$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: doki6fIUZflOM0UF95RABIFP3pBjeEY+USzYzRAnNQg= Subject key identifier: 1A:0F:62:E1:39:41:92:0E:71:F9:05:94:F5:77:FD:8C:8D:41:E5:BB Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0C39 Signing time: Wed 20 May 2026 18:46:57 +0000 Manifest this update: Wed 20 May 2026 18:46:57 +0000 Manifest next update: Wed 27 May 2026 18:46:57 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: R3y94WNco3c5153y6Cso8/CYW27l55X/9yKoUyyWMdQ=) 2: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: 7N0LlMCapbNJ9KXikjeWXJKbiREpp9frRRVKC1Mylhc=) 3: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: EuY5ohXxwCb20yL/oZ+Bf40RR9HQ+u8RzxEp5n6p+No=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: May 20 18:46:57 2026 GMT Not After : May 27 18:46:57 2026 GMT Subject: CN=6a0e01a1-cbf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f2:02:92:b2:4c:6a:19:8a:de:4a:bf:db:51: 58:fd:d1:0d:9d:98:45:f4:17:a2:44:bf:c1:37:b9: 78:f5:9f:00:d5:51:95:2e:d4:5a:13:30:ea:c3:5a: 5c:62:69:59:2f:a3:5e:a5:94:88:e3:00:2d:f9:1c: 04:bc:44:1c:3b:6b:40:cd:02:18:31:2a:01:08:a6: c6:bd:d0:56:ab:08:bf:29:1c:87:22:4d:ed:e1:fe: 08:70:48:6d:35:f4:2f:b1:3f:5c:85:28:21:91:37: 5c:ac:ab:45:f1:1f:e4:58:2e:1a:e6:53:ad:af:5c: 49:e4:48:a2:a3:74:6f:64:2a:3a:27:e0:a8:10:59: 61:1a:de:4f:77:30:b3:fd:e5:3b:97:3e:74:51:d8: 00:ec:1b:e1:d2:59:61:a5:15:fc:3d:e1:f2:6e:1f: 94:3d:92:05:52:7b:74:6c:2a:3a:82:cb:3b:bf:e0: f5:b6:7f:29:db:c9:21:88:af:e5:4f:5f:e1:86:7d: d9:ae:75:6f:58:2a:9f:de:90:95:38:5f:d9:27:61: 77:25:06:37:4e:89:7c:83:e5:55:b7:cc:22:b7:b3: b7:e6:68:5d:27:ad:e2:55:57:83:f8:f9:17:09:de: 33:ab:ab:ac:7b:b7:45:e7:d0:fc:e6:43:f2:f1:6f: e1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0F:62:E1:39:41:92:0E:71:F9:05:94:F5:77:FD:8C:8D:41:E5:BB X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:44:03:4a:39:ad:3c:4c:4b:21:0d:0b:fd:06:0c:5d:aa:10: 19:c4:6e:4c:28:29:73:79:e6:3e:a9:f1:bc:18:f7:03:35:7e: 33:9e:6c:4f:99:8b:2e:71:f2:6e:da:81:55:cd:25:ae:9d:94: 0e:56:78:20:04:20:cf:25:c5:df:ff:5b:b9:23:ba:05:01:f2: c1:32:93:5e:d7:d1:93:2b:6c:c5:24:27:8e:c3:70:7c:67:62: 61:04:5e:a4:46:36:88:35:ea:e4:51:18:85:37:5f:6f:a9:10: 52:00:6e:7b:2f:8d:a3:05:0e:6f:5c:05:5e:ca:d1:e6:56:bd: ef:ca:b4:ad:99:08:2d:94:55:a5:05:75:e1:d9:aa:ea:59:24: 5c:0a:08:f4:db:51:02:57:77:a4:37:de:3a:cc:fd:4f:7d:c7: 1d:89:da:74:87:0e:3d:25:6e:dc:c0:d3:c6:14:57:49:8b:b7: b8:b6:a4:ad:5a:43:f9:69:6d:8b:10:1a:56:aa:23:dd:37:12: a2:42:cd:89:17:05:66:7b:fa:1e:c7:87:38:32:3a:32:d6:83: dc:bf:3a:4f:f1:70:1d:54:33:28:74:1c:e7:e2:c7:0a:ca:23: b2:6e:43:e4:a5:4e:bf:d1:ee:65:e2:d5:2a:71:be:87:da:df: 4c:10:05:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjYwNTIwMTg0NjU3WhcNMjYwNTI3MTg0NjU3WjAYMRYwFAYD VQQDEw02YTBlMDFhMS1jYmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPICkrJMahmK3kq/21FY/dENnZhF9BeiRL/BN7l49Z8A1VGVLtRaEzDqw1pc YmlZL6NepZSI4wAt+RwEvEQcO2tAzQIYMSoBCKbGvdBWqwi/KRyHIk3t4f4IcEht NfQvsT9chSghkTdcrKtF8R/kWC4a5lOtr1xJ5Eiio3RvZCo6J+CoEFlhGt5PdzCz /eU7lz50UdgA7Bvh0llhpRX8PeHybh+UPZIFUnt0bCo6gss7v+D1tn8p28khiK/l T1/hhn3ZrnVvWCqf3pCVOF/ZJ2F3JQY3Tol8g+VVt8wit7O35mhdJ63iVVeD+PkX Cd4zq6use7dF59D85kPy8W/hNwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBoPYuE5 QZIOcfkFlPV3/YyNQeW7MB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbkQDSjmtPExLIQ0L/QYMXaoQGcRuTCgpc3nmPqnxvBj3AzV+M55sT5mLLnHy btqBVc0lrp2UDlZ4IAQgzyXF3/9buSO6BQHywTKTXtfRkytsxSQnjsNwfGdiYQRe pEY2iDXq5FEYhTdfb6kQUgBuey+NowUOb1wFXsrR5la978q0rZkILZRVpQV14dmq 6lkkXAoI9NtRAld3pDfeOsz9T33HHYnadIcOPSVu3MDTxhRXSYu3uLakrVpD+Wlt ixAaVqoj3TcSokLNiRcFZnv6HseHODI6MtaD3L86T/FwHVQzKHQc5+LHCsojsm5D 5KVOv9HuZeLVKnG+h9rfTBAFNA== -----END CERTIFICATE-----Generated at Thu May 21 11:14:48 2026 by rpki-client