$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: 1nD8FSM7MTKSkVPKZLhwL+j+NldISRqajxImFUpZCsE= Subject key identifier: 88:9B:E8:1D:60:27:AC:C7:89:CF:04:87:C5:14:97:DC:FF:11:1C:0D Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 20B1 Signing time: Tue 12 May 2026 16:02:39 +0000 Manifest this update: Tue 12 May 2026 16:02:38 +0000 Manifest next update: Tue 19 May 2026 16:02:38 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: iMgqJ9Z+uFb2Fhp5RtF7fE3PrfgQHS11IaKbA4K7N5s=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: twO+avT1bwdOGN+sO1DTxPWxAD5/Gbl/GY9g75HuCDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: May 12 16:02:38 2026 GMT Not After : May 19 16:02:38 2026 GMT Subject: CN=6a034f1f-043c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7e:f4:0e:54:b9:7d:17:cc:c8:7d:3f:e5:ff: 32:a4:c9:40:3e:23:48:48:74:8a:4b:f3:67:70:1b: 4c:59:ca:64:31:3b:5a:21:ed:a1:7f:57:fb:02:ea: b3:37:ac:17:8d:3e:a7:32:e9:7e:25:43:98:c1:ae: ad:db:a1:82:ba:fe:42:a5:b5:ab:6c:3e:1a:8c:05: eb:6e:c7:71:c9:21:3e:76:d1:1c:19:82:62:27:f6: d8:10:9a:1f:43:1e:3e:50:95:f2:e7:0c:29:1e:1f: 5c:0b:32:e2:df:01:22:e8:03:f1:ee:11:dd:b5:fc: 5f:4e:7d:a7:14:0b:ad:6d:95:de:75:3a:d4:ea:5a: 12:da:0b:f6:58:0f:2f:d9:00:78:29:d5:5d:cd:a0: 86:8c:c0:5e:bb:86:66:b5:a4:8d:02:93:c3:f0:7f: 16:5d:07:c3:54:52:f6:c0:53:b3:a3:12:3d:c6:3d: 73:ba:25:cd:ca:27:84:89:3a:3c:f4:dd:8e:df:41: d0:0e:24:1e:db:a4:06:68:60:84:4c:fb:2d:28:f4: a7:42:47:94:b6:ac:4a:85:1b:ed:73:52:fb:3c:78: 34:d0:f1:e4:74:84:8f:41:3e:ba:42:55:92:05:b0: 28:83:3b:8d:a5:8e:ad:60:36:76:7e:59:00:23:08: 7f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9B:E8:1D:60:27:AC:C7:89:CF:04:87:C5:14:97:DC:FF:11:1C:0D X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:47:da:28:e3:8e:85:65:91:43:6c:29:69:3b:43:c4:af:f6: bd:1b:12:09:e5:26:7a:7d:4f:c4:53:5d:dc:35:2c:d1:79:6d: c9:87:95:5c:0b:d0:94:ac:b5:ef:9d:5c:23:2c:37:15:ef:88: 8e:74:07:0c:b2:85:1a:b0:83:7b:d6:9b:d4:04:4d:d2:11:0a: c5:1d:36:c0:a8:46:9d:ba:75:02:e1:5b:e5:c1:ed:b3:2f:03: 50:04:ec:2a:fc:04:af:f6:71:b4:e5:06:36:ef:6f:3e:be:4b: 72:12:d2:74:56:f6:75:9b:76:20:a1:53:e9:0b:2f:3b:e6:2d: e2:a3:2a:b5:ef:57:99:d5:f5:23:7f:d9:d0:09:8e:a3:2c:6f: 97:6c:bd:f0:0c:b1:61:7a:ff:28:f6:e3:95:6e:42:47:ea:4c: f6:1a:e5:35:52:15:67:9f:21:a4:02:c2:78:26:c2:22:c0:82: 48:93:7c:54:c0:0d:20:11:60:71:15:51:a9:1e:ea:89:a6:6d: 9e:06:c1:5e:b0:b4:06:66:19:d2:8c:11:99:d5:fa:6c:a3:09: cf:35:7a:8b:a7:a7:a6:d9:fb:f3:f8:c0:bb:60:99:be:d8:80: 3d:64:82:6a:4a:c0:c1:85:ba:44:3c:c5:5c:f5:10:64:6e:1a: 33:3f:b0:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjYwNTEyMTYwMjM4WhcNMjYwNTE5MTYwMjM4WjAYMRYwFAYD VQQDEw02YTAzNGYxZi0wNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtH70DlS5fRfMyH0/5f8ypMlAPiNISHSKS/NncBtMWcpkMTtaIe2hf1f7Auqz N6wXjT6nMul+JUOYwa6t26GCuv5CpbWrbD4ajAXrbsdxySE+dtEcGYJiJ/bYEJof Qx4+UJXy5wwpHh9cCzLi3wEi6APx7hHdtfxfTn2nFAutbZXedTrU6loS2gv2WA8v 2QB4KdVdzaCGjMBeu4ZmtaSNApPD8H8WXQfDVFL2wFOzoxI9xj1zuiXNyieEiTo8 9N2O30HQDiQe26QGaGCETPstKPSnQkeUtqxKhRvtc1L7PHg00PHkdISPQT66QlWS BbAogzuNpY6tYDZ2flkAIwh/swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIib6B1g J6zHic8Eh8UUl9z/ERwNMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK0faKOOOhWWRQ2wpaTtDxK/2vRsSCeUmen1PxFNd3DUs0XltyYeVXAvQlKy1 751cIyw3Fe+IjnQHDLKFGrCDe9ab1ARN0hEKxR02wKhGnbp1AuFb5cHtsy8DUATs KvwEr/ZxtOUGNu9vPr5LchLSdFb2dZt2IKFT6QsvO+Yt4qMqte9XmdX1I3/Z0AmO oyxvl2y98AyxYXr/KPbjlW5CR+pM9hrlNVIVZ58hpALCeCbCIsCCSJN8VMANIBFg cRVRqR7qiaZtngbBXrC0BmYZ0owRmdX6bKMJzzV6i6enptn78/jAu2CZvtiAPWSC akrAwYW6RDzFXPUQZG4aMz+w6g== -----END CERTIFICATE-----Generated at Wed May 13 11:43:40 2026 by rpki-client