$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: xx7rm3UlRIO50MW5BEQ3BPds3+ZqV6c2EkpGsqz9XYY= Subject key identifier: 65:E7:7F:FF:5A:D1:B6:73:35:8A:52:A5:CC:3E:3F:7C:5B:54:79:B2 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0E3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0E30 Signing time: Wed 20 May 2026 17:49:09 +0000 Manifest this update: Wed 20 May 2026 17:49:09 +0000 Manifest next update: Wed 27 May 2026 17:49:09 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: iRILKYfLBsyv7bHshSqLQ9uhINQZw83i47CEQY0ZveI=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: yYvSgR/d3pmtKa3loQQjhww8sMlH1QWIAa+l4ZsuXaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 17:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD, serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: May 20 17:49:09 2026 GMT Not After : May 27 17:49:09 2026 GMT Subject: CN=6a0df415-17b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b6:1f:5c:e2:c2:a8:65:bd:fc:dd:45:07:de: 31:09:6d:c6:c9:d7:4a:00:aa:0f:7b:b1:92:0b:32: bf:3a:f5:20:84:1c:35:34:2c:f1:81:48:eb:a3:28: e7:d8:b3:f5:57:62:c3:58:11:c8:b5:29:b7:1f:87: 02:0a:b6:2d:7a:09:aa:21:72:f9:0b:be:c2:74:8c: 3b:6d:7a:83:1b:3f:ed:c1:b5:93:ea:24:89:63:9f: 5b:9f:ce:49:0f:52:fe:a0:d1:70:20:79:06:d4:a1: 30:ef:2a:0e:f0:f1:90:f6:0e:16:9f:3b:a4:62:a5: 76:58:dc:b3:d4:14:05:e0:dc:cb:23:ec:ba:b1:f5: bb:c0:6c:69:88:b4:af:40:f4:4b:03:e7:63:e2:48: 0a:a6:22:64:0f:3e:f1:29:c5:00:99:6a:91:72:97: 07:e5:cb:d1:d8:5c:6d:f2:d0:a4:b6:3b:5d:61:67: 13:9c:9d:29:16:6a:a4:a3:99:48:be:7a:18:19:d0: 79:5b:a5:db:75:26:c7:b0:ad:ee:d4:88:3f:dc:f0: d5:1f:ba:76:aa:c1:84:a4:ae:97:27:d0:51:eb:00: 09:cb:81:5c:68:fd:39:b3:6d:61:e3:40:fd:78:09: ad:84:0c:5e:a1:97:14:eb:e9:e9:cd:9b:15:b0:36: 46:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E7:7F:FF:5A:D1:B6:73:35:8A:52:A5:CC:3E:3F:7C:5B:54:79:B2 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a9:bc:22:65:51:59:5f:be:86:08:7f:d6:7d:26:5c:22:15: 17:2c:62:9f:1d:5f:47:e4:b5:37:15:d4:b1:93:4e:82:6b:f4: 8f:d6:ca:c9:e7:f8:93:b9:a8:aa:a2:8b:a1:11:e2:04:6b:43: ae:09:87:22:b5:6b:71:ef:c5:0e:3b:ce:f5:25:7a:bc:e4:a0: a1:9c:95:91:8c:96:86:94:7b:85:c4:96:0c:5a:d9:e9:bf:4a: c1:8f:05:5b:44:22:99:60:ce:ac:c2:32:71:35:51:46:eb:18: da:74:6e:ba:70:68:ba:99:7b:1b:e2:9e:3e:d9:52:19:e0:b0: fd:55:c4:95:a5:4d:2f:82:49:42:58:49:a0:49:d4:66:9f:4e: 60:8a:bd:36:3d:2d:38:99:89:03:09:b5:bf:08:6a:1d:00:22: d7:af:4f:89:14:c9:fe:65:7a:f3:52:27:f7:bc:dd:9d:9a:a1: 53:ae:a9:21:f7:e5:94:8e:ad:98:3a:7e:50:64:14:f4:43:63: 36:64:62:9c:1d:0c:22:5a:53:0e:17:d6:81:09:8d:c7:38:b5: 5e:27:2f:d5:7a:e4:95:94:86:3d:b6:4a:a2:60:18:c9:2c:39: 42:71:00:0f:45:95:c9:f9:50:44:28:d8:fe:39:2e:cf:63:50: d9:4a:71:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjYwNTIwMTc0OTA5WhcNMjYwNTI3MTc0OTA5WjAYMRYwFAYD VQQDEw02YTBkZjQxNS0xN2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7YfXOLCqGW9/N1FB94xCW3GyddKAKoPe7GSCzK/OvUghBw1NCzxgUjroyjn 2LP1V2LDWBHItSm3H4cCCrYtegmqIXL5C77CdIw7bXqDGz/twbWT6iSJY59bn85J D1L+oNFwIHkG1KEw7yoO8PGQ9g4WnzukYqV2WNyz1BQF4NzLI+y6sfW7wGxpiLSv QPRLA+dj4kgKpiJkDz7xKcUAmWqRcpcH5cvR2Fxt8tCktjtdYWcTnJ0pFmqko5lI vnoYGdB5W6XbdSbHsK3u1Ig/3PDVH7p2qsGEpK6XJ9BR6wAJy4FcaP05s21h40D9 eAmthAxeoZcU6+npzZsVsDZGdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGXnf/9a 0bZzNYpSpcw+P3xbVHmyMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkqm8ImVRWV++hgh/1n0mXCIVFyxinx1fR+S1NxXUsZNOgmv0j9bKyef4k7mo qqKLoRHiBGtDrgmHIrVrce/FDjvO9SV6vOSgoZyVkYyWhpR7hcSWDFrZ6b9KwY8F W0QimWDOrMIycTVRRusY2nRuunBoupl7G+KePtlSGeCw/VXElaVNL4JJQlhJoEnU Zp9OYIq9Nj0tOJmJAwm1vwhqHQAi169PiRTJ/mV681In97zdnZqhU66pIffllI6t mDp+UGQU9ENjNmRinB0MIlpTDhfWgQmNxzi1Xicv1XrklZSGPbZKomAYySw5QnEA D0WVyflQRCjY/jkuz2NQ2UpxKQ== -----END CERTIFICATE-----Generated at Thu May 21 09:35:46 2026 by rpki-client