$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: 2dm3LNENx4DoKkX8V2g9TyvByGJVZNe73dlKWmth+xQ= Subject key identifier: 1A:AC:88:FB:8E:B6:D8:CF:19:30:E8:AC:19:B8:1F:2D:B0:6D:BE:94 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2C4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2C26 Signing time: Wed 20 May 2026 15:32:16 +0000 Manifest this update: Wed 20 May 2026 15:32:16 +0000 Manifest next update: Wed 27 May 2026 15:32:16 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: VlKzXHmQ/t87rZ8U1kj0vS5gVfIkg7XJpFWHCm4GyDM=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: HzrAoaY9JYPA2q5sXzU/LWx/s6FAhl2YIVATDmW8pSM=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: iD/ZZuFi7/RhaL5/ToA8PIzL2/6qCFz6N1JbxCrgnXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 15:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11342 (0x2c4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: May 20 15:32:16 2026 GMT Not After : May 27 15:32:16 2026 GMT Subject: CN=6a0dd400-0e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4e:a3:ac:22:cb:9b:2c:68:ff:65:09:ef:b6: aa:98:57:1c:2c:68:00:ed:44:1c:30:19:ec:10:9b: 25:1d:56:d9:6d:be:5e:83:f7:a9:eb:96:82:42:77: bf:fc:e6:3b:6f:69:07:58:74:4f:0d:6b:fc:7e:b6: a6:7b:02:f8:f0:fa:7b:c5:28:a1:5a:52:ab:0c:3f: 88:6f:9a:47:36:54:9b:46:a6:24:69:1d:d6:43:ea: a2:c3:7c:05:b6:2a:7f:bc:74:b9:e7:40:97:d8:c1: 59:79:b4:01:3f:c5:f8:3e:fa:09:9f:69:a6:26:f2: 19:6d:66:2f:99:bc:54:2d:79:11:0f:8c:f3:50:24: 20:96:84:8e:e6:46:ff:6b:b5:0c:1d:14:f2:d2:c9: a7:6a:15:f3:83:b9:10:9d:8d:c1:3c:54:12:71:c1: 24:ce:ec:0e:ce:b3:f2:1d:db:8b:67:ff:82:4b:ac: e6:36:ba:45:ca:0b:8a:4a:a6:4f:6f:1f:ab:e8:46: ba:0a:df:e9:87:8e:57:26:28:6e:88:fb:1b:a8:af: 17:0c:18:60:bf:7b:3a:aa:ab:e8:2b:e5:ec:52:b5: 9a:c9:1b:de:8b:f2:53:e7:1e:96:83:89:0c:2d:b5: 2c:0b:22:0d:2b:9d:22:6d:50:36:5a:96:26:c9:8d: fb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AC:88:FB:8E:B6:D8:CF:19:30:E8:AC:19:B8:1F:2D:B0:6D:BE:94 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:b3:86:3c:61:b0:a8:11:54:cc:5b:a5:b7:37:41:00:1e:a1: f4:f9:51:d1:98:6c:de:3d:13:10:29:ad:83:23:af:4b:14:ea: 22:59:73:b0:d7:28:73:55:b9:94:91:a7:ef:77:1b:82:9a:ce: 24:19:c6:9b:ce:98:f6:1d:c5:5e:88:e2:4a:f0:82:75:27:51: da:d1:a7:d9:45:64:c1:fe:0b:10:79:27:02:05:88:bb:3f:51: 9e:5e:79:91:f5:de:6a:2e:53:d4:82:bd:b3:85:c8:4c:bb:56: a5:8d:ac:50:e2:6a:6e:91:0c:6c:18:89:96:a3:59:a5:54:b3: 2c:e0:e7:f5:b2:f0:76:51:ec:b4:16:30:78:ad:7d:3d:35:10: 8f:2e:1f:7f:b8:2e:c0:fc:26:79:63:70:70:a9:a4:9d:f5:88: f8:12:44:8c:58:a0:d2:2c:fe:4b:10:5c:3f:8d:49:a6:48:dd: a0:fd:0b:a0:7e:e1:c9:b8:80:3e:e6:4c:cc:8a:94:e1:57:76: f3:00:1f:3f:03:fa:86:12:53:ac:a5:4f:16:10:a3:b3:3e:c4: da:60:21:41:18:d4:55:c2:9c:5d:ee:c9:84:cd:c5:00:40:88: fe:ec:14:6f:d6:0e:21:51:9d:7d:6c:76:38:fb:04:99:4e:17: c1:26:ed:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICLE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjYwNTIwMTUzMjE2WhcNMjYwNTI3MTUzMjE2WjAYMRYwFAYD VQQDEw02YTBkZDQwMC0wZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwE6jrCLLmyxo/2UJ77aqmFccLGgA7UQcMBnsEJslHVbZbb5eg/ep65aCQne/ /OY7b2kHWHRPDWv8framewL48Pp7xSihWlKrDD+Ib5pHNlSbRqYkaR3WQ+qiw3wF tip/vHS550CX2MFZebQBP8X4PvoJn2mmJvIZbWYvmbxULXkRD4zzUCQgloSO5kb/ a7UMHRTy0smnahXzg7kQnY3BPFQSccEkzuwOzrPyHduLZ/+CS6zmNrpFyguKSqZP bx+r6Ea6Ct/ph45XJihuiPsbqK8XDBhgv3s6qqvoK+XsUrWayRvei/JT5x6Wg4kM LbUsCyINK50ibVA2WpYmyY37ywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBqsiPuO ttjPGTDorBm4Hy2wbb6UMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJbOGPGGwqBFUzFultzdBAB6h9PlR0Zhs3j0TECmtgyOvSxTqIllzsNcoc1W5 lJGn73cbgprOJBnGm86Y9h3FXojiSvCCdSdR2tGn2UVkwf4LEHknAgWIuz9Rnl55 kfXeai5T1IK9s4XITLtWpY2sUOJqbpEMbBiJlqNZpVSzLODn9bLwdlHstBYweK19 PTUQjy4ff7guwPwmeWNwcKmknfWI+BJEjFig0iz+SxBcP41JpkjdoP0LoH7hybiA PuZMzIqU4Vd28wAfPwP6hhJTrKVPFhCjsz7E2mAhQRjUVcKcXe7JhM3FAECI/uwU b9YOIVGdfWx2OPsEmU4XwSbtFA== -----END CERTIFICATE-----Generated at Thu May 21 10:20:48 2026 by rpki-client