$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: cD4PZZVRw3/1ElzaBl02K8uhhAvz8KQYZJu2vZwDFug= Subject key identifier: 6C:48:88:3A:1B:45:75:01:37:0E:E2:17:50:1A:1F:92:C8:A0:22:F8 Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 35AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 3570 Signing time: Wed 20 May 2026 14:44:45 +0000 Manifest this update: Wed 20 May 2026 14:44:44 +0000 Manifest next update: Wed 27 May 2026 14:44:44 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: 4KuM9fxHRhvyxB2HJzdtq6Nb3x70SeFIfq4SnzMsNps=) 2: 42DAE250C8C711F08A7B6740C4F9AE02.roa (hash: tHNQzy8hGbC74qvfPySY/DdlrWAoieO3qDg8gWPCkbw=) 3: A50B2F32C68611EFB4077137C4F9AE02.roa (hash: 1fzcpx/xvt8MI/rxgZvshROVbIS3fA549ggTMJ5QBwA=) 4: 97F461E0C8CB11F0BFB08139C4F9AE02.roa (hash: bfH2ehm1RnCFQRfKvEIghDMMjyApffoj3OEf9s/P4wM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13739 (0x35ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22, serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: May 20 14:44:44 2026 GMT Not After : May 27 14:44:44 2026 GMT Subject: CN=6a0dc8dd-7137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fb:3d:a3:dc:da:1c:fd:49:ec:bc:8d:e1:08: a2:34:f7:b2:fc:b0:25:15:f3:b1:0d:06:3e:62:83: 9d:ef:c6:b1:43:b2:e9:c3:bf:18:ff:b2:2a:64:bc: c6:27:00:94:88:f1:66:07:ff:51:f7:dd:f3:c0:0b: a4:f2:d8:7c:15:b7:10:78:cc:81:0d:2a:75:a7:42: 4f:46:60:07:d2:21:99:d6:b7:0d:22:68:f9:13:b5: ae:d8:77:e7:1d:7d:5d:aa:2f:65:f1:25:39:bc:ae: b0:9f:8a:69:63:44:7c:76:70:ac:a3:db:2d:e2:7f: 58:73:94:0e:39:58:95:dd:57:b1:e7:c6:bb:08:a2: 74:3c:b7:64:5c:9d:25:51:9d:07:7d:7b:36:5f:5a: e7:47:17:1a:53:df:62:60:bb:40:ad:99:f9:83:1c: 6a:8b:dc:c0:f9:0d:89:e2:f0:8f:b8:1d:a7:b8:53: 11:04:c1:d4:05:cf:fd:d5:fb:c0:52:5e:0b:47:e8: f2:b0:a1:17:ba:dd:44:94:bb:73:3c:6d:73:eb:63: ee:a8:e1:53:28:43:5d:56:dc:67:e0:c8:6c:34:43: 52:7a:93:cc:00:8b:04:54:a8:e6:6f:7d:97:c9:05: b8:08:6d:89:9d:01:91:14:65:91:54:cd:14:23:bd: 3b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:48:88:3A:1B:45:75:01:37:0E:E2:17:50:1A:1F:92:C8:A0:22:F8 X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:32:0c:26:e3:99:38:f4:34:d0:97:51:0e:e6:ab:80:47:aa: 13:11:e8:43:2d:7b:8f:8c:8b:d7:17:7b:55:88:da:c0:aa:e9: e5:50:30:98:b4:93:6b:ac:08:14:19:6a:33:2e:aa:1d:b3:ba: 1e:74:28:e5:eb:99:3d:a7:ed:1d:9d:6c:39:8c:a9:52:e9:79: b6:3c:36:46:90:3e:37:51:b5:94:b6:e3:4a:92:a1:2b:7d:b0: a9:6a:06:73:90:aa:d8:e5:6e:f3:d8:6f:06:c4:be:1f:8e:f4: fd:de:b5:56:2b:be:83:c6:06:2f:d8:ea:13:36:ba:e5:14:db: 13:19:d0:92:ae:8c:ba:22:17:3e:62:3a:62:1a:65:11:cd:57: 47:10:27:bf:47:90:e1:dc:98:40:36:45:74:03:ce:43:d4:be: 8a:ff:6a:d5:d9:ba:8d:e1:56:4b:5a:ac:3e:d2:40:35:d9:c0: d9:f3:48:9f:3a:72:e2:c5:07:b4:e9:c9:23:fa:bf:48:cb:c9: 93:23:34:f3:2b:e6:fd:58:c7:be:9e:89:b8:0d:b3:ed:35:96: 31:73:4f:0e:e2:e8:4e:b1:48:74:28:58:5c:c7:44:3c:a0:a6: c7:37:f2:1b:de:28:76:14:b2:c8:55:de:07:8b:5a:cf:ae:37: 0c:d5:4b:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjYwNTIwMTQ0NDQ0WhcNMjYwNTI3MTQ0NDQ0WjAYMRYwFAYD VQQDEw02YTBkYzhkZC03MTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvs9o9zaHP1J7LyN4QiiNPey/LAlFfOxDQY+YoOd78axQ7Lpw78Y/7IqZLzG JwCUiPFmB/9R993zwAuk8th8FbcQeMyBDSp1p0JPRmAH0iGZ1rcNImj5E7Wu2Hfn HX1dqi9l8SU5vK6wn4ppY0R8dnCso9st4n9Yc5QOOViV3Vex58a7CKJ0PLdkXJ0l UZ0HfXs2X1rnRxcaU99iYLtArZn5gxxqi9zA+Q2J4vCPuB2nuFMRBMHUBc/91fvA Ul4LR+jysKEXut1ElLtzPG1z62PuqOFTKENdVtxn4MhsNENSepPMAIsEVKjmb32X yQW4CG2JnQGRFGWRVM0UI707qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGxIiDob RXUBNw7iF1AaH5LIoCL4MB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhTIMJuOZOPQ00JdRDuargEeqExHoQy17j4yL1xd7VYjawKrp5VAwmLSTa6wI FBlqMy6qHbO6HnQo5euZPaftHZ1sOYypUul5tjw2RpA+N1G1lLbjSpKhK32wqWoG c5Cq2OVu89hvBsS+H470/d61Viu+g8YGL9jqEza65RTbExnQkq6MuiIXPmI6Yhpl Ec1XRxAnv0eQ4dyYQDZFdAPOQ9S+iv9q1dm6jeFWS1qsPtJANdnA2fNInzpy4sUH tOnJI/q/SMvJkyM08yvm/VjHvp6JuA2z7TWWMXNPDuLoTrFIdChYXMdEPKCmxzfy G94odhSyyFXeB4taz643DNVLcg== -----END CERTIFICATE-----Generated at Thu May 21 10:18:06 2026 by rpki-client