:b5:cc:50:96:b0:0a:27:f5:2c:ec:7d:af:8c:69:05:fe: 5f:65:8f:72:5e:83:82:98:2f:f4:55:37:a1:57:4d:80:a4:80: 9c:a0:17:5f:b3:07:e2:45:20:ae:00:ed:27:21:3e:6b:d2:2e: f9:62:55:cc:65:6b:19:40:5c:0b:78:78:68:ec:20:81:8f:21: 1f:b2:df:f8:db:26:4e:ac:19:ad:ed:1e:a7:56:78:93:fe:b0: ef:ee:ce:a7:71:2b:58:d3:ea:29:23:dd:6e:03:af:93:5b:07: 5f:a9:c6:e0:0e:dd:3f:91:97:9e:a9:d6:5a:5e:1a:7a:73:ed: 27:12:a8:3f:0d:be:1a:97:06:64:8e:86:a9:c9:41:fd:10:26: 33:99:35:3d:fa:47:68:0b:1b:66:f7:22:f6:73:4c:4b:ed:c0: c6:31:b9:df:21:27:4b:91:e8:33:00:c3:b5:0c:a3:db:47:75: 84:b8:34:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjYwNTIwMTUwMDQxWhcNMjYwNTI3MTUwMDQxWjAYMRYwFAYD VQQDEw02YTBkY2M5OS02MGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXHo9axGtV1/9br/5ppRNwaOh76KS1JOnbUV3uhW6HSHBhB48sRbAwz1s0h8 QCcfBkRbGN6VxctEjUxpu6Ro5R6p8Jo7EMTyCkeIVxe1VLoKoMX0Fg5xzH1G1WYP OuM7l8aBrLi2l5eIxmXBuqDDggRlJovnqSbqUFi0yL3TK0lla5wOvBrbKpj2LoZT 1ug7L5l1KIfk+RcHtwam0iQWJINCkMMJuqj8xs3NFtUkq2kM3b4jcNOl770+pZai LEQVZoc8+eWQNTu0tFsGtHPnzsSw5Dj392oAw8WR4cKhAcGzQDa5RSxahrEGs2MB RqoJdmWBjwVHZzfo657zm272MwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKtwoEf3 9WJHKSSMRxSGop+DL/DCMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZX5AfJkEzvkd1lpK319NWSQXggQu5aq788XnKi4CsuJVyXpIFjMyUqgsnqSi gGWu9fqqIi7ACqfixR/B+Asxbe+FrvhzFMsOK861zFCWsAon9Szsfa+MaQX+X2WP cl6Dgpgv9FU3oVdNgKSAnKAXX7MH4kUgrgDtJyE+a9Iu+WJVzGVrGUBcC3h4aOwg gY8hH7Lf+NsmTqwZre0ep1Z4k/6w7+7Op3ErWNPqKSPdbgOvk1sHX6nG4A7dP5GX nqnWWl4aenPtJxKoPw2+GpcGZI6GqclB/RAmM5k1PfpHaAsbZvci9nNMS+3AxjG5 3yEnS5HoMwDDtQyj20d1hLg0Sw== -----END CERTIFICATE-----Generated at Thu May 21 10:15:59 2026 by rpki-client