$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: GkfCdW+YBy8DO3OdqQheSKKN1F3OPssZPs4j8jUWgao= Subject key identifier: 8A:D8:B4:64:2E:C3:2E:2A:6F:84:CA:84:2D:D9:29:72:1F:9F:54:38 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0C47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0C3A Signing time: Wed 20 May 2026 18:46:36 +0000 Manifest this update: Wed 20 May 2026 18:46:36 +0000 Manifest next update: Wed 27 May 2026 18:46:36 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: ZtKof18xP2SYU7KvyalFOQKEUuN/c0fOCM6Vy1PhUR4=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: EyRtY8sGXhVLDI0pwCgdo02VTIkeCLp4JlBiXWPGscw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3143 (0xc47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E, serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: May 20 18:46:36 2026 GMT Not After : May 27 18:46:36 2026 GMT Subject: CN=6a0e018c-a901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:07:0e:0c:5a:04:3c:90:d5:ab:8b:7a:0e:b6: fb:6a:87:11:ae:39:17:8e:96:a1:66:7a:d9:c5:e0: 17:c2:83:11:73:36:da:e5:0d:d0:1c:9c:2c:bc:28: 03:c6:d2:81:61:a6:b5:c8:df:b7:49:0a:9c:f5:5f: 58:1c:ba:5d:6b:16:60:56:59:15:df:e2:21:3d:97: 8c:e2:a0:d9:b1:f9:6c:29:0a:67:5e:ee:a2:50:1b: 20:f2:98:53:a9:a1:92:84:0b:ed:89:06:c0:65:16: 58:58:1e:16:1c:6c:42:b2:e2:de:ed:12:0c:d4:6c: f9:b5:c7:0d:89:94:94:e6:33:66:5b:07:16:a0:f7: db:6e:15:a1:7c:8c:22:09:68:9d:a1:ec:f0:2e:1c: 51:dc:33:d1:b1:98:2c:fa:8b:94:b4:e3:32:9c:9f: b3:17:e8:e2:de:15:fe:dc:f8:39:fa:e2:fa:4a:6f: 64:2b:3a:9b:f4:72:e7:c9:83:25:64:8b:d5:e8:f2: 5d:2b:2a:8e:c6:10:48:59:06:14:26:98:05:c6:05: fa:33:4c:70:7d:78:90:9a:42:e3:63:c9:9a:e9:53: 3b:b9:77:fe:36:ec:75:7b:9d:54:af:00:3c:79:01: fd:6f:1d:88:d7:1c:57:9d:11:ac:51:f6:1f:42:07: 7c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D8:B4:64:2E:C3:2E:2A:6F:84:CA:84:2D:D9:29:72:1F:9F:54:38 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:dc:bc:53:79:48:1b:7f:73:09:50:11:c2:25:bf:36:5c:ec: 4b:fe:c3:99:26:2b:2a:6d:bd:bb:9a:18:aa:d3:3d:67:78:98: 0c:f3:d4:9f:a5:63:b1:54:d2:96:28:5c:d2:94:57:6c:22:bb: b6:30:47:9f:79:47:4e:04:fe:15:7d:78:8d:1e:2c:d6:c6:ed: 1d:2a:31:74:8d:4a:09:79:a9:85:00:28:d1:63:c5:07:ce:33: 3d:ec:4d:fc:d0:94:5a:6c:27:43:87:35:e6:59:a4:43:14:b1: 13:eb:dd:c8:ff:8e:43:ba:65:e0:d3:96:dc:31:bf:d6:86:1a: 5d:eb:b2:2a:a4:91:7d:7f:b3:08:71:2f:b3:ad:f6:af:d9:a6: 9b:37:60:51:ef:48:56:5e:23:b4:8c:0f:ee:b4:fb:6c:f5:9b: 8a:f7:32:82:b2:c0:c1:91:7d:f5:e6:71:d2:40:83:4a:e3:df: b9:16:dc:cb:c4:cf:d4:e2:8f:11:17:00:e9:8c:e6:a4:cc:e4: ff:cb:9d:2c:74:aa:e7:53:05:ae:3a:b2:fd:86:52:9c:36:21: ac:75:cd:40:ca:9b:f8:d2:05:db:35:1a:96:f6:cf:79:4f:ab: a6:a8:02:2a:5a:49:5d:88:02:c7:7c:f4:2a:22:0a:75:91:db: b7:ce:2a:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjYwNTIwMTg0NjM2WhcNMjYwNTI3MTg0NjM2WjAYMRYwFAYD VQQDEw02YTBlMDE4Yy1hOTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgcODFoEPJDVq4t6Drb7aocRrjkXjpahZnrZxeAXwoMRczba5Q3QHJwsvCgD xtKBYaa1yN+3SQqc9V9YHLpdaxZgVlkV3+IhPZeM4qDZsflsKQpnXu6iUBsg8phT qaGShAvtiQbAZRZYWB4WHGxCsuLe7RIM1Gz5tccNiZSU5jNmWwcWoPfbbhWhfIwi CWidoezwLhxR3DPRsZgs+ouUtOMynJ+zF+ji3hX+3Pg5+uL6Sm9kKzqb9HLnyYMl ZIvV6PJdKyqOxhBIWQYUJpgFxgX6M0xwfXiQmkLjY8ma6VM7uXf+Nux1e51UrwA8 eQH9bx2I1xxXnRGsUfYfQgd8dQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIrYtGQu wy4qb4TKhC3ZKXIfn1Q4MB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAody8U3lIG39zCVARwiW/NlzsS/7DmSYrKm29u5oYqtM9Z3iYDPPUn6VjsVTS lihc0pRXbCK7tjBHn3lHTgT+FX14jR4s1sbtHSoxdI1KCXmphQAo0WPFB84zPexN /NCUWmwnQ4c15lmkQxSxE+vdyP+OQ7pl4NOW3DG/1oYaXeuyKqSRfX+zCHEvs632 r9mmmzdgUe9IVl4jtIwP7rT7bPWbivcygrLAwZF99eZx0kCDSuPfuRbcy8TP1OKP ERcA6YzmpMzk/8udLHSq51MFrjqy/YZSnDYhrHXNQMqb+NIF2zUalvbPeU+rpqgC KlpJXYgCx3z0KiIKdZHbt84qAw== -----END CERTIFICATE-----Generated at Thu May 21 11:15:33 2026 by rpki-client