$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: gt14sGzo3T4FDMy9aFhAc/I0UkvL8ypbZtSIQp8uTYU= Subject key identifier: 57:F3:8C:44:36:9F:C1:4D:3F:73:DC:FB:7F:62:CC:1F:AA:F4:32:DE Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 09DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 213F Signing time: Wed 20 May 2026 16:35:12 +0000 Manifest this update: Wed 20 May 2026 16:35:12 +0000 Manifest next update: Wed 27 May 2026 16:35:12 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: q16BqCG1RWin3/ki0cUXgq1L1gnDjYOoLWG3zMkhSFU=) 2: 5FBC810E2C6C11F1AFD97E4FB3833773.roa (hash: g2RLVtOivjuUFJpHbhY01dBDwhC9Sd+LiRmcxISqRKU=) 3: EDA7924C4C6A11F18E27EE0BC2833773.roa (hash: 1Bx4zBsmcdQadh2Lc0q70WKfY8U9Q8aKMXPEm63RlMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2522 (0x9da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25, serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: May 20 16:35:12 2026 GMT Not After : May 27 16:35:12 2026 GMT Subject: CN=6a0de2c0-42a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ad:32:bd:e8:01:d9:94:b5:27:a0:28:d2:30: 9f:d2:fc:7a:ed:5c:d5:7a:2d:6f:65:5a:d1:92:60: 7b:9e:b8:25:07:8a:77:79:d2:22:0c:2d:c1:c4:b8: 28:69:1c:09:f5:42:0f:ea:b4:99:12:e7:d2:1c:4f: ad:65:d1:1a:32:54:94:fc:67:9b:69:6d:58:4f:02: 26:1c:01:04:3c:c2:cb:eb:0a:7d:45:12:59:cb:a5: 7e:20:ce:55:15:83:31:28:1b:37:ba:a4:ba:00:07: 5b:be:7d:b5:53:87:18:63:c6:b6:49:a9:a2:8b:8b: 4b:7b:68:98:99:89:9b:76:90:8c:ab:c7:ed:4b:d1: 27:a2:35:1b:06:f3:48:14:5c:e3:e8:b7:27:5d:23: 71:e1:cf:63:fb:2e:4a:40:34:0d:4e:99:86:50:df: 43:c8:80:87:bc:d8:02:f7:c7:5f:79:ab:db:30:bb: 16:4b:69:15:3e:7d:f4:fd:fb:60:b2:72:1f:fd:f7: f2:1c:ac:2e:b8:21:32:99:a2:40:c1:cb:45:ca:71: 72:cc:bc:4a:c7:60:af:de:58:88:fc:83:e8:98:d2: 06:f0:d4:1b:7e:2f:7c:60:da:5f:1c:29:71:66:ee: 9a:2d:ce:ab:b9:52:b2:8b:d4:30:50:a4:a4:20:20: 03:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F3:8C:44:36:9F:C1:4D:3F:73:DC:FB:7F:62:CC:1F:AA:F4:32:DE X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:33:c7:d5:1d:ad:0a:81:61:e1:b9:7a:7e:31:13:95:b9:e2: 4d:fe:41:ec:1a:5b:88:47:04:7c:da:e0:c4:93:e0:17:a4:a1: 25:bb:41:23:46:65:e7:50:e2:7e:ba:c1:e3:d6:d0:81:35:4e: 36:f0:25:5c:25:89:e7:eb:04:91:fb:9a:e7:93:e8:1a:67:f0: 34:16:ac:42:ac:8d:6f:eb:bd:b1:f0:85:24:ec:08:95:ff:43: 28:c9:50:55:7b:f2:3e:d1:62:75:c9:2a:af:d6:7e:c6:a4:84: 9a:97:8f:b0:13:1f:dc:5b:a8:ad:9e:d7:7d:4d:af:4b:73:b0: fa:36:10:35:bc:26:44:b2:b5:17:31:99:f4:07:30:a1:14:05: 84:68:e4:3d:18:6d:bc:c0:8b:aa:21:7b:db:31:80:16:ae:6a: 4b:3e:b3:4a:06:a3:14:d1:53:f9:c0:b3:73:aa:74:5e:00:ec: 60:94:55:1e:7e:12:54:d9:df:a9:23:38:87:d9:e0:28:f5:b8: e8:e3:87:53:26:6e:32:67:a0:59:07:53:0d:e3:8b:89:63:12: 80:5f:53:72:25:dd:d5:86:17:b2:34:62:c7:b9:bf:20:e3:78: 92:cb:95:51:f2:87:4f:f1:ce:33:fc:d5:49:92:18:e6:13:fd: 1c:87:a4:bd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjYwNTIwMTYzNTEyWhcNMjYwNTI3MTYzNTEyWjAYMRYwFAYD VQQDEw02YTBkZTJjMC00MmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K0yvegB2ZS1J6Ao0jCf0vx67VzVei1vZVrRkmB7nrglB4p3edIiDC3BxLgo aRwJ9UIP6rSZEufSHE+tZdEaMlSU/GebaW1YTwImHAEEPMLL6wp9RRJZy6V+IM5V FYMxKBs3uqS6AAdbvn21U4cYY8a2Samii4tLe2iYmYmbdpCMq8ftS9EnojUbBvNI FFzj6LcnXSNx4c9j+y5KQDQNTpmGUN9DyICHvNgC98dfeavbMLsWS2kVPn30/ftg snIf/ffyHKwuuCEymaJAwctFynFyzLxKx2Cv3liI/IPomNIG8NQbfi98YNpfHClx Zu6aLc6ruVKyi9QwUKSkICADHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFfzjEQ2 n8FNP3Pc+39izB+q9DLeMB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsTPH1R2tCoFh4bl6fjETlbniTf5B7BpbiEcEfNrgxJPgF6ShJbtBI0Zl51Di frrB49bQgTVONvAlXCWJ5+sEkfua55PoGmfwNBasQqyNb+u9sfCFJOwIlf9DKMlQ VXvyPtFidckqr9Z+xqSEmpePsBMf3FuorZ7XfU2vS3Ow+jYQNbwmRLK1FzGZ9Acw oRQFhGjkPRhtvMCLqiF72zGAFq5qSz6zSgajFNFT+cCzc6p0XgDsYJRVHn4SVNnf qSM4h9ngKPW46OOHUyZuMmegWQdTDeOLiWMSgF9TciXd1YYXsjRix7m/ION4ksuV UfKHT/HOM/zVSZIY5hP9HIekvQ== -----END CERTIFICATE-----Generated at Thu May 21 11:03:46 2026 by rpki-client