$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: nnrP3PqVC2pMW6MJ+MSKHEwXpaCt5gCCNgARGY18IOU= Subject key identifier: D8:54:B0:A2:04:B9:D3:97:DB:47:16:C5:12:79:5D:D6:3D:3D:FD:CB Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 04D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 04D0 Signing time: Wed 20 May 2026 23:55:26 +0000 Manifest this update: Wed 20 May 2026 23:55:26 +0000 Manifest next update: Wed 27 May 2026 23:55:26 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: D7yAys+heN2UgcIBj2q62x4pqRccxJMKBw5uyiEsVBc=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: n0l/G3zz8221DJQZK1QZg+2i3DJbPsMPV1JZDdgqiFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1240 (0x4d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: May 20 23:55:26 2026 GMT Not After : May 27 23:55:26 2026 GMT Subject: CN=6a0e49ee-3f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ce:e0:6f:2b:e7:d1:ee:76:68:0c:08:8c:94: 6c:a7:e5:1d:06:de:d2:c7:e1:5e:d3:2b:cc:4a:ec: a8:0c:98:08:af:31:58:e4:e3:b1:20:3e:63:a1:21: 53:0e:6e:4f:23:76:63:53:aa:20:eb:87:9f:c4:7e: 64:5c:41:91:78:42:cb:0b:b4:f3:b3:22:d4:bd:b8: e5:bf:7e:c0:38:cf:d5:a7:48:2b:09:32:2f:35:ed: 82:a6:bf:01:84:81:e5:fa:d9:ee:34:ea:b9:12:94: 42:30:9a:2e:06:c8:e5:9d:b3:e3:a6:4d:e6:cd:34: 5e:ed:3a:bb:de:f5:0e:e0:5d:0a:6a:49:02:e7:0a: a2:34:3d:c4:b1:33:de:47:75:90:79:69:16:b7:84: fb:71:f8:96:c2:7d:fe:73:69:ba:e3:5a:c0:af:b4: 63:c3:96:80:46:2c:bb:ec:63:42:0c:49:7b:8e:d8: ae:ce:54:b2:c8:26:5f:58:f0:14:c6:6f:e0:b9:d7: 34:c6:16:4a:f8:98:a1:ef:9b:db:71:0f:71:24:72: 5d:7f:37:32:43:4a:cf:86:c6:f2:d7:fc:eb:a2:ba: 1d:24:17:2b:74:11:24:26:3c:f9:67:1f:e6:ae:9a: c8:c6:80:2f:2f:7b:72:3a:a3:69:a3:e1:b9:24:09: c2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:54:B0:A2:04:B9:D3:97:DB:47:16:C5:12:79:5D:D6:3D:3D:FD:CB X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:1f:0a:b8:7a:e7:85:d7:cb:f0:f8:73:f0:ff:8f:1d:4d:6d: 5b:f9:a9:9b:8f:4d:b5:49:0d:93:3f:0d:74:1c:68:12:15:1c: bc:90:52:9d:2d:7d:e0:36:0b:a1:cf:71:8e:34:31:39:1d:d3: ec:95:e3:60:51:85:d4:12:89:18:74:7c:00:b0:c8:a2:4c:62: 22:29:84:07:8c:d7:64:c7:ee:c9:98:4f:75:93:bb:cc:aa:40: 01:6b:38:96:39:be:f0:fd:de:18:93:27:9a:ab:ea:5a:5c:b1: bb:34:15:79:5d:9b:ff:0f:0b:fb:fe:cb:a0:28:5a:2d:24:8b: ce:93:2f:b2:a5:b8:b1:75:1e:53:38:61:74:3c:c0:24:c8:4f: d6:c5:13:8b:64:4a:bd:0b:5a:e0:4c:e8:f9:14:d7:7f:91:c5: bb:89:73:02:26:17:6a:7e:09:ea:d6:75:3f:4e:57:97:8d:8c: da:6f:77:02:a7:6b:ed:56:da:a1:94:cb:3c:1a:da:4e:58:f8: 27:66:55:52:50:b6:f6:e0:22:58:69:80:f0:8a:ad:a7:2d:28: b2:be:17:b0:b1:c5:75:84:51:ac:8b:a3:8f:d0:12:9b:71:6e: e3:06:1a:48:d5:18:b5:e5:14:01:2b:b1:39:29:fd:0d:7a:bf: 29:fc:6b:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjYwNTIwMjM1NTI2WhcNMjYwNTI3MjM1NTI2WjAYMRYwFAYD VQQDEw02YTBlNDllZS0zZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkM7gbyvn0e52aAwIjJRsp+UdBt7Sx+Fe0yvMSuyoDJgIrzFY5OOxID5joSFT Dm5PI3ZjU6og64efxH5kXEGReELLC7TzsyLUvbjlv37AOM/Vp0grCTIvNe2Cpr8B hIHl+tnuNOq5EpRCMJouBsjlnbPjpk3mzTRe7Tq73vUO4F0KakkC5wqiND3EsTPe R3WQeWkWt4T7cfiWwn3+c2m641rAr7Rjw5aARiy77GNCDEl7jtiuzlSyyCZfWPAU xm/gudc0xhZK+Jih75vbcQ9xJHJdfzcyQ0rPhsby1/zrorodJBcrdBEkJjz5Zx/m rprIxoAvL3tyOqNpo+G5JAnCUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNhUsKIE udOX20cWxRJ5XdY9Pf3LMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUR8KuHrnhdfL8Phz8P+PHU1tW/mpm49NtUkNkz8NdBxoEhUcvJBSnS194DYL oc9xjjQxOR3T7JXjYFGF1BKJGHR8ALDIokxiIimEB4zXZMfuyZhPdZO7zKpAAWs4 ljm+8P3eGJMnmqvqWlyxuzQVeV2b/w8L+/7LoChaLSSLzpMvsqW4sXUeUzhhdDzA JMhP1sUTi2RKvQta4Ezo+RTXf5HFu4lzAiYXan4J6tZ1P05Xl42M2m93Aqdr7Vba oZTLPBraTlj4J2ZVUlC29uAiWGmA8Iqtpy0osr4XsLHFdYRRrIujj9ASm3Fu4wYa SNUYteUUASuxOSn9DXq/Kfxr6Q== -----END CERTIFICATE-----Generated at Thu May 21 09:38:00 2026 by rpki-client