$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: JaCN5JGPtc067Wy5KfFe0yptxfe+mE6o9fw3124Sf/4= Subject key identifier: E0:F7:07:C0:35:41:7A:F5:9A:75:4E:7D:C9:93:23:93:82:92:4C:F6 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 05E2 Signing time: Sun 26 Apr 2026 22:56:34 +0000 Manifest this update: Sun 26 Apr 2026 22:56:34 +0000 Manifest next update: Sun 03 May 2026 22:56:34 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: e8WrIgd1KQKb9r0rU2PF6ZWOi2VjKWtjP3IJ5NaSCVM=) 2: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: +8k4rfDonzqcIXzrPnc9G+NWKEIwjetXPPpI12xDWO0=) 3: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: NXzX7R7NLEazsVeUoaLWbp54rjvi9QQud2skYKW4OZQ=) 4: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: O5HnlLR1hWWyTNRUt4LdbaUFp1yGwksal5ksV0pwNV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 22:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Apr 26 22:56:34 2026 GMT Not After : May 3 22:56:34 2026 GMT Subject: CN=69ee9822-39d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:34:30:b8:59:52:de:84:c5:71:96:0c:26:50: c0:cc:a9:66:7e:f8:07:f4:da:41:da:fc:85:50:2a: 22:03:34:75:6a:88:3f:7f:b4:85:09:42:fc:f6:9b: 1b:7e:83:7a:be:30:5f:c3:03:a1:64:1d:98:e4:7e: d7:ec:51:ea:ce:4e:8b:ab:4c:b4:09:7a:92:76:d1: b4:68:db:8a:ff:5b:7d:3b:c1:df:a9:45:c5:ce:0e: 2a:b0:0a:27:0c:18:07:0d:93:e1:7a:a9:f6:57:bd: 36:9b:e0:c1:bc:78:bb:e5:29:a8:b6:a9:fb:1a:23: 66:4f:06:de:4f:df:0e:d1:a2:1a:bb:29:5c:9a:d7: 98:04:26:7e:ab:b3:14:32:7d:3b:d7:1e:e0:73:08: ec:78:74:d8:33:d6:69:0f:d4:28:7f:01:f4:c8:cf: 04:ef:96:e4:be:ee:ff:39:26:71:79:0d:bc:01:a2: db:14:5a:bd:84:ae:95:84:61:40:0d:04:04:50:7b: 10:0a:9e:50:07:74:51:6c:c8:ff:9b:58:b8:52:b3: 0f:93:5a:07:4e:d4:de:50:ce:a8:99:66:8d:26:eb: 80:24:67:ec:9a:bc:34:b1:fe:da:12:b0:37:0a:e3: b9:23:fd:4d:7b:59:99:70:ad:70:cc:90:b4:c9:bb: 52:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F7:07:C0:35:41:7A:F5:9A:75:4E:7D:C9:93:23:93:82:92:4C:F6 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:11:ba:3c:88:df:c9:ad:30:33:26:eb:f2:e1:25:76:68:d6: 0a:3e:ad:f9:f6:f9:18:1e:e6:a7:ed:64:67:cb:41:8d:d3:a4: a6:22:0b:48:21:ea:7e:1c:f7:15:9c:8e:81:22:5c:4c:87:30: 44:52:15:04:9b:1f:7d:b3:d0:6a:b8:86:35:37:25:5d:9a:66: 31:97:ec:20:a8:d0:e4:06:49:59:31:76:a1:a8:25:da:81:62: bc:4e:4d:cc:a3:5a:e2:18:42:05:8b:52:d8:d4:27:01:20:ce: 37:e0:18:f2:42:4a:c0:09:f4:e8:6e:48:f0:4b:a1:ef:ba:a2: 67:51:27:54:aa:5b:c1:19:8e:2e:11:f9:92:5d:90:a2:7b:91: 72:03:0c:0e:54:af:d3:d9:57:11:98:66:29:c5:65:4e:d0:b2: 2e:17:c9:4f:67:59:81:9c:d3:74:8e:bc:f7:f8:5b:e2:dd:e8: b2:25:00:e4:9d:a5:df:a9:22:25:2e:24:fb:aa:b0:be:f9:ad: c9:38:d6:f0:26:70:66:c4:f1:33:67:47:d2:9b:67:4b:4b:e0: 94:42:28:a2:bb:30:40:0c:87:4d:b5:b3:28:d9:bd:7a:fc:ea: b6:4e:db:d6:de:3d:7c:0d:6d:63:5d:5a:82:ad:aa:22:9d:e6: 74:75:45:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjYwNDI2MjI1NjM0WhcNMjYwNTAzMjI1NjM0WjAYMRYwFAYD VQQDEw02OWVlOTgyMi0zOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TQwuFlS3oTFcZYMJlDAzKlmfvgH9NpB2vyFUCoiAzR1aog/f7SFCUL89psb foN6vjBfwwOhZB2Y5H7X7FHqzk6Lq0y0CXqSdtG0aNuK/1t9O8HfqUXFzg4qsAon DBgHDZPheqn2V702m+DBvHi75Smotqn7GiNmTwbeT98O0aIauylcmteYBCZ+q7MU Mn071x7gcwjseHTYM9ZpD9QofwH0yM8E75bkvu7/OSZxeQ28AaLbFFq9hK6VhGFA DQQEUHsQCp5QB3RRbMj/m1i4UrMPk1oHTtTeUM6omWaNJuuAJGfsmrw0sf7aErA3 CuO5I/1Ne1mZcK1wzJC0ybtS1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOD3B8A1 QXr1mnVOfcmTI5OCkkz2MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwxG6PIjfya0wMybr8uEldmjWCj6t+fb5GB7mp+1kZ8tBjdOkpiILSCHqfhz3 FZyOgSJcTIcwRFIVBJsffbPQariGNTclXZpmMZfsIKjQ5AZJWTF2oagl2oFivE5N zKNa4hhCBYtS2NQnASDON+AY8kJKwAn06G5I8Euh77qiZ1EnVKpbwRmOLhH5kl2Q onuRcgMMDlSv09lXEZhmKcVlTtCyLhfJT2dZgZzTdI689/hb4t3osiUA5J2l36ki JS4k+6qwvvmtyTjW8CZwZsTxM2dH0ptnS0vglEIoorswQAyHTbWzKNm9evzqtk7b 1t49fA1tY11agq2qIp3mdHVF/Q== -----END CERTIFICATE-----Generated at Tue Apr 28 13:34:31 2026 by rpki-client