$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft File: TN7H1CHxboUWcqgSOd0Y_IweOVY.mft (raw, json) Hash identifier: LbDasb+1fhtHztlaJ31XnQG7bFn8CMbXyTQU9Vq4Ku4= Subject key identifier: 6D:63:65:5A:39:29:DA:0A:F2:56:7F:56:1B:32:2B:95:0C:23:56:E8 Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 0582 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft Manifest number: 057B Signing time: Wed 20 May 2026 23:20:43 +0000 Manifest this update: Wed 20 May 2026 23:20:42 +0000 Manifest next update: Wed 27 May 2026 23:20:42 +0000 Files and hashes: 1: TN7H1CHxboUWcqgSOd0Y_IweOVY.crl (hash: zXEwDUaGckGK2C30sWMabptEHLIL2rgo4c3/cNbbAxs=) 2: C54BA97E283311ECBE887F3BC4F9AE02.roa (hash: nCKVMdvYXIdspAc77iuSnxMdgz1R5Tl8t85tUkNQu3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1410 (0x582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62, serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: May 20 23:20:42 2026 GMT Not After : May 27 23:20:42 2026 GMT Subject: CN=6a0e41cb-6beb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:65:64:10:d3:c2:a0:0d:00:05:c2:da:1f:b8: e6:4a:2b:24:fc:ba:9a:62:d9:7e:cb:ab:7b:ee:bd: d9:35:64:07:aa:67:72:fd:a7:d9:ba:8b:df:2b:df: 5c:cf:f6:e4:73:65:c4:da:f5:db:f7:25:3a:f0:ac: e4:07:5f:54:ad:30:9c:8a:d4:7e:83:f0:bb:55:0d: 50:cf:b0:b6:de:72:55:95:7f:37:7e:7b:a7:b4:2b: 57:6d:81:b8:cd:86:da:29:c9:2a:37:70:37:d9:d8: 44:05:21:1c:0e:93:94:cc:8b:c0:a2:0e:14:f6:1e: c6:1c:ca:5a:ae:5a:7b:e5:62:01:a3:26:73:b7:5e: 26:78:f1:fd:c9:b3:de:c0:b9:65:c2:ff:38:cb:ae: 20:31:df:a1:ad:17:99:b0:7a:d1:a9:ef:db:98:04: 19:51:7b:27:8c:9d:25:8f:b0:fe:cb:fb:10:97:64: 1c:3e:64:92:61:db:fe:3c:34:e7:e5:ec:e2:20:ea: 2b:6e:d5:3b:dc:e3:ac:35:8b:c9:f2:92:9f:47:d9: 67:e0:e4:d0:11:80:44:6d:d0:46:98:e5:ed:91:ca: 2b:ca:44:24:1f:6a:b6:9f:83:f7:37:de:ca:a0:6f: fa:26:0f:5e:e2:ff:23:95:18:7a:8a:ef:0e:a8:6f: de:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:63:65:5A:39:29:DA:0A:F2:56:7F:56:1B:32:2B:95:0C:23:56:E8 X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:20:61:8e:eb:3a:ad:a9:a5:fb:bf:99:0b:71:f2:ef:45:79: 77:af:76:63:f9:5f:e4:a3:6e:79:98:aa:6f:5a:e5:5c:fd:50: ed:e7:0a:66:4a:2e:81:b6:f1:36:24:18:11:86:29:c3:3b:b7: a6:1d:f1:c8:0c:6a:5c:56:47:73:94:91:98:a8:fa:70:d1:d7: ad:93:89:f7:83:0f:f1:93:4c:fb:3b:57:74:5a:c0:af:f8:4b: 24:54:4f:f4:40:a3:cb:0d:4e:fd:c4:9a:fd:60:f0:53:95:ec: 68:7e:55:b8:9c:94:51:e7:00:96:0d:d0:c9:4b:eb:86:84:84: 7f:28:21:6d:81:62:b4:4f:c9:f3:59:80:0f:42:ca:4a:78:d8: 47:41:fc:6e:7e:8c:a7:e5:7e:71:e6:22:50:41:14:c0:12:71: 7f:c5:17:d4:99:bb:42:66:ed:cf:10:19:ad:bc:a9:d3:fb:37: 55:ba:43:cf:7c:1d:fe:e0:ed:cf:d3:e6:b2:ec:b6:a9:7f:5a: 83:7c:8f:de:a9:ed:b5:94:8d:f2:f4:2a:28:ac:ce:4c:cf:65: a9:a8:8c:51:13:67:ed:7c:b2:05:0e:bb:68:e9:69:4f:4e:3c: ea:cc:4a:f5:9f:e9:2d:0b:ad:6c:18:9c:b4:50:7a:55:5d:0c: a5:35:37:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjYwNTIwMjMyMDQyWhcNMjYwNTI3MjMyMDQyWjAYMRYwFAYD VQQDEw02YTBlNDFjYi02YmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WVkENPCoA0ABcLaH7jmSisk/LqaYtl+y6t77r3ZNWQHqmdy/afZuovfK99c z/bkc2XE2vXb9yU68KzkB19UrTCcitR+g/C7VQ1Qz7C23nJVlX83fnuntCtXbYG4 zYbaKckqN3A32dhEBSEcDpOUzIvAog4U9h7GHMparlp75WIBoyZzt14mePH9ybPe wLllwv84y64gMd+hrReZsHrRqe/bmAQZUXsnjJ0lj7D+y/sQl2QcPmSSYdv+PDTn 5eziIOorbtU73OOsNYvJ8pKfR9ln4OTQEYBEbdBGmOXtkcorykQkH2q2n4P3N97K oG/6Jg9e4v8jlRh6iu8OqG/exQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG1jZVo5 KdoK8lZ/VhsyK5UMI1boMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEE2Mi8xRkE5NkRBMDI4MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJv VVdjcWdTT2QwWV9Jd2VPVlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFiBhjus6raml+7+ZC3Hy70V5d692Y/lf5KNueZiqb1rlXP1Q7ecKZkougbbx NiQYEYYpwzu3ph3xyAxqXFZHc5SRmKj6cNHXrZOJ94MP8ZNM+ztXdFrAr/hLJFRP 9ECjyw1O/cSa/WDwU5XsaH5VuJyUUecAlg3QyUvrhoSEfyghbYFitE/J81mAD0LK SnjYR0H8bn6Mp+V+ceYiUEEUwBJxf8UX1Jm7QmbtzxAZrbyp0/s3VbpDz3wd/uDt z9Pmsuy2qX9ag3yP3qnttZSN8vQqKKzOTM9lqaiMURNn7XyyBQ67aOlpT0486sxK 9Z/pLQutbBictFB6VV0MpTU3KQ== -----END CERTIFICATE-----Generated at Thu May 21 11:15:25 2026 by rpki-client