$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: /kKNjfWbhjxefaZ0Vspf+3k7KuNfI2yEUGFgIHDGbvE= Subject key identifier: 0A:70:0F:59:6D:01:F3:90:8A:96:AC:5A:C2:14:EC:EA:C7:DA:8D:83 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 033E Signing time: Thu 21 May 2026 01:08:34 +0000 Manifest this update: Thu 21 May 2026 01:08:33 +0000 Manifest next update: Thu 28 May 2026 01:08:33 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: 1m3746BhVPaP9k6iEYRzM+UEMjc8kmrgzuGzdN1kBvg=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: O3Ls+9YBYFMKkyDDzAoAnYOjitWoJ58mnyLKpWOVBLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: May 21 01:08:33 2026 GMT Not After : May 28 01:08:33 2026 GMT Subject: CN=6a0e5b12-1c2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fd:99:14:34:4f:16:f6:53:98:57:6d:ee:5b: d1:90:fc:78:f5:30:a3:ad:a1:81:ab:6e:0b:ef:2d: 5d:6b:af:6d:2f:d9:92:8c:a7:f3:72:cd:40:15:65: de:01:77:01:b0:26:dc:68:68:d6:8a:b0:7f:4b:c6: 54:43:e1:b4:75:27:bf:3d:76:fc:29:4c:5d:fd:04: 73:a6:17:1c:23:6e:b5:a6:d0:dc:89:ed:27:4f:6d: 0b:aa:ca:d3:81:17:a5:c0:14:98:79:33:60:75:23: 8b:91:06:cf:e4:9c:c5:a2:9f:dd:b7:27:23:95:32: a9:29:54:dc:0f:cf:af:71:38:27:5b:5c:c2:00:18: c9:d0:43:d1:6d:1b:3b:af:11:2b:00:65:87:1e:ca: b2:d8:3f:49:79:6b:0d:33:78:15:18:9e:fd:ca:ff: f8:17:d6:4c:65:a8:54:66:c6:75:c8:dd:32:28:4f: 9f:3d:b4:2d:14:77:18:97:81:fa:a0:d8:d6:f5:34: ee:ca:7b:81:5b:c0:71:b3:ed:db:a5:91:5f:23:d4: 4e:ea:23:d3:15:6e:57:61:38:8f:c4:cb:8f:5c:d5: 64:70:f8:42:1a:70:f6:af:9e:af:ad:c3:ec:88:63: 98:54:eb:10:b3:fc:ac:d5:87:29:4f:d3:46:82:84: e4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:70:0F:59:6D:01:F3:90:8A:96:AC:5A:C2:14:EC:EA:C7:DA:8D:83 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:79:b5:06:73:ec:b5:22:a0:ec:5b:4f:13:bd:27:7f:89:5a: 7d:1d:3a:14:de:eb:7e:cd:22:fa:e0:b3:ff:ab:a1:d9:e6:3b: 63:1b:45:c0:23:49:6e:42:49:3f:68:74:30:0e:a0:69:10:dd: d6:e1:35:bd:35:0d:b3:55:24:31:cc:c5:8c:e1:7e:6b:df:fd: d3:28:81:1c:6a:73:8c:e3:28:90:4d:8d:0c:96:e8:e6:c0:cf: 9e:d3:4a:36:8e:2b:28:bb:b6:87:67:b3:75:0f:51:da:67:6b: 59:40:1c:4a:d9:9d:57:48:47:b3:0b:18:ce:ed:fd:56:d5:5e: f9:6a:7a:54:aa:ce:d3:04:ec:a8:f6:79:7f:0e:d4:48:e8:80: be:58:dd:59:22:6f:fb:8a:0a:db:51:68:f6:93:e4:9d:4f:d6: ca:02:f9:e7:7a:c4:ab:14:a5:82:28:ec:e9:b9:9f:db:c3:ff: 1c:f7:70:ca:17:f8:93:36:b5:56:89:0b:fa:3a:89:f0:a0:8c: 82:1d:d9:fe:b1:13:d5:e9:a3:28:53:64:27:e3:a3:69:93:38: 1b:11:50:00:3f:30:3c:d1:7a:51:6e:ee:4d:81:2e:26:ce:0c: fb:b9:c1:a7:af:e5:f9:33:35:10:e5:83:2f:34:52:18:2c:7b: e6:62:d0:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjYwNTIxMDEwODMzWhcNMjYwNTI4MDEwODMzWjAYMRYwFAYD VQQDEw02YTBlNWIxMi0xYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsP2ZFDRPFvZTmFdt7lvRkPx49TCjraGBq24L7y1da69tL9mSjKfzcs1AFWXe AXcBsCbcaGjWirB/S8ZUQ+G0dSe/PXb8KUxd/QRzphccI261ptDcie0nT20LqsrT gRelwBSYeTNgdSOLkQbP5JzFop/dtycjlTKpKVTcD8+vcTgnW1zCABjJ0EPRbRs7 rxErAGWHHsqy2D9JeWsNM3gVGJ79yv/4F9ZMZahUZsZ1yN0yKE+fPbQtFHcYl4H6 oNjW9TTuynuBW8Bxs+3bpZFfI9RO6iPTFW5XYTiPxMuPXNVkcPhCGnD2r56vrcPs iGOYVOsQs/ys1YcpT9NGgoTkMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFApwD1lt AfOQipasWsIU7OrH2o2DMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFnm1BnPstSKg7FtPE70nf4lafR06FN7rfs0i+uCz/6uh2eY7YxtFwCNJbkJJ P2h0MA6gaRDd1uE1vTUNs1UkMczFjOF+a9/90yiBHGpzjOMokE2NDJbo5sDPntNK No4rKLu2h2ezdQ9R2mdrWUAcStmdV0hHswsYzu39VtVe+Wp6VKrO0wTsqPZ5fw7U SOiAvljdWSJv+4oK21Fo9pPknU/WygL553rEqxSlgijs6bmf28P/HPdwyhf4kza1 VokL+jqJ8KCMgh3Z/rET1emjKFNkJ+OjaZM4GxFQAD8wPNF6UW7uTYEuJs4M+7nB p6/l+TM1EOWDLzRSGCx75mLQow== -----END CERTIFICATE-----Generated at Thu May 21 10:15:38 2026 by rpki-client