$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: 1wbXoo/Vq3jPU110cPLBP5+dceIrEcCBDoawnmU15Bs= Subject key identifier: CF:A5:89:1D:31:44:2D:9A:EB:B7:30:D9:B6:88:21:2B:A3:85:6E:B7 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0AA3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 0A7A Signing time: Tue 12 May 2026 19:41:57 +0000 Manifest this update: Tue 12 May 2026 19:41:56 +0000 Manifest next update: Tue 19 May 2026 19:41:56 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: AB/EbDKeLhdEyRk3S5Eyx6f6Jr2ZLvZftxm9KRS5yOg=) 2: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: eVBXvv7YWMBaIfGnckCnkuA5YetM67743+mf0xEBTN0=) 3: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: IQJ8CffaTket9ne9+YqLheylHj7WmArcnX754ekd+dU=) 4: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: PEH68zFCTxpFSTzGq90DnMAYUrlMtG9wBFuZ6IkSPHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: May 12 19:41:56 2026 GMT Not After : May 19 19:41:56 2026 GMT Subject: CN=6a038285-9d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c0:9c:fa:cc:40:89:2e:d8:01:e2:15:a7:e3: 29:33:09:85:fa:f7:03:a2:d0:7f:9a:b6:f3:b5:28: 8b:d6:8b:da:af:70:c0:5a:69:a9:38:9b:1f:82:6c: 09:fd:c4:28:68:5b:08:f7:1c:6b:1b:c1:e0:4a:4f: 9e:bd:30:9f:13:fd:32:e2:d7:74:e1:2a:15:ea:af: fa:b2:55:f9:26:c1:14:ba:76:0c:cf:3b:58:dc:e7: c9:5f:51:73:78:a2:5a:f7:db:64:27:13:bd:bb:40: 9d:58:3d:09:df:b4:0f:4e:05:87:12:c6:f2:be:90: 66:72:c8:46:e1:65:83:24:dd:77:b9:5b:ca:13:6e: 61:08:ac:78:d2:36:b2:06:e6:f5:97:65:5e:ca:83: ec:bf:63:8a:25:bb:4a:53:ab:bd:55:58:ae:41:e3: f3:46:f6:6e:6e:dc:1e:48:4a:3e:43:e2:7e:1a:7d: 6a:c7:81:72:01:31:a1:8c:0e:0e:6e:5d:d2:7e:a9: ab:bc:73:46:4f:84:14:f0:a2:ef:c1:e4:8d:a1:19: 85:08:b9:c1:92:d3:3d:c6:55:c4:ea:96:5f:5b:f7: 2b:39:f1:c3:53:68:09:93:76:f2:8c:00:6a:ae:c9: 46:49:55:79:ef:8e:51:64:4b:05:82:e3:b1:ef:22: 97:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A5:89:1D:31:44:2D:9A:EB:B7:30:D9:B6:88:21:2B:A3:85:6E:B7 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ba:a5:d4:f2:84:b5:c2:76:16:90:98:05:eb:b4:3b:c6:ba: e1:02:31:e6:6e:1b:9d:60:16:72:53:0d:a2:32:5f:cb:a2:2e: 2c:f0:92:3a:5a:dc:54:5e:71:00:99:af:77:65:9d:f6:52:b8: be:d8:30:00:0a:e2:2d:66:60:41:27:23:13:33:b1:3c:cb:1e: 60:4e:04:61:b0:e2:91:c1:2b:84:0c:c8:86:58:13:8f:b3:f3: 00:4b:69:a8:2c:74:16:75:4e:24:7e:c6:ca:00:41:8d:59:2d: 28:28:33:df:1a:20:a3:b3:81:c1:25:27:a1:73:a5:68:be:25: 89:f9:39:ee:1c:b3:71:d0:d1:06:bd:d9:06:e6:3d:c9:7b:98: b4:28:4e:bf:90:2a:82:bd:c5:96:13:92:43:b3:b4:88:bd:e5: 08:55:bb:5f:39:7b:0a:fc:a5:f8:ea:d4:20:ac:ed:97:02:60: 90:98:7e:38:20:74:e9:9b:36:6f:c7:35:4e:11:f4:93:2a:2c: 93:5f:bc:00:5d:98:41:9b:03:c0:9f:ba:c1:6c:0b:64:ae:a6: 64:62:d2:3c:dc:37:8f:4c:b8:a0:dd:14:7e:73:62:5c:da:a2: 1f:da:34:99:c0:99:d0:3f:10:e0:47:2c:2e:3a:b1:63:d6:6f: 63:dd:a1:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjYwNTEyMTk0MTU2WhcNMjYwNTE5MTk0MTU2WjAYMRYwFAYD VQQDEw02YTAzODI4NS05ZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cCc+sxAiS7YAeIVp+MpMwmF+vcDotB/mrbztSiL1ovar3DAWmmpOJsfgmwJ /cQoaFsI9xxrG8HgSk+evTCfE/0y4td04SoV6q/6slX5JsEUunYMzztY3OfJX1Fz eKJa99tkJxO9u0CdWD0J37QPTgWHEsbyvpBmcshG4WWDJN13uVvKE25hCKx40jay Bub1l2VeyoPsv2OKJbtKU6u9VViuQePzRvZubtweSEo+Q+J+Gn1qx4FyATGhjA4O bl3SfqmrvHNGT4QU8KLvweSNoRmFCLnBktM9xlXE6pZfW/crOfHDU2gJk3byjABq rslGSVV5745RZEsFguOx7yKXmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM+liR0x RC2a67cw2baIISujhW63MB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmLql1PKEtcJ2FpCYBeu0O8a64QIx5m4bnWAWclMNojJfy6IuLPCSOlrcVF5x AJmvd2Wd9lK4vtgwAAriLWZgQScjEzOxPMseYE4EYbDikcErhAzIhlgTj7PzAEtp qCx0FnVOJH7GygBBjVktKCgz3xogo7OBwSUnoXOlaL4lifk57hyzcdDRBr3ZBuY9 yXuYtChOv5Aqgr3FlhOSQ7O0iL3lCFW7Xzl7Cvyl+OrUIKztlwJgkJh+OCB06Zs2 b8c1ThH0kyosk1+8AF2YQZsDwJ+6wWwLZK6mZGLSPNw3j0y4oN0UfnNiXNqiH9o0 mcCZ0D8Q4EcsLjqxY9ZvY92hkg== -----END CERTIFICATE-----Generated at Wed May 13 03:06:38 2026 by rpki-client