$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: Y1T/h33E7csk/NwZRUITbJTa4z6AOeli0p3iMcvjTJU= Subject key identifier: 9B:20:26:BF:D7:A5:98:8A:BB:FC:7F:6E:25:66:FC:D2:E1:85:42:B7 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0D23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0D0C Signing time: Wed 20 May 2026 18:15:03 +0000 Manifest this update: Wed 20 May 2026 18:15:02 +0000 Manifest next update: Wed 27 May 2026 18:15:02 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: DOEs1rsAk14ucWvk2MB0i9iRmqzhfc89YcSkIK0AYYk=) 2: 67C9F14233E711F181C0AE9FB8833773.roa (hash: zILE8027ieGIonPU8rgts1kI8TAERWrLFiTqKHa6P0g=) 3: 974869042C2A11F19F1796939D833773.roa (hash: OeaomLN4Q8pcNvH+I1YBnwu7+mzao8SuLeZZtE3M27g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3363 (0xd23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: May 20 18:15:02 2026 GMT Not After : May 27 18:15:02 2026 GMT Subject: CN=6a0dfa27-bee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d4:24:6f:33:c4:79:ae:1b:b3:1e:8e:58:fe: 07:f4:a0:eb:0b:bb:dd:32:bd:2c:7b:8d:0d:56:ba: 7c:1e:7b:58:53:17:97:40:38:db:ec:a6:d7:f6:0b: e2:c0:31:12:e6:9b:0c:0f:ce:cb:71:45:6b:46:40: 9e:c1:9a:20:01:7c:dc:e5:35:a4:4c:06:e9:36:e4: 65:fb:43:d6:ba:d6:29:4f:dd:42:8f:c1:25:f0:da: 47:a1:a7:64:a3:dd:00:21:d8:08:be:a6:07:a8:93: 0b:6d:fe:bb:65:88:2e:db:25:28:9c:f9:b5:e7:54: e4:6d:31:a9:4a:21:fc:6d:15:98:34:1d:b0:62:2a: 04:2a:b1:89:a9:9c:c8:62:b7:d4:9f:ed:a7:0a:9f: d3:8a:28:64:af:de:ee:96:2e:cc:17:f4:e6:a9:5c: 9d:55:cd:56:e1:d6:37:a0:9b:7f:a1:4a:54:1b:b0: 44:8e:7a:c2:b7:0b:99:92:3c:0c:9e:63:59:a1:2e: 27:ab:a6:9a:93:9f:3b:5c:b6:20:8f:68:11:ac:16: 9e:98:1d:d3:e8:7e:a5:7f:54:b1:93:f5:d1:48:84: cf:e0:64:91:69:93:1a:ef:13:cb:f4:2b:7c:b1:b2: ab:76:b2:52:7f:15:db:6a:51:01:a8:e2:8d:fd:07: cf:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:20:26:BF:D7:A5:98:8A:BB:FC:7F:6E:25:66:FC:D2:E1:85:42:B7 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:a0:42:b9:1d:b7:cf:2a:6e:f5:25:ed:ff:f7:c2:90:f7:7a: e1:af:72:f5:ff:06:5c:db:bf:35:44:de:fd:92:78:74:a2:2e: 44:ec:48:f4:f4:05:e7:31:d0:b7:16:a0:b7:1e:46:c2:b0:e3: 97:90:31:6a:4f:a7:b5:9d:3a:bf:77:6d:20:8e:e8:45:64:78: ae:67:19:7a:76:1b:10:0b:c8:05:94:44:5b:87:c4:18:48:9e: e9:7e:55:1c:67:3e:fb:f2:d0:65:0a:4c:99:06:48:b4:d5:0b: 55:6d:ff:d2:89:38:ad:f3:82:57:47:ad:13:55:f9:37:45:ed: dd:17:6b:c2:0d:21:d2:cc:38:98:44:2d:31:48:1b:91:9d:b7: fc:d4:07:28:67:77:df:c4:d9:51:d0:a4:40:3a:fb:a4:b3:f4: 0a:e9:25:43:70:3b:5f:8a:46:79:53:2e:18:27:1b:11:a2:1e: 76:41:e7:e8:a3:f0:93:3e:73:f2:1c:bd:16:00:a3:1f:cf:81: 2e:86:68:fc:57:35:39:35:b7:b7:b5:87:d5:8d:60:b8:36:b4: f7:a9:95:d2:22:cb:29:87:4c:3d:56:eb:60:43:32:9d:7c:44: 23:94:93:e1:25:69:0e:0b:51:35:72:75:c0:27:e6:08:8a:5b: 8b:08:14:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjYwNTIwMTgxNTAyWhcNMjYwNTI3MTgxNTAyWjAYMRYwFAYD VQQDEw02YTBkZmEyNy1iZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdQkbzPEea4bsx6OWP4H9KDrC7vdMr0se40NVrp8HntYUxeXQDjb7KbX9gvi wDES5psMD87LcUVrRkCewZogAXzc5TWkTAbpNuRl+0PWutYpT91Cj8El8NpHoadk o90AIdgIvqYHqJMLbf67ZYgu2yUonPm151TkbTGpSiH8bRWYNB2wYioEKrGJqZzI YrfUn+2nCp/Tiihkr97uli7MF/TmqVydVc1W4dY3oJt/oUpUG7BEjnrCtwuZkjwM nmNZoS4nq6aak587XLYgj2gRrBaemB3T6H6lf1Sxk/XRSITP4GSRaZMa7xPL9Ct8 sbKrdrJSfxXbalEBqOKN/QfP8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJsgJr/X pZiKu/x/biVm/NLhhUK3MB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiqBCuR23zypu9SXt//fCkPd64a9y9f8GXNu/NUTe/ZJ4dKIuROxI9PQF5zHQ txagtx5GwrDjl5Axak+ntZ06v3dtII7oRWR4rmcZenYbEAvIBZREW4fEGEie6X5V HGc++/LQZQpMmQZItNULVW3/0ok4rfOCV0etE1X5N0Xt3Rdrwg0h0sw4mEQtMUgb kZ23/NQHKGd338TZUdCkQDr7pLP0CuklQ3A7X4pGeVMuGCcbEaIedkHn6KPwkz5z 8hy9FgCjH8+BLoZo/Fc1OTW3t7WH1Y1guDa096mV0iLLKYdMPVbrYEMynXxEI5ST 4SVpDgtRNXJ1wCfmCIpbiwgU7A== -----END CERTIFICATE-----Generated at Thu May 21 11:03:36 2026 by rpki-client