$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: Pxd+x9at/ZumkG62bakYPvRDIJMTomxuLx3f7tAtZW4= Subject key identifier: CE:42:F4:9F:58:E8:1C:5D:BD:42:4A:AD:DE:80:51:7F:C9:02:5B:3E Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0CC8 Signing time: Wed 20 May 2026 18:28:07 +0000 Manifest this update: Wed 20 May 2026 18:28:06 +0000 Manifest next update: Wed 27 May 2026 18:28:06 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: 46GoynG5w52Zr4OIZgQHEXEe93Dof8U8kjUW8cYPICM=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: P3cA4Ey/V8rl3zAePZZSJQ01VWq57x0zCe1ptcZIm4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: May 20 18:28:06 2026 GMT Not After : May 27 18:28:06 2026 GMT Subject: CN=6a0dfd37-c7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:5d:5f:0e:93:d0:fa:01:5a:da:1c:4b:ba: 91:14:24:ad:53:ef:9d:42:d4:3a:dc:e4:aa:7a:e9: d8:98:2a:82:ba:95:b2:7e:c5:67:4f:9e:d2:e8:95: bc:7a:f2:e2:35:dc:15:ce:92:8d:e6:a9:4f:3a:92: ce:50:53:81:f0:72:1b:ec:1e:3f:73:3d:88:50:d5: 0d:fe:ab:ef:eb:0b:58:4f:b5:a5:96:f7:e1:dc:a6: 2e:2c:a5:35:da:b7:ef:30:2b:c1:1b:ce:1d:e0:20: da:71:ee:b7:c8:5e:31:c5:58:39:1d:a3:82:d4:26: 88:02:f1:69:e5:48:cb:9d:b5:e0:e4:68:b3:c9:88: c7:2f:06:ae:23:3e:cf:59:f9:92:c8:12:ca:71:1a: 98:6c:01:76:e0:5c:3c:e5:ff:4c:df:2e:b4:1e:24: 43:47:d4:84:d3:b1:29:56:7f:d8:a5:0f:6c:f9:96: eb:b3:c6:5d:7d:55:0b:8b:52:43:eb:f1:6c:66:94: 91:bf:5e:31:f6:f0:38:d0:25:21:a4:9a:4f:37:33: 6c:48:ff:d7:b5:3c:16:e5:03:87:c0:32:e7:1e:50: bd:0c:f8:f5:a1:5c:2f:32:b6:8c:6c:2c:78:b2:73: 9b:95:8c:34:0d:7b:ac:4f:5c:59:62:2b:d2:62:68: 5d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:42:F4:9F:58:E8:1C:5D:BD:42:4A:AD:DE:80:51:7F:C9:02:5B:3E X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2f:ef:e0:d7:aa:6d:7d:fc:9a:89:60:44:df:fd:75:1f:42: 12:ae:33:10:76:47:e7:e8:f0:95:6f:10:51:b8:aa:3e:e6:49: 29:04:9b:9e:69:9c:4d:6f:9b:9f:43:09:d0:87:b9:74:04:d0: 80:0c:eb:5c:fd:60:5d:2b:9c:43:71:b8:59:06:01:14:d2:ec: ba:9d:16:c5:d5:2c:5d:c4:2d:b5:5b:94:88:0c:56:ec:c4:00: c6:6e:af:ff:54:9b:7e:b6:6e:f6:6c:aa:d9:26:84:0c:f0:81: 02:a0:27:c9:41:46:6a:2d:84:29:94:bc:4d:9e:72:44:40:03: 77:41:c6:bd:d9:36:49:d8:1b:1a:9a:e3:18:35:f4:ee:60:6f: 6b:e6:80:64:b2:a7:dd:89:0f:b9:b7:32:a4:f9:6c:6c:ba:08: dc:e3:6a:7f:b0:0e:1e:76:af:b6:9e:a6:85:09:8b:5a:6d:c8: 0c:ee:c9:2a:d6:75:83:fd:4f:c5:c8:18:55:d1:16:45:8f:03: 42:3c:25:db:04:8e:23:12:97:0f:94:d3:87:90:3e:1f:02:3b: 7d:39:ef:1d:74:01:2f:34:16:43:1a:d2:07:39:09:04:f6:9d: 80:31:e1:5c:23:50:69:d9:16:12:46:7e:37:0a:ea:b9:29:d0: 32:fc:8e:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjYwNTIwMTgyODA2WhcNMjYwNTI3MTgyODA2WjAYMRYwFAYD VQQDEw02YTBkZmQzNy1jN2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugZdXw6T0PoBWtocS7qRFCStU++dQtQ63OSqeunYmCqCupWyfsVnT57S6JW8 evLiNdwVzpKN5qlPOpLOUFOB8HIb7B4/cz2IUNUN/qvv6wtYT7Wllvfh3KYuLKU1 2rfvMCvBG84d4CDace63yF4xxVg5HaOC1CaIAvFp5UjLnbXg5GizyYjHLwauIz7P WfmSyBLKcRqYbAF24Fw85f9M3y60HiRDR9SE07EpVn/YpQ9s+Zbrs8ZdfVULi1JD 6/FsZpSRv14x9vA40CUhpJpPNzNsSP/XtTwW5QOHwDLnHlC9DPj1oVwvMraMbCx4 snOblYw0DXusT1xZYivSYmhdBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM5C9J9Y 6BxdvUJKrd6AUX/JAls+MB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAei/v4NeqbX38molgRN/9dR9CEq4zEHZH5+jwlW8QUbiqPuZJKQSbnmmcTW+b n0MJ0Ie5dATQgAzrXP1gXSucQ3G4WQYBFNLsup0WxdUsXcQttVuUiAxW7MQAxm6v /1SbfrZu9myq2SaEDPCBAqAnyUFGai2EKZS8TZ5yREADd0HGvdk2SdgbGprjGDX0 7mBva+aAZLKn3YkPubcypPlsbLoI3ONqf7AOHnavtp6mhQmLWm3IDO7JKtZ1g/1P xcgYVdEWRY8DQjwl2wSOIxKXD5TTh5A+HwI7fTnvHXQBLzQWQxrSBzkJBPadgDHh XCNQadkWEkZ+NwrquSnQMvyOlw== -----END CERTIFICATE-----Generated at Thu May 21 10:13:43 2026 by rpki-client