$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: oSMvP5npZMGjsGJXgxXu2R7UeeKvYrxbXe3KETT/z/A= Subject key identifier: 59:1E:6E:38:7A:DC:8E:2A:0E:04:47:F0:66:5E:09:3A:8F:B6:79:A6 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0C08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0BE6 Signing time: Wed 20 May 2026 18:55:43 +0000 Manifest this update: Wed 20 May 2026 18:55:42 +0000 Manifest next update: Wed 27 May 2026 18:55:42 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: qhjc8L0uEJwsWIWovX1N73S0TGduVO6NX3SdJSEUyM0=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: BQCqQWX54EbT8FYoBvjLqnc/rF1pO4lGjEy8BVDZOX0=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: 1gkuDEjoW9bKvN1y3NeSWvvd5mzGWAKNaZO4Fh0ZKKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3080 (0xc08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: May 20 18:55:42 2026 GMT Not After : May 27 18:55:42 2026 GMT Subject: CN=6a0e03af-65d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f3:80:42:58:ea:c2:c4:8e:a9:16:46:02:c5: ac:ae:d1:5a:45:ed:f3:ec:af:41:b0:22:f4:ac:d1: 75:e7:5b:50:18:c5:ff:f4:a5:3d:4d:a2:89:83:c9: 30:16:5a:44:82:4e:7e:5d:dd:e4:53:28:02:6e:18: 5a:39:f7:64:88:f3:24:88:39:89:b7:06:97:da:92: ad:57:80:5e:d5:68:ef:59:1c:6f:98:fd:03:18:e5: 65:ba:44:37:c5:17:09:2b:02:28:1a:13:74:05:52: 54:97:ae:a6:96:43:96:bf:c9:12:82:08:62:e4:a9: 49:50:95:dc:0d:70:d7:38:18:79:4b:b5:2f:d1:be: 59:b7:fc:21:8f:c5:dd:cb:21:46:f4:97:21:67:fe: 58:af:f2:18:67:4f:c5:2c:9e:6a:84:c2:7c:1b:83: 93:30:97:fd:1c:1e:e0:10:62:98:65:da:9d:d0:38: 9e:90:ee:fa:c8:f8:17:a7:d4:1d:38:27:a4:43:73: 87:6f:93:ee:96:86:ab:cf:52:1f:f5:f6:48:15:8b: 25:c3:9a:d4:46:e1:77:b1:4e:17:98:13:3a:80:5d: 8c:ff:70:c9:1b:a4:ec:60:c2:45:40:4f:6f:02:ee: 41:4b:fb:e9:34:8e:71:56:82:79:de:61:19:cf:db: e5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1E:6E:38:7A:DC:8E:2A:0E:04:47:F0:66:5E:09:3A:8F:B6:79:A6 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:2f:13:d6:a6:82:be:29:d1:db:b1:f2:ed:0f:cf:30:a3:a6: 39:af:89:db:ca:0c:88:0b:39:a0:f0:36:9f:8c:41:64:2e:67: 32:92:83:49:23:3d:3d:93:6c:f1:c3:5f:4a:9e:d3:60:f0:5f: 4c:b9:58:5e:5d:b0:3f:04:5f:9a:62:34:df:de:02:b5:54:c3: b7:18:a3:c0:85:91:ca:f9:88:2e:5e:fe:c8:da:59:15:fb:e8: 6f:d1:88:66:88:7a:43:cc:5d:f1:25:2e:b3:03:37:2e:fa:a6: d7:22:cc:f3:77:49:2c:f6:14:de:c1:36:5c:8e:9e:b6:13:30: 3a:3a:71:6a:00:a6:c2:66:d0:53:0a:c4:74:ab:4d:b8:9c:61: 24:2d:64:43:2e:94:c1:15:76:d0:e2:0b:37:09:3a:0e:88:0c: ad:9f:68:7f:4c:ea:24:f8:91:f2:ad:37:2b:cc:9b:b9:f8:39: c0:e9:5c:ca:70:bf:3d:18:3b:8c:12:d0:22:46:ea:7c:d4:66: 86:f2:65:b3:99:90:8a:85:0f:07:ce:b0:ab:22:66:91:ca:85: e5:52:17:93:9f:bf:01:3c:8b:0e:4d:d9:7a:65:c6:2f:8e:c9: 16:69:d1:4d:83:cd:28:55:7a:e3:dc:27:dd:ac:6c:7e:f6:e9: 14:2e:b2:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjYwNTIwMTg1NTQyWhcNMjYwNTI3MTg1NTQyWjAYMRYwFAYD VQQDEw02YTBlMDNhZi02NWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3POAQljqwsSOqRZGAsWsrtFaRe3z7K9BsCL0rNF151tQGMX/9KU9TaKJg8kw FlpEgk5+Xd3kUygCbhhaOfdkiPMkiDmJtwaX2pKtV4Be1WjvWRxvmP0DGOVlukQ3 xRcJKwIoGhN0BVJUl66mlkOWv8kSgghi5KlJUJXcDXDXOBh5S7Uv0b5Zt/whj8Xd yyFG9JchZ/5Yr/IYZ0/FLJ5qhMJ8G4OTMJf9HB7gEGKYZdqd0DiekO76yPgXp9Qd OCekQ3OHb5Puloarz1If9fZIFYslw5rURuF3sU4XmBM6gF2M/3DJG6TsYMJFQE9v Au5BS/vpNI5xVoJ53mEZz9vlLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFkebjh6 3I4qDgRH8GZeCTqPtnmmMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKC8T1qaCvinR27Hy7Q/PMKOmOa+J28oMiAs5oPA2n4xBZC5nMpKDSSM9PZNs 8cNfSp7TYPBfTLlYXl2wPwRfmmI0394CtVTDtxijwIWRyvmILl7+yNpZFfvob9GI Zoh6Q8xd8SUuswM3Lvqm1yLM83dJLPYU3sE2XI6ethMwOjpxagCmwmbQUwrEdKtN uJxhJC1kQy6UwRV20OILNwk6DogMrZ9of0zqJPiR8q03K8ybufg5wOlcynC/PRg7 jBLQIkbqfNRmhvJls5mQioUPB86wqyJmkcqF5VIXk5+/ATyLDk3ZemXGL47JFmnR TYPNKFV649wn3axsfvbpFC6yDg== -----END CERTIFICATE-----Generated at Thu May 21 10:58:50 2026 by rpki-client