$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: Mbtam2qAvLfeLIeOUZrPSs5catX667zjN3Ql/VM0PXA= Subject key identifier: E6:1B:CB:FE:0C:54:55:F5:CC:FE:4A:E4:F4:B1:A0:7F:6B:41:AD:83 Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0D11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0D05 Signing time: Wed 20 May 2026 18:14:05 +0000 Manifest this update: Wed 20 May 2026 18:14:04 +0000 Manifest next update: Wed 27 May 2026 18:14:04 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: aDc6wOGEDD0uAv6LcvaB6Sfyju2RE7RyA2+uG3xQg4g=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: lt2U8Cu18VjD9LLrlZLJxuz3gscrRVmnZ1LYN6DAgls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3345 (0xd11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50, serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: May 20 18:14:04 2026 GMT Not After : May 27 18:14:04 2026 GMT Subject: CN=6a0df9ec-c818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:92:d1:92:6d:90:46:21:93:b7:3f:98:5b: 22:0f:d4:a2:df:c7:d5:83:7b:ef:11:24:ac:e3:0f: d1:12:22:e4:7f:68:2a:40:ae:fa:bc:3c:29:06:6b: 77:62:fa:9c:ce:f8:a7:00:29:6e:d1:97:88:e3:5f: ff:25:3e:52:15:4c:e2:aa:2c:75:20:f9:7c:51:29: 08:84:ae:dd:72:5e:67:14:9b:38:a0:60:77:86:34: bd:6c:a1:d1:60:a4:08:8a:89:32:fe:55:67:f3:3d: cc:57:8c:de:5a:99:f1:c8:c4:70:33:0a:fa:6a:1a: 51:15:fd:05:d3:9c:b2:df:b2:06:d6:c6:09:a9:e3: 05:71:fe:95:98:25:1f:92:b3:a3:85:8e:b7:1c:1b: 91:fb:8b:a9:f3:a8:08:4a:7a:e3:24:1d:76:d2:69: 9d:b8:99:d3:eb:96:b8:8b:17:d8:32:5c:30:ec:78: fd:24:91:22:35:4d:77:1a:1d:f0:bd:62:9e:c4:2c: cd:0a:00:5e:7f:e8:d6:c4:3f:85:00:06:73:f6:30: e7:49:0c:a3:53:68:bd:4e:12:b5:a6:0d:b5:54:f1: 0a:01:b3:cf:37:b6:63:e6:cd:8a:ba:dc:77:01:03: ac:9f:52:d9:28:c3:6b:b0:80:2e:c9:9f:39:8c:f5: 5d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1B:CB:FE:0C:54:55:F5:CC:FE:4A:E4:F4:B1:A0:7F:6B:41:AD:83 X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6a:27:fc:a5:10:34:1a:55:8c:c7:9f:d5:5e:3e:73:41:c9: 77:a4:9b:47:d1:17:9d:a4:a0:d8:e5:7d:5f:fe:95:60:00:d3: 49:27:12:53:47:33:41:64:7b:30:c1:8a:53:67:c2:a3:3e:9c: 2b:a2:3f:1a:dc:89:44:b0:f4:a8:71:df:8d:e5:1a:3a:ca:34: 35:a2:ea:73:96:46:24:85:6c:4b:ad:0a:78:c8:0f:56:6f:e1: 28:71:01:b3:b9:db:2f:33:98:f5:cf:12:3d:b4:05:50:ac:0e: 54:7f:c0:54:fe:69:40:46:f6:8c:0b:9e:ba:12:af:6d:e8:0e: 09:74:bd:bd:b6:21:31:c2:71:79:47:b8:31:51:d0:66:ae:3b: 5c:7a:2d:fc:f2:56:cb:9c:90:69:be:df:94:de:7e:32:88:b2: 71:75:eb:45:59:7d:d0:27:55:e5:d7:04:c3:43:41:df:30:23: bc:fe:4e:8c:84:14:b5:b1:b1:8f:ad:8e:9a:79:63:6c:96:be: 34:82:75:aa:a9:36:2c:53:c7:90:c8:8f:aa:57:df:0d:19:c3: 28:a2:da:9c:23:f5:1d:47:0b:c6:aa:b1:bd:e0:db:b0:43:4a: e1:21:28:d8:f8:e9:4a:af:05:80:c1:99:ed:54:5b:d7:49:13: 61:01:75:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjYwNTIwMTgxNDA0WhcNMjYwNTI3MTgxNDA0WjAYMRYwFAYD VQQDEw02YTBkZjllYy1jODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrSS0ZJtkEYhk7c/mFsiD9Si38fVg3vvESSs4w/REiLkf2gqQK76vDwpBmt3 YvqczvinAClu0ZeI41//JT5SFUziqix1IPl8USkIhK7dcl5nFJs4oGB3hjS9bKHR YKQIioky/lVn8z3MV4zeWpnxyMRwMwr6ahpRFf0F05yy37IG1sYJqeMFcf6VmCUf krOjhY63HBuR+4up86gISnrjJB120mmduJnT65a4ixfYMlww7Hj9JJEiNU13Gh3w vWKexCzNCgBef+jWxD+FAAZz9jDnSQyjU2i9ThK1pg21VPEKAbPPN7Zj5s2Kutx3 AQOsn1LZKMNrsIAuyZ85jPVd8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOYby/4M VFX1zP5K5PSxoH9rQa2DMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiGon/KUQNBpVjMef1V4+c0HJd6SbR9EXnaSg2OV9X/6VYADTSScSU0czQWR7 MMGKU2fCoz6cK6I/GtyJRLD0qHHfjeUaOso0NaLqc5ZGJIVsS60KeMgPVm/hKHEB s7nbLzOY9c8SPbQFUKwOVH/AVP5pQEb2jAueuhKvbegOCXS9vbYhMcJxeUe4MVHQ Zq47XHot/PJWy5yQab7flN5+MoiycXXrRVl90CdV5dcEw0NB3zAjvP5OjIQUtbGx j62OmnljbJa+NIJ1qqk2LFPHkMiPqlffDRnDKKLanCP1HUcLxqqxveDbsENK4SEo 2PjpSq8FgMGZ7VRb10kTYQF1pg== -----END CERTIFICATE-----Generated at Thu May 21 10:27:42 2026 by rpki-client